|
# Workflow: /audit
<meta>
<trigger>/audit</trigger>
<description>Security audit focusing on OWASP, secrets, deps, and common vulnerabilities.</description>
</meta>
## Step 1 — Multi-Dimensional Scan
Audit focused on 7 axes: Secrets, Authentication, Injection (SQL/NoSQL), Input Validation, API Security, SSRF, and Dependencies.
## Step 2 — Risk Classification
Assignment of severity (Critical, High, Medium, Low) based on exploitability, exposure, and impact.
## Step 3 — Mitigation Plan
Reasoned correction suggestions and alerts for manual verifications where automated evidence is inconclusive.