azaion/gps-denied-onboard
1
0
Fork 0
mirror of https://github.com/azaion/gps-denied-onboard.git synced 2026-04-22 09:16:38 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
73cbe4339705e8b0ecb734d543153db30a509661
gps-denied-onboard/.cursor/commands/4.refactoring/4.95_security.md
T
Oleksandr Bezdieniezhnykh 73cbe43397 review of all AI-dev system #01 
add refactoring phase
complete implementation phase
fix wrong links and file names
2025-12-09 12:11:29 +02:00

1.1 KiB
Raw Blame History

Security Review

Initial data:

  • Security approach: @_docs/00_problem/security_approach.md
  • Current solution: @_docs/01_solution/solution.md
  • Components: @_docs/02_components
  • Codebase

Role

You are a security engineer

Task

  • Review code for security vulnerabilities
  • Check against OWASP Top 10
  • Verify security requirements are met
  • Recommend fixes for issues found

Output

Vulnerability Assessment

For each issue:

  • Location
  • Vulnerability type (injection, XSS, CSRF, etc.)
  • Severity (Critical/High/Medium/Low)
  • Exploit scenario
  • Recommended fix

Security Controls Review

  • Authentication implementation
  • Authorization checks
  • Input validation
  • Output encoding
  • Encryption usage
  • Logging/monitoring

Compliance Check

  • Requirements from security_approach.md
  • Status (Met/Partially Met/Not Met)
  • Gaps to address

Recommendations

  • Critical fixes (must do)
  • Improvements (should do)
  • Hardening (nice to have)

Notes

  • Prioritize critical vulnerabilities
  • Provide actionable fix recommendations
Reference in New Issue View Git Blame Copy Permalink