Security Review Overview Identify security vulnerabilities in code changes. Covers OWASP categories, injection vectors, authentication/authorization issues, data exposure, and dependency risks. When to Use - After code review passes (or in parallel) - Before any code merge involving user-facing changes - As part of the /review-security command - Mandatory for high-stakes implementations Process 1. Identify modified files with security relevance 2. Scan for common vulnerability patterns 3. Assess authentication and authorization changes 4. Check for data exposure risks 5. Evaluate dependency s…