Audit Claude Code configurations for security vulnerabilities, misconfigurations, and injection risks.

• Scans five configuration areas: CLAUDE.md, settings.json, MCP servers, hooks, and agent definitions for hardcoded secrets, prompt injection patterns, overly permissive permissions, and command injection risks
• Provides four output formats (terminal, JSON, Markdown, HTML) and integrates with CI/CD via GitHub Action with configurable severity filtering
• Includes auto-fix mode for safe remediations like replacing hardcoded secrets with environment variables, plus optional Opus 4.6 deep analysis using a three-agent red-team/blue-team pipeline
• Requires AgentShield installation via npm; can run directly with npx without setup