Does the scanner provide remediation advice?

Yes, the skill generates a detailed report that highlights findings, assigns severity levels, and provides specific remediation guidance to help you resolve the issues.

How do I trigger a security scan using Claude?

You can trigger the scan by asking Claude to 'scan for vulnerabilities', 'check for security issues', or by using slash commands like /scan and /vuln.

Can it check my npm or Python packages?

Yes, it analyzes dependency files (like package.json) to identify any installed packages that have known security vulnerabilities in public databases.

What types of vulnerabilities can this skill detect?

This skill identifies a wide range of security issues including code-level flaws like SQL injection, insecure project configurations, and known CVEs within your software dependencies.

Should I run this skill regularly?

It is a best practice to run vulnerability scans regularly during development and especially before any production deployment to ensure no new risks have been introduced.

Vulnerability Scanner

Name: Vulnerability Scanner
Author: intent-solutions-io

byintent-solutions-io

セキュリティとテスト

Identifies security vulnerabilities, Common Vulnerabilities and Exposures (CVEs), and configuration risks within your codebase and dependencies.

概要

The Vulnerability Scanner skill empowers Claude to perform automated security audits by leveraging a specialized vulnerability-scanner plugin. It systematically analyzes source code for logic flaws like SQL injection, checks project dependencies against known security databases, and evaluates configurations for potential weaknesses. This skill is essential for developers who want to maintain high security standards throughout the development lifecycle, providing detailed reports with severity levels and actionable remediation guidance directly within the Claude Code environment.

主な機能

Severity-based prioritization for security fixes
Static code analysis for security flaw detection
Security configuration and environment audit
0 GitHub stars
Automated dependency scanning for known CVEs
Detailed vulnerability reporting with remediation steps

ユースケース

Detecting injection risks and cross-site scripting (XSS) in application code
Pre-deployment security reviews to identify configuration weaknesses
Auditing project manifests like package.json for vulnerable third-party libraries

概要

主な機能

Severity-based prioritization for security fixes
Static code analysis for security flaw detection
Security configuration and environment audit
0 GitHub stars
Automated dependency scanning for known CVEs
Detailed vulnerability reporting with remediation steps

ユースケース

Detecting injection risks and cross-site scripting (XSS) in application code
Pre-deployment security reviews to identify configuration weaknesses
Auditing project manifests like package.json for vulnerable third-party libraries