🛡

Security Auditor Agent

Cybersecurity · Monitor · Claude Opus

Heartbeat: Every 60 minutes

Continuous security audit — code, dependencies, secrets, auth, access.

WHAT IT DOES

Always-on security scanner combining static analysis with LLM reasoning. Scans your codebase for OWASP Top 10 vulnerabilities — but not just pattern matching. The LLM understands context: a SQL query built from user input in a controller that skips the ORM is flagged differently than a hardcoded admin query. Audits every dependency against CVE databases (NVD, GitHub Advisory). Scans for hardcoded secrets (API keys, tokens, passwords) with semantic understanding — catches const API_KEY = "sk-..." that regex-only scanners miss when obfuscated. Reviews authentication flows end-to-end. Checks access controls against principle of least privilege. Generates prioritised remediation plans with effort estimates.

WORKFLOW

  1. Continuous scan (codebase + deps + config)
  2. OWASP analysis with contextual reasoning
  3. CVE matching on all dependencies
  4. Secret detection (regex + semantic)
  5. Auth flow audit
  6. Access control review
  7. Prioritise (impact x exploitability)
  8. Generate remediation plan with effort estimates

SKILLS

contextual-vuln-scannerdependency-auditorsemantic-secret-detectorauth-flow-analyzeraccess-control-checkerremediation-planner

INTEGRATIONS

Git
npm
PyPI
NVD
GitHub Advisory Database
Snyk
Memory
Role
Monitor
Model
Claude Opus
Heartbeat
Every 60 minutes