adlc-security-checklist

star 1

Run a read-only ADLC security gate for secrets, trust boundaries, and unsafe workflow changes.

davidvictor By davidvictor schedule Updated 5/20/2026
play_arrow Run Skill in Manus View GitHub

name: adlc-security-checklist description: Run a read-only ADLC security gate for secrets, trust boundaries, and unsafe workflow changes.

ADLC Security Checklist

Use this when a plan, diff, extension, MCP configuration, release candidate, or workflow change needs a standalone security gate.

Process

  1. Resolve effective ADLC paths from .adlc/config.yaml; use adlc resolve-config when the CLI is available.
  2. Pin the target: plan, diff, extension directory, MCP template, agent install, or release candidate.
  3. Read architecture, rules, configured security references, and relevant source files.
  4. Inspect secrets, auth, authorization, prompt/data injection, path traversal, command execution, dependency/install behavior, and external integrations.
  5. Stay read-only. Route fixes to adlc-fix, adlc-rules, adlc-plan, or adlc-implement.
  6. Lead with exploitable or operationally meaningful findings.

Output

End with a final parseable adlc-gate-result fenced block:

{
  "schema_version": 1,
  "gate": "security",
  "status": "pass|warn|fail",
  "blocking": false,
  "blockers": [],
  "affected_files": [],
  "suggested_next": {
    "command": "adlc-fix|adlc-rules|adlc-plan|adlc-commit|null",
    "reason": "Short reason."
  }
}
Install via CLI
npx skills add https://github.com/davidvictor/adlc-skills --skill adlc-security-checklist
Repository Details
star Stars 1
call_split Forks 0
navigation Branch main
article Path SKILL.md
More from Creator
davidvictor
davidvictor Explore all skills →