Audit Flow

What it does

Interactive tracing of system flows across CODE, API, AUTH, DATA and NETWORK layers. Stores flows in a SQLite DB, supports non-linear branching/merging, and exports diagrams (Mermaid) and structured exports for documentation, compliance, and incident post-mortems. Includes CLI scripts for listing, showing, exporting and validating flows, plus a git merge driver to safely merge the audit DB.

When to use it

Use this skill when performing security audits, architecture reviews, debugging complex multi-layer interactions, preparing compliance documentation, running incident post-mortems, or brainstorming feature flows that need persistent, auditable tracing. Trigger on actions like 'audit', 'trace flow', 'document flow', 'security review', 'post-mortem'.

What's included

• Scripts: CLI tools for init/list/show/export/validate and a custom git merge driver (see scripts/audit.py).
• References: schema.sql, COMMANDS.md, EXAMPLES.md, and export/validate tooling in the repo.
• Instructions: A DB-first workflow with strict rules (read schema, never recreate DB if present, use audit.py export for diagrams, validate branches). The skill documents interactive prompts for session start, granularity, checkpoints, and export rules.

Compatible agents

Designed for Claude Code / Claude Code-like agent integrations that can invoke local Python scripts and follow structured CLI workflows.