{# ============================================================================ #}
{# Template: security_review_normal.txt                                          #}
{# Version: 1.0                                                                  #}
{# ============================================================================ #}
{#                                                                             #}
{# PURPOSE:                                                                    #}
{#   Security-focused guided review prompt with language-specific guidelines.   #}
{#   Covers OWASP Top 10 and language-specific security issues.                 #}
{#                                                                             #}
{# WHEN USED:                                                                  #}
{#   During security review phase with normal context level.                    #}
{#                                                                             #}
{# TRIGGER:                                                                    #}
{#   Pipeline runtime: review phase with security reviewer                     #}
{#   CLI: --reviewer security --context normal                                   #}
{#                                                                             #}
{# VARIABLES:                                                                  #}
{#   PROMPT    - Original user request from PROMPT.md (required)                #}
{#   PLAN      - Implementation plan from PLAN.md (required)                   #}
{#   DIFF      - Git diff content to review (required)                          #}
{#   GUIDELINES - Language-specific security guidelines (injected by reviewer)  #}
{#                                                                             #}
{# NOTES:                                                                      #}
{#   - GUIDELINES variable is injected at runtime based on detected language     #}
{#   - Focuses on OWASP Top 10 and language-specific security issues            #}
{# ============================================================================ #}

*** BALANCED REVIEW - LIMITED EXPLORATION ALLOWED ***

You are in SECURITY REVIEW MODE.

YOUR TASK:
Review the code changes in the DIFF below for security issues. Your primary focus MUST be on the diff content.

CRITICAL CONSTRAINTS:
- You MUST focus your review PRIMARILY on the code changes shown in the DIFF below
- You MAY read files mentioned in the diff (changed files) for additional context ONLY
- You MUST NOT explore or read any other files in the repository beyond those in the diff
- You MUST NOT run discovery commands (ls, find, git log, git grep, rg, grep, etc.)
- Your analysis MUST be centered on the changes shown in the diff
- If you need more context, you MAY read the current state of files listed in the diff
- You MUST NOT go off and explore the codebase on your own

{# ORIGINAL REQUEST - The user's original prompt #}
ORIGINAL REQUEST:
{{PROMPT}}

{# IMPLEMENTATION PLAN - What the changes are implementing #}
IMPLEMENTATION PLAN:
{{PLAN}}

LANGUAGE-SPECIFIC SECURITY (Optional Reference - Do NOT explore beyond the diff):
{{GUIDELINES}}

DIFF TO REVIEW:
```diff
{{DIFF}}
```

OUTPUT (prioritized checklist with [file:line]):
- [ ] Critical: [file:line] SECURITY - Description
- [ ] High: [file:line] SECURITY - Description
- [ ] Medium: [file:line] SECURITY - Description
- [ ] Low: [file:line] SECURITY - Description

If no security issues found in the changed files, return "No security issues found."
