cso

Runs a multi-phase security audit across a codebase. Covers secrets in git history, dependency supply chains, CI/CD pipeline risks, LLM-specific vulnerabilities, OWASP Top 10, and STRIDE threat modeling. Produces a findings report with exploit scenarios, severity ratings, and remediation guidance. Two modes: daily (8/10 confidence gate, zero noise) and comprehensive (2/10 bar, surfaces more candidates). Manually checking 14 attack surface categories across git history, CI configs, dependencies, and application code takes hours and most teams skip the archaeology entirely — this covers all of it in one pass with confidence-gated filtering that cuts noise before it reaches your report.