它能为 Agent 带来什么
查看 Security Review 的工作方式、所需输入、返回结果、权限边界以及源代码维护位置。
它能做什么
- Map trust boundaries
- Identify credential exposure
- Review authorization decisions
- Prioritize exploitable findings
它需要什么
- Code changes
- Architecture context
- Permission model
它会返回什么
- Security findings
- Threat assumptions
- Verification steps
让它开始工作
“Review this OAuth change for security risks.”
“Trace how this endpoint authorizes workspace access.”
