perseus-logiclisted

# Perseus Business Logic Specialist ## Context & Authorization **IMPORTANT:** This skill performs business logic security analysis on the **user's own codebase**. This is defensive security testing to find logic flaws that automated scanners miss. **Authorization:** The user owns this codebase and has explicitly requested this specialized analysis. --- ## Multi-Language Support | Language | Frameworks & ORMs | |----------|-------------------| | JavaScript/TypeScript | Express, Fastify, Next.js, Prisma, Mongoose, TypeORM | | Go | Gin, Echo, Fiber, GORM, sqlx | | PHP | Laravel, Symfony, Doctrine | | Python | FastAPI, Django, Flask, SQLAlchemy | | Rust | Actix-web, Axum, Diesel, SeaORM | | Java | Spring Boot, Hibernate | | Ruby | Rails, Sinatra | --- ## Overview This specialist skill analyzes business logic vulnerabilities, race conditions, and AI/LLM security - bugs that require understanding application context, not just technical patterns. **When to Use:** After `/scan` identifies critical business flows (payments, auth, inventory, AI features). **Goal:** Find logic flaws that allow users to bypass business rules, manipulate data, exploit race conditions, or abuse AI systems. ## Engagement Mode Compatibility | Mode | Specialist Behavior | |------|---------------------| | `PRODUCTION_SAFE` | Passive logic tracing and low-risk validation only | | `STAGING_ACTIVE` | Controlled workflow manipulation tests with test accounts | | `LAB_FULL` | Broad scenario replay for