security-reviewer

Quick Review

Excellent security review skill with comprehensive coverage of SAST, penetration testing, and infrastructure security. The description is clear and actionable for CLI agents. Strong task knowledge with well-organized reference materials covering vulnerability patterns, SAST tools, secret scanning, and penetration testing. The structure is logical with a clean separation of core workflow and detailed references. Clear constraints distinguish authorized vs unauthorized testing. Moderate-to-good novelty: while security reviews are common, the comprehensive checklist approach, severity rating framework, and integration of multiple security domains (SAST, secrets, infrastructure, compliance) into a single cohesive workflow provides meaningful value over ad-hoc security queries.