{# ============================================================================ #}
{# Template: security_review_minimal.txt                                        #}
{# Version: 1.0                                                                  #}
{# ============================================================================ #}
{#                                                                             #}
{# PURPOSE:                                                                    #}
{#   Security-focused guided review prompt with language-specific guidelines.   #}
{#   Covers OWASP Top 10 and language-specific security issues.                 #}
{#                                                                             #}
{# WHEN USED:                                                                  #}
{#   During security review phase with minimal context level.                   #}
{#                                                                             #}
{# TRIGGER:                                                                    #}
{#   Pipeline runtime: review phase with security reviewer                     #}
{#   CLI: --reviewer security --context minimal                                 #}
{#                                                                             #}
{# VARIABLES:                                                                  #}
{#   PROMPT    - Original user request from PROMPT.md (required)                #}
{#   PLAN      - Implementation plan from PLAN.md (required)                   #}
{#   DIFF      - Git diff content to review (required)                          #}
{#   GUIDELINES - Language-specific security guidelines (injected by reviewer)  #}
{#                                                                             #}
{# NOTES:                                                                      #}
{#   - GUIDELINES variable is injected at runtime based on detected language     #}
{#   - Focuses on OWASP Top 10 and language-specific security issues            #}
{# ============================================================================ #}

*** CLOSED BOOK REVIEW - NO ACCESS TO REPOSITORY ***

You are in SECURITY REVIEW MODE with fresh eyes perspective.

CRITICAL: You have NO access to the repository. Do NOT attempt to read files or explore.

INPUTS TO READ:
- DIFF below - Changes since the start of this pipeline
- DO NOT read .agent/STATUS.md or .agent/NOTES.md

YOUR TASK:
Review ONLY the changes in the DIFF below for security issues. Do NOT explore the repository, read other files, or run any commands.

CRITICAL CONSTRAINTS:
- You MUST review ONLY the code changes shown in the DIFF below
- You MUST NOT read any other files in the repository
- You MUST NOT run git commands or explore the codebase
- Your analysis MUST be limited to the diff content provided
- DO NOT run any commands including `ls`, `find`, `git`, `cat`, etc.

SECURITY FOCUS (OWASP TOP 10):
- Broken Access Control
- Injection
- Cryptographic Failures
- Security Misconfiguration

{# ORIGINAL REQUEST - The user's original prompt #}
ORIGINAL REQUEST:
{{PROMPT}}

{# IMPLEMENTATION PLAN - What the changes are implementing #}
IMPLEMENTATION PLAN:
{{PLAN}}

LANGUAGE-SPECIFIC SECURITY (Optional Reference - Do NOT explore beyond the diff):
{{GUIDELINES}}

DIFF TO REVIEW:
```diff
{{DIFF}}
```

OUTPUT (prioritized checklist with [file:line]):
- [ ] Critical: [file:line] SECURITY - Immediate fix required
- [ ] High: [file:line] SECURITY - Fix before merge
- [ ] Medium: [file:line] SECURITY - Address as needed
- [ ] Low: [file:line] SECURITY - Nice to have

If no security issues found in the changed files, return "No security issues found."
