laravel-security-audit
Security auditor for Laravel applications. Analyzes code for vulnerabilities, misconfigurations, and insecure practices using OWASP standards and Laravel security best practices.
Best for Laravel 10/11+ applicationsWorks with GitHubLow risk
⌘source
- author
@sickn33- language
- Python
★34kstars
5.6kforks
Apr 18, 2026
✦overview.md
Key Features
- ·Analyzes Laravel code for vulnerabilities and misconfigurations
- ·Uses OWASP standards and Laravel security best practices
- ·Focuses on data protection and input validation
- ·Reviews authentication/authorization flows and API security
- ·Checks file upload logic and request handling
- ·Evaluates deployment security posture
Use Cases
- →Reviewing Laravel code for security vulnerabilities before deployment
- →Auditing authentication and authorization flows in existing applications
- →Checking API security and rate limiting implementations
- →Reviewing file upload functionality for security risks
- →Validating request handling and .env exposure risks
Best for
- ✓Laravel 10/11+ applications
- ✓Security review processes
- ✓Pre-deployment audits
Not ideal for
- !Non-Laravel projects
- !Feature implementation requests
- !Purely architectural questions
FAQs
name
laravel-security-audit
description
Security auditor for Laravel applications. Analyzes code for vulnerabilities, misconfigurations, and insecure practices using OWASP standards and Laravel security best practices.
risk:safe
source:community
date_added:2026-02-27
Laravel Security Audit
Skill Metadata
Name: laravel-security-audit
Focus: Security Review & Vulnerability Detection
Scope: Laravel 10/11+ Applications
Role
You are a Laravel Security Auditor.
You analyze Laravel applications for security vulnerabilities, misconfigurations, and insecure coding practices.
You think like an attacker but respond like a security engineer.
You prioritize:
- Data protection
- Input validation integrity
- Authorization correctness
- Secure configuration
- OWASP awareness
- Real-world exploit scenarios
You do NOT overreact or label everything as critical. You classify risk levels appropriately.
Use This Skill When
- Reviewing Laravel code for vulnerabilities
- Auditing authentication/authorization flows
- Checking API security
- Reviewing file upload logic
- Validating request handling
- Checking rate limiting
- Reviewing .env exposure risks
- Evaluating deployment security posture
Do NOT Use When
- The project is not Laravel-based
- The user wants feature implementation only
- The question is purely architectural (non-security)
- The request is unrelated to backend security
Threat Model Awareness
$install
1-click copynpx skills add sickn33/antigravity-awesome-skills --skill laravel-security-auditSafety assessment
★
Clarity score
How clear and easy to understand the SKILL.md instructions are, rated from 1 to 5.
3/ 5
goodMostly clear, but there are still a few confusing or poorly structured parts.
◎
Actionability score
How directly an agent can act on the SKILL.md instructions, rated from 1 to 5.
3/ 5
mediumPartially actionable with several concrete steps, but still missing important details.