GH#14440: tighten security-audit.md command doc

[marcusquinn]

Summary

• Removes redundant preamble ("Perform a comprehensive security audit of an external repository.") — already conveyed by frontmatter description field
• Tightens security rule 🤖 CodeRabbit Analysis Trigger - Auto-Fix Recommendations Requested #3 and 🐰 Full CodeRabbit Review - Codebase Audit #4 prose without losing any constraint
• 54 → 52 lines; all code blocks, file paths, command examples, and security rules preserved

Verification

• All 4 security rules present before and after
• All 7 workflow steps present
• All 4 related commands present
• All code blocks intact (clone block, cleanup block)
• All file path references intact (tools/code-review/security-audit.md, workspace, helpers)
• Agent behaviour unchanged

Runtime Testing

Risk: Low — agent doc only, no code changes. self-assessed.

Closes #14440

---

aidevops.sh v3.5.600 plugin for OpenCode v1.3.13 with claude-sonnet-4-6 spent 5m on this as a headless worker.

[gemini-code-assist]

Warning

You have reached your daily quota limit. Please wait up to 24 hours and I will start processing your requests again!

[coderabbitai]

Warning

Rate limit exceeded

@marcusquinn has exceeded the limit for the number of commits that can be reviewed per hour. Please wait 28 minutes and 8 seconds before requesting another review.

Your organization is not enrolled in usage-based pricing. Contact your admin to enable usage-based pricing to continue reviews beyond the rate limit, or try again in 28 minutes and 8 seconds.

⌛ How to resolve this issue?

After the wait time has elapsed, a review can be triggered using the @coderabbitai review command as a PR comment. Alternatively, push new commits to this PR.

We recommend that you space out your commits to avoid hitting the rate limit.

🚦 How do rate limits work?

CodeRabbit enforces hourly rate limits for each developer per organization.

Our paid plans have higher rate limits than the trial, open-source and free plans. In all cases, we re-allow further reviews after a brief timeout.

Please see our FAQ for further information.

ℹ️ Review info

⚙️ Run configuration

Configuration used: Path: .coderabbit.yaml

Review profile: CHILL

Plan: Pro

Run ID: 234cd78b-7e89-446f-84f4-e465e9e3a2e3

📥 Commits

Reviewing files that changed from the base of the PR and between 5577cce and e1f332e.

📒 Files selected for processing (1)

• .agents/scripts/commands/security-audit.md

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch chore/GH-14440-tighten-security-audit-cmd

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[marcusquinn]

Completion Summary

• What: Tighten security-audit.md command doc — remove redundant preamble, tighten security rule prose (54→52 lines)
• Issue: simplification: tighten agent doc .agents/scripts/commands/security-audit.md (54 lines) #14440
• Files changed:
• Testing: Self-assessed (low risk — agent doc only). All code blocks, file paths, security rules, and workflow steps verified present before and after.
• Key decisions: Classified as instruction doc (not reference corpus) — tighten prose, not restructure. Removed only the preamble sentence that duplicates the frontmatter description.

This summary was written by the worker at PR creation time for the deterministic merge pass.

[github-actions]

🔍 Code Quality Report

�[0;35m[MONITOR]�[0m Code Review Monitoring Report

SonarCloud: 0 bugs, 0 vulnerabilities, 1 code smells

Thu Apr 2 01:53:36 UTC 2026: Code review monitoring started
Thu Apr 2 01:53:37 UTC 2026: SonarCloud - Bugs: 0, Vulnerabilities: 0, Code Smells: 1

📈 Current Quality Metrics

• BUGS: 0
• CODE SMELLS: 1
• VULNERABILITIES: 0

Generated on: Thu Apr 2 01:53:39 UTC 2026

---

Generated by AI DevOps Framework Code Review Monitoring

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

[codacy-production]

Up to standards ✅

🟢 Issues 0 issues

Results:
0 new issues

View in Codacy

_{TIP This summary will be updated as you push new changes. Give us feedback}

[alex-solovyev]

Auto-approved by pulse — collaborator PR (author: @marcusquinn). All pre-merge checks passed.