How does this skill help with security decisions?

The skill categorizes findings into Clean, Medium, High, and Critical risk levels, providing explanations for each threat to help you understand the security implications of approving an item.

Can I recover items that have been rejected?

No, items rejected via the sigil reject command are permanently deleted to ensure they do not pose a threat to your local environment or repository.

What is the main purpose of the Sigil review-quarantine skill?

It allows Claude to manage items isolated by the Sigil security scanner, helping you decide whether to approve or reject code based on specific risk levels and findings.

Is this skill restricted to AI-generated code?

While optimized for AI agent workflows, it can be used to audit and manage any repositories, packages, or scripts processed by the Sigil CLI tool.

How do I move a safe item from quarantine to my project?

Once you have determined an item is safe, use the 'sigil approve ' command within the skill to move the item from the quarantine area to your working directory.

Sigil Security Review

Name: Sigil Security Review
Author: NOMARJ

byNOMARJ

•

Seguridad y Pruebas

Manages and audits quarantined code items to ensure security before integration into the working directory.

The Sigil review-quarantine skill provides a specialized interface for Claude to manage the Sigil security workflow, allowing for the inspection of suspicious code, packages, or AI-generated scripts. It enables a 'quarantine-first' approach where findings are categorized by risk level—from Clean to Critical—allowing developers to make informed decisions to approve or permanently reject items. This skill is essential for teams using AI agents to ensure that no malicious code or vulnerabilities are introduced into the codebase during automated processes.

Características Principales

01List all currently quarantined items pending security review

02Detailed analysis of detected threats and risk level explanations

03Permanent rejection and deletion of identified malicious items

04Risk-based decision criteria to guide developers through complex audits

051 GitHub stars

06One-command approval to move safe code to the working directory

Casos de Uso

01Vetting AI-generated code for security vulnerabilities before merging

02Auditing third-party packages flagged by automated security scans

03Managing a secure-by-default developer workflow for agentic tools

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add nomarj/sigil review-quarantine

For use in Claude.ai and ChatGPT

Download Skill