What scan types does this skill aggregate?

It combines results from dependency scans (SCA), secrets detection, and static code analysis (SAST) performed by other Ghost Security skills.

Does this skill run the scans itself?

No, it aggregates results from existing scans. You should run /ghost-scan-deps, /ghost-scan-secrets, or /ghost-scan-code before generating the report.

How does it prioritize vulnerabilities?

It filters for high-confidence issues (confirmed or verified status) and sorts them by severity, ensuring the most critical risks are addressed first.

Is the report self-contained?

Yes, the report inlines all relevant finding details, including descriptions, locations, and remediation steps, so you don't have to navigate individual files.

Ghost Unified Security Report

Name: Ghost Unified Security Report
Author: ghostsecurity

byghostsecurity

•

357

•

Seguridad y Pruebas

Aggregates and prioritizes findings from multiple security scans into a single, comprehensive markdown audit report.

The ghost-report skill serves as a centralized reporting engine for the Ghost Security suite, synthesizing results from dependency, secret, and static code analysis (SAST) scans. It eliminates manual triage effort by filtering for high-confidence, high-risk vulnerabilities and generating a self-contained document. The final report inlines critical findings, code snippets, remediation steps, and executive statistics, making it an essential tool for developers and security teams who need a holistic view of their repository's security posture before production releases or security reviews.

Características Principales

01Inlines code snippets and remediation commands for self-contained reporting

02Generates executive summaries and scan coverage statistics

03Consolidates results from SCA, SAST, and secrets detection scans

04Organizes findings by severity and scan type for efficient review

05Prioritizes high-risk vulnerabilities while filtering out false positives

06357 GitHub stars

Casos de Uso

01Reviewing prioritized security findings across different domains in a single unified view

02Performing a comprehensive security audit before a major production deployment

03Generating a consolidated vulnerability summary for stakeholders or compliance reviews

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add ghostsecurity/skills report

For use in Claude.ai and ChatGPT

Download Skill