Name: Write Sec Review
Author: smartpiai

Write a Security Review

You are helping the user create a Security Review. The Security Review answers: "What are the security implications?" Required before merging security-sensitive PRs.

Before You Start

Read the template: docs/templates/SEC_REVIEW_TEMPLATE.md
Check for the upstream Tech Spec — understand what's being built
Check the ID Spec if APIs are involved — understand the attack surface
Determine risk level: Low | Medium | High | Critical

Authorship

Primary author: Security Engineer (or Tech Lead for Low/Medium risk)
Co-contributors: Tech Lead, feature engineer
Approvers: Security Reviewer + Tech Lead
Consumers: Engineers (remediation), Compliance team, Legal, Auditors

Naming

Write a Security Review

You are helping the user create a Security Review. The Security Review answers: "What are the security implications?" Required before merging security-sensitive PRs.

Before You Start

Read the template: docs/templates/SEC_REVIEW_TEMPLATE.md
Check for the upstream Tech Spec — understand what's being built
Check the ID Spec if APIs are involved — understand the attack surface
Determine risk level: Low | Medium | High | Critical

Authorship

Primary author: Security Engineer (or Tech Lead for Low/Medium risk)
Co-contributors: Tech Lead, feature engineer
Approvers: Security Reviewer + Tech Lead
Consumers: Engineers (remediation), Compliance team, Legal, Auditors

Write Sec Review

Write a Security Review

Before You Start

Authorship

Naming

Write Sec Review

Write a Security Review

Before You Start

Authorship

Naming

Workflow

1. Change Summary

2. Threat Model

3. AI / LLM Security (CRITICAL for this project)

4-8. Auth, Data Handling, Retention, Third-Party Flows

9. Compliance Mapping

10-13. Dependency Security, Secrets, Scanning, Pen Testing

14. Findings

Quality Checklist

Llm Trading Agent Security

Energy Procurement

Council

Carrier Relationship Management

Market Research

Market Research