Skip to main content
EQ
Foundry
Back to Browse

security-analysis

Verified

Deep security audit prompt — maps attack surfaces, assesses OWASP/ASVS coverage, and produces prioritized remediation plans

Installation

See github-copilot-brain repo for Copilot installation

Recommended — works with Claude Code, Cursor, and 40+ agents.

Performance

Optimized for speed with minimal overhead. Runs efficiently in CI and local environments.

Security

Sandboxed execution with scoped permissions. No external data leaves your environment.

Overview

security-analysis is a GitHub Copilot prompt that performs a comprehensive security audit. It inventories entry points, traces data flows, assesses coverage across authentication, authorization, input validation, secrets management, and dependency security — then produces a prioritized action plan with OWASP/CWE mapping.

When to Use

  • Assessing the security posture of a new or inherited codebase
  • Preparing for a formal penetration test or compliance audit
  • After a security incident to identify related gaps
  • Periodic security health checks

What It Produces

  • Executive summary with risk overview
  • System and data flow map
  • Security controls inventory
  • Coverage matrix across auth, input validation, secrets, cryptography, config hardening
  • Findings with OWASP/CWE classification
  • Prioritized action items (quick wins, medium, large)
  • File-level security sentiment scores

Installation

Available as a GitHub Copilot prompt. See the github-copilot-brain repo for setup.