Security Audit Pack
★Trustedv1.0.0MIT✔Verified88by AgentNode · published 22 days ago · toolpack
Scan code for security vulnerabilities using static analysis.
Audit code for OWASP Top 10 vulnerabilities, SQL injection, XSS, and more. Uses Semgrep and Bandit rules for Python, JavaScript, and other languages.
Quick Start
agentnode install security-audit-packUsage
From packagefrom security_audit_pack.tool import run
result = run(
action="audit_security",
path="/workspace/my-api",
language="python",
standards=["owasp-top-10", "cwe-top-25"],
severity_threshold="medium"
)
print(f"Files analyzed: {result['files_analyzed']}")
print(f"Issues found: {result['total_issues']}")
print(f"Critical: {result['severity_counts']['critical']}")
print(f"High: {result['severity_counts']['high']}")
print(f"Medium: {result['severity_counts']['medium']}\n")
for issue in result["issues"][:5]:
print(f"[{issue['severity'].upper()}] {issue['title']}")
print(f" File: {issue['file']}:{issue['line']}")
print(f" CWE: {issue['cwe_id']} — {issue['cwe_name']}")
print(f" Fix: {issue['remediation']}")
print()Verification
Package installs and imports correctly. runtime checks passed.
This package was executed and validated by AgentNode before listing. Install, import, and runtime checks passed.
Last verified 18d ago· Runner v2.0.0
Use this when you need to...
- ›Scan Python code for SQL injection and XSS vulnerabilities
- ›Audit Node.js applications against OWASP Top 10 security risks
- ›Detect insecure cryptographic practices in source files
- ›Generate security compliance reports with remediation guidance
- ›Identify unsafe deserialization and command injection patterns
README
Security Audit Pack
Scan code for security vulnerabilities using static analysis. Audit code for OWASP Top 10 and CWE Top 25 using Semgrep and Bandit rule engines.
Quick Start
agentnode install security-audit-pack
from security_audit_pack.tool import run
result = run(action="audit_security", path="/workspace/my-project", language="python")
print(f"Issues found: {result['total_issues']}")
Usage
OWASP Top 10 Audit
result = run(
action="audit_security",
path="/workspace/api",
language="python",
standards=["owasp-top-10"]
)
for issue in result["issues"]:
print(f"[{issue['severity']}] {issue['title']} — {issue['file']}:{issue['line']}")
Targeted Rule Scan
result = run(
action="audit_security",
path="/workspace/web-app/src",
language="javascript",
rules=["xss", "sql-injection", "prototype-pollution"]
)
Generate Compliance Report
result = run(
action="audit_security",
path="/workspace/api",
language="python",
standards=["owasp-top-10", "cwe-top-25"],
output_format="report",
output_path="/tmp/security-report.json"
)
print(f"Report saved: {result['report_path']}")
API Reference
| Capability | Description |
|---|---|
audit_security | Static analysis for OWASP Top 10, CWE Top 25, and custom security rules |
Supported languages: Python, JavaScript, TypeScript, Java, Go, Ruby, PHP.
Requirements
No API keys required. Semgrep and Bandit run locally.
License
MIT
Version History
Capabilities
Permissions
This package declares the following access levels. Review before installing.
agentnode install security-audit-packFiles (3)
License
MITStats
Compatibility
Frameworks
Runtime
pythonPython Version
>=3.10Trust & Security
Publisher
AgentNode
@agentnode