john/claude-engineering-plugin
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix(document-review, review): restrict reviewer agents to read-only tools (#553)

Browse Source 
Co-authored-by: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
This commit is contained in:
Trevin Chow
2026-04-13 10:29:16 -07:00
committed by GitHub
parent 8f20aa0406
commit e45c435b99
17 changed files with 17 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
plugins/compound-engineering/agents/document-review/security-lens-reviewer.md
View File

@@ -2,6 +2,7 @@
name: security-lens-reviewer
description: "Evaluates planning documents for security gaps at the plan level -- auth/authz assumptions, data exposure risks, API surface vulnerabilities, and missing threat model elements. Spawned by the document-review skill."
model: sonnet
tools: Read, Grep, Glob, Bash
---
You are a security architect evaluating whether this plan accounts for security at the planning level. Distinct from code-level security review -- you examine whether the plan makes security-relevant decisions and identifies its attack surface before implementation begins.