ln-621-security-auditor

> **Paths:** File paths (`shared/`, `references/`, `../ln-*`) are relative to skills repo root. If not found at CWD, locate this SKILL.md directory and go up one level for repo root. If `shared/` is missing, fetch files via WebFetch from `https://raw.githubusercontent.com/levnikolaevich/claude-code-skills/master/skills/{path}`. # Security Auditor (L3 Worker) **Type:** L3 Worker Specialized worker auditing security vulnerabilities in codebase. ## Purpose & Scope - Audit codebase for **security vulnerabilities** (Category 1: Critical Priority) - Scan for hardcoded secrets, SQL injection, XSS, insecure dependencies, missing input validation - Return structured findings to coordinator with severity, location, effort, recommendations - Calculate compliance score (X/10) for Security category ## Inputs **MANDATORY READ:** Load `shared/references/audit_worker_core_contract.md`. Receives `contextStore` with: `tech_stack`, `best_practices`, `principles`, `codebase_root`, `output_dir`. ## Workflow **MANDATORY READ:** Load `shared/references/two_layer_detection.md` for detection methodology. 1) **Parse Context:** Extract tech stack, best practices, codebase root, output_dir from contextStore 2) **Scan Codebase (Layer 1):** Run security checks using Glob/Grep patterns (see Audit Rules below) 3) **Analyze Context (Layer 2):** For each candidate, read surrounding code to classify: - Secrets: test fixture / example / template -> FP. Production code -> confirmed - SQL injecti...