npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

ai-security-audit-pro

v0.8.5

Published

Universal security-audit plugin and CLI engine for AI agents with OWASP-mapped reports.

Downloads

532

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

xsourabhsharmaxsourabhsharma

Keywords

securitysecurity-auditowaspsastdastweb-securityagent-pluginai-pluginsecurity-pluginai-agentscodexclaude-codegemini-cliopenclawclawhub

Readme

AI Security Audit Pro Plugin

A security-audit plugin that AI agents can actually run.

CI npm Source Version: 0.8.5 ClawHub License: MIT Node.js OWASP Plugin Ready

AI Security Audit Pro Plugin is a defensive security-audit plugin and CLI engine for AI coding agents. It gives Codex, Claude Code, Gemini CLI, Google Antigravity, OpenCode, Hermes, OpenClaw, and other shell-capable AI tools a serious workflow for auditing codebases, websites, and APIs.

It is built for people who want their agent to do more than produce generic advice. A good run should inspect the target, use the right tools, capture evidence, separate real findings from scanner noise, and produce a report someone can actually review.

The Idea

AI agents are useful at security work, but only when they have a disciplined process.

Without structure, they tend to:

  • repeat the same low-value header findings,
  • overstate scanner output,
  • miss scope and authorization details,
  • mix real findings with guesses,
  • and produce reports that are hard to trust.

This plugin gives the agent a safer, repeatable path:

  1. Understand the target.
  2. Run local or URL-based audit checks.
  3. Use optional scanners when they are installed and authorized.
  4. Write down what was reviewed and what was skipped.
  5. Mark findings as Confirmed, Likely, or Needs validation.
  6. Generate Markdown, HTML, PDF, or JSON output.

That is the point of this repo: not just "run a scanner," but help an AI agent behave more like a careful security reviewer.

Plugin First, CLI Powered

Every AI tool has a different plugin system. Codex, Claude Code, Gemini CLI, Antigravity, OpenCode, Hermes, and OpenClaw do not all load the same package format.

So AI Security Audit Pro ships as both:

| Part | What it does | |---|---| | Plugin files | Give agents the instructions, skills, and adapter docs they need. | | CLI engine | Gives every shell-capable agent one stable way to run the audit. |

The CLI is the runtime interface of the plugin:

node scripts/security-audit.mjs --target . --out security-audit-report.md --html-out security-audit-report.html

An agent can run that command, read the report, validate the evidence, summarize the risk, and tell you what still needs manual testing.

Download And Install

The package is published on npm:

The npm badge shows the latest package already published to npm. After maintainers publish 0.8.5, the badge will update automatically.

Install it globally when you want the CLI available to Codex, Claude Code, Gemini CLI, OpenCode, Hermes, OpenClaw, or any other shell-capable agent:

npm install -g ai-security-audit-pro
security-audit-pro --target . --out security-audit-report.md --html-out security-audit-report.html

The package is also published on ClawHub as a community bundle plugin for OpenClaw. New ClawHub releases may show scan: pending for a short time while automated checks and indexing finish. OpenClaw users can install from ClawHub with:

openclaw plugins install clawhub:ai-security-audit-pro

Inspect the ClawHub package metadata with:

clawhub package inspect ai-security-audit-pro

Supported Agents

| Agent or tool | Included support | |---|---| | Codex | .codex-plugin/plugin.json, skills/security-audit/SKILL.md, AGENTS.md | | Claude Code | .claude-plugin/plugin.json, skills/security-audit/SKILL.md, CLAUDE.md | | Gemini CLI | GEMINI.md and the CLI workflow | | Google Antigravity | GEMINI.md or agent-adapters/antigravity.md | | OpenCode | AGENTS.md or agent-adapters/opencode.md | | Hermes | agent-adapters/hermes.md and the CLI as a local command tool | | OpenClaw | agent-adapters/openclaw.md and the CLI workflow | | Any other AI agent | Use the universal prompt and CLI command |

Universal prompt:

Use AI Security Audit Pro Plugin from this repository. Run node scripts/security-audit.mjs against the exact target. Keep the audit defensive, authorized, and non-destructive. Redact secrets. Separate confirmed findings from likely or needs-validation findings. Produce Markdown plus HTML when requested, and explain skipped checks or residual risk.

What It Can Check

| Surface | Examples | |---|---| | Source code | Injection hotspots, unsafe execution, XSS sinks, SSRF hotspots, file access, deserialization, XML parser risks, auth/IDOR/BOLA review hotspots, mass-assignment, JWT/session mistakes, and CI/CD workflow trust-boundary risks. | | Secrets | API keys, tokens, private keys, JWTs, cloud keys, and secret-like assignments with redacted evidence. | | Dependencies | npm, pnpm, yarn, pip-audit, Bandit, OSV-Scanner, govulncheck, cargo-audit, composer audit when available. | | Websites | Headers, TLS, cookies, CORS, HTTP methods, exposed files, debug endpoints, API docs, security.txt. | | SPA bundle risks | Lazy-loaded JavaScript chunk discovery, production debug logging, endpoint-map exposure, token storage, secret-like public config, GraphQL introspection/schema signals, client-side password-transform signals, hardcoded identity placeholders, payment return URL drift, and auth identity-binding signals that need controlled validation. | | APIs | OpenAPI, Swagger, GraphQL, Postman artifacts, route inventory, authorization hotspots. | | Active scanning | Authorized httpx, SSLyze, katana, ffuf, Nuclei, and OWASP ZAP orchestration when installed. | | Business logic | Role testing, object authorization, uploads, quotas, sharing, admin flows, and workflow-abuse planning through the scope template. | | Reports | Markdown, printable report-style HTML, PDF, and JSON. |

What Makes It Useful

  • It is agent-neutral. The same repo can guide Codex, Claude Code, Gemini CLI, OpenCode, Hermes, OpenClaw, and other tools.
  • It gives agents a real command to run instead of relying on vague prompt memory.
  • It records skipped checks instead of pretending coverage happened.
  • It encourages validation instead of treating every scanner result as a confirmed bug.
  • It produces reports with impact, evidence, remediation, OWASP/CWE mapping, and safe validation steps.
  • It can be used on local projects, localhost apps, staging sites, and authorized public targets.
  • It supports JSON output so agents can parse results and build follow-up workflows.

No honest security tool can promise to find every vulnerability. This plugin is designed to find strong signals, preserve evidence, and make the remaining gaps visible.

Quick Start

Fastest path from npm:

npm install -g ai-security-audit-pro
security-audit-pro --target . --out security-audit-report.md --html-out security-audit-report.html

Source checkout path:

git clone https://github.com/xsourabhsharma/ai-security-audit-pro.git
cd ai-security-audit-pro
npm test

Run the local engine from source:

node scripts/security-audit.mjs --target . --out security-audit-report.md --html-out security-audit-report.html

OpenClaw path through ClawHub:

openclaw plugins install clawhub:ai-security-audit-pro

Requirements:

  • Node.js 18 or newer.
  • Optional: Python plus ReportLab for PDF output.
  • Optional scanner tools on PATH for deeper coverage.

Common Audit Commands

Local project:

node scripts/security-audit.mjs --target . --out security-audit-report.md --html-out security-audit-report.html

Authorized website:

node scripts/security-audit.mjs --target https://staging.example.com --mode standard --authorized --out report.md --html-out report.html

Deep authorized active scan:

node scripts/security-audit.mjs --target https://staging.example.com --mode active --profile deep --authorized --scope-file templates/authenticated-audit-scope.md --out report.md --html-out report.html --pdf-out report.pdf

Deep narrative report without active probing:

node scripts/security-audit.mjs --target . --mode passive --report-depth deep --out report.md --html-out report.html

JSON for agent workflows:

node scripts/security-audit.mjs --target . --json --out report.json

Modes

| Mode | Best for | Notes | |---|---|---| | passive | Local projects and low-risk URL posture checks. | Does not perform active probing. | | standard | Authorized websites where shallow exposure checks are allowed. | Requires --authorized. | | active | Authorized security reviews where scanner orchestration is allowed. | Requires --authorized. |

Active profiles:

  • safe: lower request volume.
  • balanced: default profile.
  • deep: broader non-destructive coverage for explicitly authorized targets.

Report depth:

  • standard: executive report, findings, coverage, validation steps, and residual risk.
  • deep: adds reference-style manual-review sections: component inventory, reconstructed review flow, security invariants, trust assumptions, boundary conditions, exploitability narrative, evidence index, surface index, final assessment, and prioritized remediation/audit tasks.
  • If --report-depth is omitted, --profile deep automatically selects deep report depth; otherwise reports use standard depth.

What A Report Looks Like

The output is meant to read like a real security handoff, not a raw tool dump. HTML reports use a printable report-document layout with a cover band, executive snapshot, severity cards, findings table, coverage matrix, safe validation panel, and detailed appendix.

AI Security Audit Pro Report
  Report Snapshot
  Assessment Conclusion
  Finding Overview
  Key Risk Summary
  Confirmed Vulnerabilities / Risks
  Component Inventory
  Reconstructed Review Flow
  Core Security Invariants
  Trust Assumptions
  Boundary Conditions Reviewed
  Exploitability Assessment
  Evidence Index
  Prioritized Remediation And Audit Tasks
  Source File And Surface Index
  Final Assessment
  Scope And Authorization
  Auth And Business Logic Scope
  Critical Severity Findings
  High Severity Findings
  Medium Severity Findings
  Low Severity Findings
  Info Severity Findings
  Reviewed Surfaces
  Coverage Matrix
  Tool Execution
  Skipped Checks And Residual Risk

Each finding can include:

Status: Confirmed / Likely / Needs validation
Severity: Critical / High / Medium / Low / Info
Affected surface: file, URL, endpoint, header, route, or workflow
Evidence: redacted and reviewable
Risk: why this matters
Impact: what an attacker could gain
Mapping: OWASP / CWE where practical
Remediation: how to fix it
Safe validation: non-destructive reproduction or confirmation step

Optional Scanner Tooling

The plugin works without bundled scanner binaries. Install tools separately and keep them on PATH, or set SECURITY_AUDIT_TOOLS_DIR.

Supported optional tools:

  • Semgrep
  • OSV-Scanner
  • Gitleaks
  • TruffleHog
  • npm, pnpm, yarn audit
  • pip-audit
  • Bandit
  • govulncheck
  • cargo-audit
  • composer audit
  • ProjectDiscovery httpx
  • katana
  • ffuf
  • Nuclei
  • SSLyze
  • OWASP ZAP
  • Docker for ZAP Docker baseline

When a tool is missing, the report says so clearly.

Repository Layout

ai-security-audit-pro/
  .codex-plugin/plugin.json
  .claude-plugin/plugin.json
  agent-adapters/
  assets/
  docs/
  examples/
  scripts/security-audit.mjs
  skills/security-audit/SKILL.md
  templates/authenticated-audit-scope.md
  AGENTS.md
  CLAUDE.md
  GEMINI.md

Responsible Use

Use this plugin only on systems you own or are explicitly authorized to test.

Do not use it for credential attacks, denial of service, persistence, stealth, malware, data dumping, or testing outside approved scope.

A clean report means "no issues found by these checks." It does not prove the target has no vulnerabilities. Review coverage, skipped checks, and manual validation notes.

Development

npm test
node scripts/security-audit.mjs --help
node scripts/security-audit.mjs --target . --mode passive --no-tools --json --out self-audit.json

License

MIT. See LICENSE.