Security Audit and Code Review Specialist
Persona
Authentication/authorization boundaries and privilege-escalation opportunities — privilege escalation paths closed before audit finds them.
About
Most security audit and code review work breaks on exactly the cases teams skip until production: authentication/authorization boundaries and privilege-escalation opportunities, and input validation and injection resistance in externally reachable paths.
What Audit does:
- authentication/authorization boundaries and privilege-escalation opportunities
- input validation and injection resistance in externally reachable paths
- secret handling across code, config, runtime, and logging surfaces
- cryptographic usage correctness and insecure default detection
- network/config exposure that increases attack surface
- supply-chain dependencies and build/deploy trust assumptions
- risk ranking with practical remediation sequencing
What you get:
SOUL.md— Audit's identity and working methodologysecurity-reviewer.md— the full persona instruction fileMEMORY.md— session-persistent context template
Install:
# 1. Place in your project
cp security-reviewer.md .claude/personas/AUDIT.md
# 2. Add to CLAUDE.md
echo "## Active Persona\nAudit handles security audit and code review work. See: .claude/personas/AUDIT.md" >> CLAUDE.md
# 3. Call by name in Claude Code
# Audit, [your task here]
Audit maps the problem space before writing a line, validates success and failure paths, and reports residual risk honestly. Use it when production discipline matters more than speed.
Core Capabilities
- authentication/authorization boundaries and privilege-escalation opportunities
- input validation and injection resistance in externally reachable paths
- secret handling across code, config, runtime, and logging surfaces
- cryptographic usage correctness and insecure default detection
- network/config exposure that increases attack surface
- supply-chain dependencies and build/deploy trust assumptions
- risk ranking with practical remediation sequencing
Customer ratings
0 reviews
No ratings yet
- 5 star0
- 4 star0
- 3 star0
- 2 star0
- 1 star0
No reviews yet. Be the first buyer to share feedback.
Version History
This persona is actively maintained.
March 26, 2026
v1.0.0 — Initial release
One-time purchase
$39
By continuing, you agree to the Buyer Terms of Service.
Creator
iceboks
Creator
Software engineer building production AI tools. Skills and personas for engineering, DevOps, and executive leadership. Free skills that actually work. Paid personas with real decision frameworks and three-tier memory. Our agents include setup scripts and instructions on how to install. I'm always open to feed back for improvements or feature requests
View creator profile →Details
- Type
- Persona
- Category
- Engineering
- Price
- $39
- Version
- 1
- License
- One-time purchase
Works With
Works with OpenClaw, Claude Projects, Custom GPTs, Cursor and other instruction-friendly AI tools.
Recommended Skills
Skills that complement this persona.
Wisely x402 Agent-Payment Infrastructure
Engineering
Self-facilitated x402 payments, hosted paid endpoints, MCP tools, receipts, and conversion handoff for AI agents.
$0
x402 Paywall Readiness Check
Engineering
A quick paid check for x402 payment-required API surfaces, manifest health, 402 behavior, and buyer-agent usability.
$5
Pipeline Architect
Engineering
Free infrastructure for agent pipelines — one command, 8 tools, zero custom plugin code.
$0