Ruflo security-audit

install

source · Clone the upstream repo

git clone https://github.com/ruvnet/ruflo

Claude Code · Install into ~/.claude/skills/

T=$(mktemp -d) && git clone --depth=1 https://github.com/ruvnet/ruflo "$T" && mkdir -p ~/.claude/skills && cp -r "$T/v3/@claude-flow/codex/.agents/skills/security-audit" ~/.claude/skills/ruvnet-ruflo-security-audit-10960b && rm -rf "$T"

manifest: v3/@claude-flow/codex/.agents/skills/security-audit/SKILL.md

Security Audit Skill

Purpose

Security scanning and vulnerability detection.

When to Trigger

authentication
authorization
payment processing
user data

When to Skip

read-only operations
internal tooling

Commands

Full Security Scan

Run comprehensive security analysis

npx @claude-flow/cli security scan --depth full

Input Validation Check

Check for input validation issues

npx @claude-flow/cli security scan --check input-validation

Best Practices

Check memory for existing patterns before starting
Use hierarchical topology for coordination
Store successful patterns after completion
Document any new learnings