Which programming languages does this security skill support?

While the dependency and unsafe code scanning are optimized for Rust (using Cargo), the secret detection (gitleaks) and general auditing workflows can be used with any codebase.

How does it handle license compliance?

It utilizes cargo-deny to verify that all dependencies adhere to your allowed license list (e.g., MIT, Apache-2.0) and automatically flags copyleft or unauthorized licenses.

What happens if a secret like an AWS key is detected?

The skill identifies the leak, provides the specific file location, and offers git-filter-repo or commit amendment commands to purge the secret from your repository history.

Can I integrate this into my CI/CD pipeline?

Yes, the skill provides specific 'Quick Audit' patterns designed for CI environments that prioritize speed while maintaining essential security checks.

Security Audit & Vulnerability Scanner

Name: Security Audit & Vulnerability Scanner
Author: ShunsukeHayashi

byShunsukeHayashi

•

セキュリティとテスト

Conducts comprehensive security audits, dependency scans, and secret leak detection to ensure production-ready code safety.

概要

This skill provides an automated workflow for identifying security vulnerabilities within project dependencies, detecting unsafe code patterns, and preventing sensitive credential leaks. Designed primarily for Rust-based environments but extensible to general repositories, it integrates industry-standard tools like cargo-audit, gitleaks, and cargo-deny to ensure that codebases remain compliant, secure, and free of CVEs before production deployment.

主な機能

Supply chain security verification for external crates
Automated dependency vulnerability scanning and CVE monitoring
License compliance and policy enforcement auditing
Unsafe Rust code detection and memory safety analysis
7 GitHub stars
Sensitive secret and credential leak detection with gitleaks

ユースケース

Performing a full security audit before a production deployment
Identifying and purging accidentally committed secrets from Git history
Automating periodic security checks to maintain compliance standards