Alanamultiskillagent
Back to skills

differential-review

security

Runs security-focused differential reviews on PRs, commits, and diffs. Scales analysis depth to codebase size, calculates blast radius for high-risk changes, checks test coverage gaps, and writes a ma

trailofbitstrailofbits
|View all trailofbits skills →

Setup & Installation

npx skills add https://github.com/trailofbits/differential-review --skill differential-review
or paste the link and ask your coding assistant to install it
https://github.com/trailofbits/differential-review
View on GitHub

What This Skill Does

Runs security-focused differential reviews on PRs, commits, and diffs. Scales analysis depth to codebase size, calculates blast radius for high-risk changes, checks test coverage gaps, and writes a markdown report file. Detects security regressions by tracing git history on removed code. Manual diff review skips git blame on removed code and rarely quantifies how many callers a changed function has, so regressions slip through without the structured blast radius and adversarial modeling this skill enforces.

When to use it

  • Working with differential review functionality
  • Implementing differential review features
  • Debugging differential review related issues

Similar Skills

audit-context-building

A structured analysis skill for the pre-audit phase of code review. It guides Claude through line-by-line function analysis, cross-boundary call tracing, and invariant mapping before any vulnerability

auth0-android

Adds authentication to native Android apps using the Auth0 SDK. Supports Web Auth login/logout, biometric-protected credentials, secure token storage, passwordless login, and MFA. Works with both Kotl

auth0-angular

Adds authentication to Angular apps using the @auth0/auth0-angular SDK. Handles login/logout flows, route guards, HTTP interceptors for attaching tokens, and user profile access through observables. W

auth0-aspnetcore-api

Adds JWT access token validation to ASP.NET Core Web APIs using Auth0. It handles bearer token authentication, scope and permission checks, and supports DPoP proof-of-possession token binding. Works w