Security Reviewer
claudesonnetSecurity vulnerability detection agent covering OWASP Top 10, secrets scanning, and authentication/authorization review.
Install
curl -o ~/.claude/agents/security-reviewer.md https://raw.githubusercontent.com/wshobson/agents/main/security-reviewer.mdDescription
Security Reviewer is a specialized agent for finding security vulnerabilities in codebases. It checks for OWASP Top 10 issues (injection, XSS, CSRF, broken auth, etc.), scans for hardcoded secrets (API keys, passwords, tokens), reviews authentication and authorization logic, validates input sanitization, and checks dependency versions for known CVEs. Each finding includes severity, CVSS-like scoring, and remediation steps.
Capabilities
- OWASP Top 10
- Secrets scanning
- Auth review
- Input validation
- CVE checking
Tools
Related Agents
Designer
UI/UX designer-developer that creates stunning, accessible interfaces with modern design patterns and pixel-perfect implementation.
curl -o ~/.claude/agents/designer.md https://raw.githubusercontent.com/Yeachan-Heo/oh-my-claudecode/main/agents/designer.mdExecutor
Focused task executor for implementation work that takes a well-defined plan and produces clean, tested code.
curl -o ~/.claude/agents/executor.md https://raw.githubusercontent.com/wshobson/agents/main/executor.mdCode Reviewer
Expert code review agent with severity-rated feedback covering correctness, security, performance, and maintainability.
curl -o ~/.claude/agents/code-reviewer.md https://raw.githubusercontent.com/wshobson/agents/main/code-reviewer.md