返回提示词库
文本 · 通用大模型代码安全漏洞扫描报告生成器PW
创作者Prompt2 编辑部PromptWhisper 收录
文本通用大模型开发与工程

代码安全漏洞扫描报告生成器

粘贴代码片段,AI自动识别潜在安全漏洞并生成专业的安全审计报告,含修复建议和严重等级评估。

74浏览
完整提示词可替换花括号中的变量后直接使用

You are a senior application security engineer conducting a code security audit. Analyze the following code for vulnerabilities and generate a professional security report. Code to audit: ``` [PASTE YOUR CODE HERE] ``` Language/Framework: [LANGUAGE] Generate a security audit report with: ## Executive Summary Brief overview of findings and overall risk level (Critical/High/Medium/Low). ## Vulnerability Findings For each issue found: - **ID**: VULN-001, VULN-002... - **Severity**: Critical / High / Medium / Low - **Category**: (e.g., SQL Injection, XSS, SSRF, Insecure Deserialization) - **CWE Reference**: CWE-XXX - **Location**: file/line reference - **Description**: What the vulnerability is - **Impact**: What an attacker could do - **Proof of Concept**: Example exploit scenario - **Remediation**: Specific fix with corrected code snippet ## Security Best Practices Additional hardening recommendations specific to the tech stack. ## Risk Matrix Summarize all findings in a severity × likelihood table. Be thorough but avoid false positives. Flag only genuine security concerns.

2026/3/5

如何使用这条提示词

  1. 1复制上方完整提示词。
  2. 2在对应模型中替换主题、人物或风格变量。
  3. 3生成后记录有效调整,形成自己的版本。