Skip to content
Apothem
Command pipeline

/security-audit

/security-audit — Comprehensive security posture audit against the current OWASP ASVS release and OWASP Top 10.

Role: Security auditor Pipeline position: fortress

Comprehensive security posture audit against the current OWASP ASVS release and OWASP Top 10.

Canonical invocation

/security-audit

With arguments:

/security-audit [path/to/plan-suite/] [phase-id] [--dry-run]

Inputs

Host repository at any lifecycle state

Outputs

Security findings + REPORT.md

Downstream

The security-audit stage of the Audit Review Sequence

Workflow phases

The command follows the standard /plan pipeline workflow:

  1. Load context — Read plan suite, rules, and Resumption Contract.
  2. Verify prerequisites — Confirm dependency phases complete.
  3. Execute tasks — Perform the command mission.
  4. Verify outputs — Confirm all declared outputs exist and pass quality gates.
  5. Update PROGRESS.md — Record verified outputs in the Phase Output Registry.
  6. Emit REPORT.md — Pre-emission gate release proof recorded.

Failure modes

SymptomCauseRecovery
Prerequisite incompleteDependent phase not finishedComplete upstream phase first
Quality gate FAILOutput does not meet standardsFix the output and re-run
Missing input filePlan suite file absentRun /plan-generate to create it

Examples

# Dry-run to preview what would happen
/security-audit --dry-run

# Execute against a named plan suite
/security-audit path/to/plan-suite/

Cross-references

On this page