What is the purpose of the Review Quarantine skill?

It allows developers to safely inspect and manage code flagged by Sigil's security scanner before it is moved to the working directory.

Do I need the Sigil CLI installed to use this skill?

Yes, this skill acts as an interface for the Sigil security auditing tool and requires the Sigil binary to be present.

Can I recover items that I have rejected?

No, items rejected through the Sigil CLI are permanently deleted to ensure they cannot compromise your security environment.

How does the skill help determine if code is safe?

It provides threat explanations and risk levels (Clean, Low, Medium, High, Critical) to guide your approval or rejection decisions.

Is this skill suitable for auditing AI-generated code?

Yes, it is specifically optimized for the 'quarantine-first' workflow essential for auditing code produced by AI agents and external sources.

Sigil Quarantine Review

Name: Sigil Quarantine Review
Author: NOMARJ

byNOMARJ

•

セキュリティとテスト

Audits and manages quarantined code items to ensure security compliance before integration into active development environments.

The Sigil Quarantine Review skill provides a structured security workflow for Claude Code, enabling developers to inspect and manage code flagged as potentially harmful. By providing detailed insights into detected threats and categorized risk levels—from Clean to Critical—it empowers users to make informed decisions on whether to approve code for the working directory or reject it to prevent vulnerabilities. This skill is essential for teams maintaining a 'quarantine-first' development lifecycle when handling AI-generated code or third-party packages.

主な機能

01Categorized risk level assessment from Clean to Critical

02Detailed security finding analysis for every detected threat

03Direct execution of Sigil CLI commands for efficient workflow management

041 GitHub stars

05List and inspect all items currently held in Sigil quarantine

06Guided decision-making for approving or permanently rejecting code

ユースケース

01Managing third-party packages flagged during automated security scans

02Vetting AI-generated code snippets before they enter a production repository

03Reviewing and resolving false positives in security auditing workflows

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add nomarj/sigil review-quarantine

For use in Claude.ai and ChatGPT

Download Skill