from claude-code-security-skills12
Three-phase code security audit: broad audit, false-positive filtering, and a concise report with prioritized fixes and confidence-scored findings.
Code Security Review runs a disciplined three-phase process: Phase 1 (Audit) collects candidate findings across the codebase; Phase 2 (Filter) applies hard exclusion patterns and AI-guided filtering rules to remove false positives; Phase 3 (Report) outputs a filter table plus detailed, confidence-scored findings with remediation steps.
Use when you need a security audit, vulnerability scan, or code-level review for injection risks, auth bypasses, secrets, XSS, or other vulnerabilities. Appropriate before releases, audits, or when security concerns are raised. Not intended for non-security linting.
Inferred compatible agents: Claude Code, agent frameworks that support reading resource files and structured three-phase workflows.
This skill has not been reviewed by our automated audit pipeline yet.
