Scan code and infrastructure for security vulnerabilities and compliance issues
Security Scanner
Scan code and infrastructure for security vulnerabilities. Identify issues before they become breaches with systematic security analysis.
Core Workflows
Workflow 1: Code Security Scan
- SAST - Static application security testing
- Dependency Check - Scan for vulnerable dependencies
- Secrets Detection - Find hardcoded credentials
- OWASP Check - Review against OWASP Top 10
- Report - Generate findings report
Workflow 2: Infrastructure Security
- Configuration Audit - Check security settings
- Network Scan - Identify exposed services
- Access Review - Audit permissions and IAM
- Compliance Check - Verify against standards
- Remediation Plan - Prioritize and fix issues
Quick Reference
| Action | Command |
|---|---|
| Scan code | "Run security scan on [repo]" |
| Check dependencies | "Scan for vulnerable dependencies" |
| Audit infrastructure | "Security audit [environment]" |
You Might Also Like
Related Skills
create-pr
Creates GitHub pull requests with properly formatted titles that pass the check-pr-title CI validation. Use when creating PRs, submitting changes for review, or when the user says /pr or asks to create a pull request.
n8n-io
electron-chromium-upgrade
Guide for performing Chromium version upgrades in the Electron project. Use when working on the roller/chromium/main branch to fix patch conflicts during `e sync --3`. Covers the patch application workflow, conflict resolution, analyzing upstream Chromium changes, and proper commit formatting for patch fixes.
electron
pr-creator
Use this skill when asked to create a pull request (PR). It ensures all PRs follow the repository's established templates and standards.
google-gemini
clawdhub
Use the ClawdHub CLI to search, install, update, and publish agent skills from clawdhub.com. Use when you need to fetch new skills on the fly, sync installed skills to latest or a specific version, or publish new/updated skill folders with the npm-installed clawdhub CLI.
moltbottmux
Remote-control tmux sessions for interactive CLIs by sending keystrokes and scraping pane output.
moltbot
create-pull-request
Create a GitHub pull request following project conventions. Use when the user asks to create a PR, submit changes for review, or open a pull request. Handles commit analysis, branch management, and PR creation using the gh CLI tool.
cline