Skills

security-scanning

Installation
SKILL.md

Security Scanning

When to Use

  • Scanning a project directory for known vulnerabilities (CVEs)
  • Scanning a container image before deployment
  • Scanning Infrastructure-as-Code (Terraform, CloudFormation) for misconfigurations
  • Linting shell scripts for bugs, pitfalls, and unsafe patterns
  • Encrypting or decrypting secrets stored in YAML/JSON config files
  • Checking dependencies for known security issues

Tools

Tool Purpose Structured output
Trivy Vulnerability scanner for filesystems, containers, IaC --format json or --format sarif
ShellCheck Static analysis and linting for shell scripts -f json for JSON output
sops Encrypt/decrypt secrets in YAML, JSON, ENV files Outputs decrypted file to stdout

Patterns

Related skills

More from jeremylongshore/claude-code-plugins-plus-skills

Installs
1
Repository
jeremylongshore…s-skills
GitHub Stars
2.2K
First Seen
5 days ago
Security Audits
Gen Agent Trust HubPass
SnykPass