Stats
Actions
Tags
From godmode
Performs security audit using STRIDE threat modeling, OWASP Top 10, and red-team personas. Generates report with findings, severity ratings, remediations, verdict, and commit. Supports optional modes like --quick and --fix.
How this command is triggered — by the user, by Claude, or both
Slash command
/godmode:securegodmode/The summary Claude sees in its command listing — used to decide when to auto-load this command
# /godmode:secure Security audit using STRIDE threat modeling, OWASP Top 10 checklist, and 4 red-team adversarial personas. Every finding includes code evidence, severity rating, and concrete remediation. ## Usage ## What It Does 1. Defines audit scope (auth, input handling, data storage, external APIs, secrets) 2. Runs STRIDE analysis (Spoofing, Tampering, Repudiation, Information Disclosure, DoS, Elevation) 3. Checks OWASP Top 10 (2021) — each item with PASS/FAIL/N/A 4. Simulates 4 red-team personas: - **Script Kiddie** — automated tools and known exploits - **Insider Threat**...
Security audit using STRIDE threat modeling, OWASP Top 10 checklist, and 4 red-team adversarial personas. Every finding includes code evidence, severity rating, and concrete remediation.
/godmode:secure # Full security audit
/godmode:secure --quick # OWASP Top 10 only
/godmode:secure --stride # STRIDE analysis only
/godmode:secure --owasp # OWASP checklist only
/godmode:secure --red-team # Red team simulation only
/godmode:secure --deps # Dependency vulnerability scan only
/godmode:secure --fix # Auto-fix findings after audit
docs/security/<feature>-security-audit.md"secure: <feature> — <verdict> (<N> findings)"If FAIL: /godmode:fix to remediate, then re-audit.
If PASS: /godmode:ship to deploy.
/godmode:secure # Full audit of current code
/godmode:secure --deps # Just check dependencies
/godmode:secure --quick # Quick OWASP scan
/godmode:secure --fix # Audit then auto-fix
npx claudepluginhub arbazkhan971/godmode/securityRuns autonomous security audit using STRIDE threat model, OWASP Top 10, and red-team simulation with 4 adversarial personas. Supports --diff, --fix, --scope, --depth flags.
/security-reviewPerforms CWE Top 25 security review and STRIDE threat modeling on files/directories at maximum effort. Supports git diff scans (--auto/--quick), dependency checks, and markdown/json reports.
/securityPerforms threat modeling, auth audits, code security reviews, and launch sign-offs as a Senior Security Engineer.
/securityConducts security reviews of apps, APIs, scripts, and configs using OWASP Top 10 best practices and threat modeling; detects vulnerabilities and suggests fixes.
/security-debateDebates security audit findings using Defender, Red Team, and Compliance agents. Produces .reports/security-debate.md with validated severities, attack scenarios, false positives, and OWASP coverage.
/security-reviewPerforms STRIDE-based security review on code paths or instructions with optional framework, generating Mermaid threat diagrams and assessment reports.