agent-v3-security-architect
Agent skill for v3-security-architect - invoke with $agent-v3-security-architect
41
11%
Does it follow best practices?
Impact
93%
1.36xAverage score across 3 eval scenarios
Advisory
Suggest reviewing before use
Optimize this skill with Tessl
npx tessl skill review --optimize ./.agents/skills/agent-v3-security-architect/SKILL.mdEvaluation results
92%
51%Security Architecture Documentation for FlowAgent Platform
Security architecture deliverables
SECURITY-ARCHITECTURE.md exists
0%
100%
CVE-REMEDIATION-PLAN.md exists
0%
100%
SECURE-PATTERNS.md exists
0%
100%
THREAT-MODEL.md exists
0%
100%
API layer domain covered
100%
60%
Authentication domain covered
100%
100%
RBAC authorization domain
50%
100%
Encrypted agent communication
100%
100%
Data protection domain covered
60%
60%
90/100 security score target
0%
100%
Test coverage target
0%
100%
89%
12%Fix Authentication Security in CloudOps API
Password hashing and credential security
bcrypt package used
100%
100%
12 salt rounds
100%
100%
No hardcoded password
100%
100%
Random password generation
100%
100%
SHA-256 removed
100%
100%
Hardcoded salt removed
100%
100%
Dependency version updated
0%
100%
No default username hardcoded
0%
0%
100%
13%Harden the DevTools File Manager Service
Command injection and path traversal prevention
execFile used
100%
100%
shell:true removed
100%
100%
Arguments as array
100%
100%
path.resolve() used
100%
100%
Prefix validation present
100%
100%
Path traversal error thrown
100%
100%
Zod input validation
0%
100%
No string-interpolated commands
100%
100%
- Repository
- ruvnet/claude-flow
- Commit
322b2ae
- Evaluated
- Agent
- Claude Code
- Model
- Claude Sonnet 4.6
Table of Contents
Is this your skill?
If you maintain this skill, you can claim it as your own. Once claimed, you can manage eval scenarios, bundle related skills, attach documentation or rules, and ensure cross-agent compatibility.