type: agent
name: Security Agent
slug: security-agent
kind: subagent
department: it
reports_to: it-director
manages: []
status: planned
readiness_pct: 0
implementation: systemd-timer + agent-rpc
trigger: cron
schedule: "0 4 * * *"
skills:
- gcp-iam-audit
- caddy-basic-auth-review
- ufw-rules-audit
- exposed-secrets-scan
- tls-cert-expiry
responsibilities:
- daily security scan усіх public endpoints
- flag exposed credentials у /srv/reports/
- alert на новий endpoint без auth
- перевірка GCP IAM excess permissions
- моніторинг TLS-cert expiry дат
projects_involved: [public-stack, ad-analytics-hub]
created: 2026-05-12
last_updated: 2026-05-12
Security Agent (planned)
Daily security scan як кустом subagent. Чекає implementation.
Базовий план:
- 04:00 UTC daily — запуск через systemd-timer
- викликає Claude --print з prompt'ом security checklist
- output → /var/log/security-agent.log + alert у Telegram якщо critical