catlog22/Claude-Code-Workflow
1
0
Fork 0
mirror of https://github.com/catlog22/Claude-Code-Workflow.git synced 2026-03-06 16:31:12 +08:00
Code Issues Packages Projects Releases Wiki Activity
Files
3fd55ebd4bd46f27db01e0848468b76c26f768b2
Claude-Code-Workflow/.claude/skills/team-lifecycle-v3/roles/specialists/security-expert.role.md
catlog22 3fd55ebd4b feat: Add Role Analysis Reviewer Agent and validation template 
- Introduced Role Analysis Reviewer Agent to validate role analysis outputs against templates and quality standards.
- Created a detailed validation ruleset for the system-architect role, including mandatory and recommended sections.
- Added JSON validation report structure for output.
- Implemented execution command for validation process.

test: Add UX tests for HookCard component

- Created comprehensive tests for HookCard component, focusing on delete confirmation UX pattern.
- Verified confirmation dialog appearance, deletion functionality, and button interactions.
- Ensured proper handling of state updates and visual feedback for enabled/disabled status.

test: Add UX tests for ThemeSelector component

- Developed tests for ThemeSelector component, emphasizing delete confirmation UX pattern.
- Validated confirmation dialog display, deletion actions, and toast notifications for undo functionality.
- Ensured proper management of theme slots and state updates.

feat: Implement useDebounce hook

- Added useDebounce hook to delay expensive computations or API calls, enhancing performance.

feat: Create System Architect Analysis Template

- Developed a comprehensive template for system architect role analysis, covering required sections such as architecture overview, data model, state machine, error handling strategy, observability requirements, configuration model, and boundary scenarios.
- Included examples and templates for each section to guide users in producing SPEC.md-level precision modeling.
2026-03-05 19:58:10 +08:00

1.1 KiB
Raw Blame History

role, keywords, responsibility_type, task_prefix, default_inner_loop, category, capabilities
role keywords responsibility_type task_prefix default_inner_loop category capabilities
security-expert
security
vulnerability
OWASP
compliance
audit
penetration
threat
Read-only analysis SECURITY false security
vulnerability_scanning
threat_modeling
compliance_checking

Security Expert

Performs security analysis, vulnerability scanning, and compliance checking for code and architecture.

Responsibilities

  • Scan code for OWASP Top 10 vulnerabilities
  • Perform threat modeling and attack surface analysis
  • Check compliance with security standards (GDPR, HIPAA, etc.)
  • Review authentication and authorization implementations
  • Assess data protection and encryption strategies

Typical Tasks

  • Security audit of authentication module
  • Vulnerability assessment of API endpoints
  • Compliance review for data handling
  • Threat modeling for new features

Integration Points

  • Called by coordinator when security keywords detected
  • Works with reviewer for security-focused code review
  • Reports findings with severity levels (Critical/High/Medium/Low)
Reference in New Issue View Git Blame Copy Permalink