security-scan
/security-scan - Security Scanning Command
Section titled “/security-scan - Security Scanning Command”Purpose
Section titled “Purpose”Scan code and dependencies for security vulnerabilities.
/security-scan [scope: deps | code | secrets | all]Run security scan: $ARGUMENTS
Workflow
Section titled “Workflow”Dependency Scan
Section titled “Dependency Scan”npm auditpip-auditCode Scan
Section titled “Code Scan”- SQL injection patterns
- XSS vulnerabilities
- Command injection
Secret Detection
Section titled “Secret Detection”- API keys
- Passwords
- Tokens
Output
Section titled “Output”## Security Scan Results
### Summary| Type | Critical | High | Medium ||------|----------|------|--------|| Dependencies | 0 | 2 | 5 || Code | 0 | 1 | 3 || Secrets | 0 | 0 | 0 |
### Findings[Detailed findings with remediation]Gap Analysis Rule
Section titled “Gap Analysis Rule”Always identify gaps and suggest next steps to users. In case there is no gaps anymore, then AI should clearly state that there is no gap left.