Search Results: vulnerability-scan

Found 70 Skills

Security & Compliancejeremylongshore/claude-co...

scanning-for-vulnerabilities

Execute this skill enables comprehensive vulnerability scanning using the vulnerability-scanner plugin. it identifies security vulnerabilities in code, dependencies, and configurations, including cve detection. use this skill when the user asks to scan fo... Use when appropriate context detected. Trigger with relevant phrases based on skill purpose.

🇺🇸|EnglishTranslated

3 scripts/Checked

Security & Compliancezackkorman/skills

security-review-2

A general skill for performing security reviews and auditing codebases for vulnerabilities. ALWAYS run this at the end of each task.

🇺🇸|EnglishTranslated

596

Security & Compliancejeffallan/claude-skills

security-reviewer

Use when conducting security audits, reviewing code for vulnerabilities, or analyzing infrastructure security. Invoke for SAST scans, penetration testing, DevSecOps practices, cloud security reviews.

🇺🇸|EnglishTranslated

Security & Complianceaffaan-m/everything-claud...

security-scan

Scan your Claude Code configuration (.claude/ directory) for security vulnerabilities, misconfigurations, and injection risks using AgentShield. Checks CLAUDE.md, settings.json, MCP servers, hooks, and agent definitions.

🇺🇸|EnglishTranslated

Security & Complianceed1s0nz/cyberstrikeai

security-automation

安全自动化的专业技能和方法论

🇺🇸|EnglishTranslated

Security & Complianceharishwarrior/flutter-cla...

owasp-mobile-security-checker

Analyze Flutter and mobile applications for OWASP Mobile Top 10 (2024) security compliance. Use this skill when performing security audits, vulnerability assessments, or compliance checks on mobile applications. Performs automated scans for hardcoded secrets, insecure storage, weak cryptography, network security issues, and provides detailed remediation guidance.

🇺🇸|EnglishTranslated

4 scripts/Checked

Security & Complianceduck4nh/antigravity-kit

pentest-expert

Penetration testing methodology expert. OWASP, PTES, reconnaissance, scanning, exploitation, reporting. Use for security assessments.

🇺🇸|EnglishTranslated

Security & Compliancejorgealves/agent_skills

prompt-injection-scanner

Audits agent skill instructions and system prompts for vulnerabilities to prompt hijacking and indirect injection. Use when designing new agent skills or before deploying agents to public environments where users provide untrusted input.

🇺🇸|EnglishTranslated

Security & Compliancetrailofbits/skills

algorand-vulnerability-scanner

Scans Algorand smart contracts for 11 common vulnerabilities including rekeying attacks, unchecked transaction fees, missing field validations, and access control issues. Use when auditing Algorand projects (TEAL/PyTeal).

🇺🇸|EnglishTranslated

Code Qualitylevnikolaevich/claude-cod...

ln-625-dependencies-auditor

Dependencies audit worker (L3). Checks outdated packages, unused deps, reinvented wheels, vulnerability scan (CVE/CVSS). Supports mode: full | vulnerabilities_only.

🇺🇸|EnglishTranslated

Security & Compliancegithub/awesome-copilot

security-review

AI-powered codebase security scanner that reasons about code like a security researcher — tracing data flows, understanding component interactions, and catching vulnerabilities that pattern-matching tools miss. Use this skill when asked to scan code for security vulnerabilities, find bugs, check for SQL injection, XSS, command injection, exposed API keys, hardcoded secrets, insecure dependencies, access control issues, or any request like "is my code secure?", "review for security issues", "audit this codebase", or "check for vulnerabilities". Covers injection flaws, authentication and access control bugs, secrets exposure, weak cryptography, insecure dependencies, and business logic issues across JavaScript, TypeScript, Python, Java, PHP, Go, Ruby, and Rust.

🇺🇸|EnglishTranslated

Security & Compliancetrailofbits/skills

ton-vulnerability-scanner

Scans TON (The Open Network) smart contracts for 3 critical vulnerabilities including integer-as-boolean misuse, fake Jetton contracts, and forward TON without gas checks. Use when auditing FunC contracts.

🇺🇸|EnglishTranslated