How does the skill report security findings?

It provides a consolidated report featuring a PASS/FAIL status, findings grouped by severity, exact remediation instructions, and a command list to verify fixes.

What happens if a required scanner is not installed?

If a scanner is missing, the skill will report the necessary installation instructions to the user and attempt to continue with other available checks.

Can it be used for CI/CD hardening?

Absolutely. It is designed to run reproducible, tool-backed security checks that are ideal for ensuring code quality and security before deployment.

Is this skill compatible with OpenClaw?

Yes, this skill is part of the SuperClaw pack and is specifically adapted to function within OpenClaw-native tool workflows using documented fallback scripts.

What scanners does the ECC Security Scanner use?

The skill prioritizes ecc-agentshield if available, then falls back to language-native tools like npm audit, pip-audit, or gosec depending on the project environment.

ECC Security Scanner

Name: ECC Security Scanner
Author: oabdelmaksoud

byoabdelmaksoud

0•

Seguridad y Pruebas

Automates security vulnerability detection and code hardening by executing scanner-first checks and generating actionable remediation reports.

The ECC Security Scanner skill empowers Claude to perform deep security reviews and vulnerability detection across various environments. By integrating with toolsets like ecc-agentshield and language-native auditors such as npm audit, pip-audit, or gosec, it provides a unified interface for identifying risks. It is specifically designed to classify findings by severity, offer exact remediation steps, and provide verification commands, ensuring your codebase remains secure and compliant within the OpenClaw and ECC-native tool workflows.

Características Principales

01Integration with ecc-agentshield for harness-level configuration scanning

02Step-by-step remediation actions for discovered vulnerabilities

030 GitHub stars

04Automated generation of re-run commands for fix verification

05Consolidated risk reporting grouped by severity levels

06Automated repository-native security checks (npm, pip, gosec)

Casos de Uso

01Automating security compliance checks within a developer workflow

02Performing a comprehensive security audit before merging critical code changes

03Identifying and hardening vulnerable dependencies in polyglot projects

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add oabdelmaksoud/superclaw ecc-security-scan

For use in Claude.ai and ChatGPT

Características Principales

01Integration with ecc-agentshield for harness-level configuration scanning

02Step-by-step remediation actions for discovered vulnerabilities

030 GitHub stars

04Automated generation of re-run commands for fix verification

05Consolidated risk reporting grouped by severity levels

06Automated repository-native security checks (npm, pip, gosec)

Casos de Uso

01Automating security compliance checks within a developer workflow

02Performing a comprehensive security audit before merging critical code changes

03Identifying and hardening vulnerable dependencies in polyglot projects

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add oabdelmaksoud/superclaw ecc-security-scan

For use in Claude.ai and ChatGPT