Does this skill provide automated fixes?

While it primarily identifies issues, it provides specific refactoring guidance, such as moving hardcoded secrets to environment variables or using parameterized SQL queries.

How does it handle Python dependency security?

It utilizes pip-audit and safety check to cross-reference your project dependencies against known vulnerability databases.

Can it detect vulnerabilities in Mojo code?

Yes, it includes specific checks for unsafe patterns in Mojo, such as path traversal and unvalidated input logic.

What types of secrets can this skill detect?

The skill scans for API keys, tokens, private keys (.key, .pem), AWS credentials, and database passwords to prevent them from being committed.

Security & Vulnerability Scan

Name: Security & Vulnerability Scan
Author: HomericIntelligence

byHomericIntelligence

•

보안 및 테스팅

Conducts automated security audits to detect vulnerabilities, exposed secrets, and unsafe coding patterns across Mojo and Python projects.

The Quality Security Scan skill empowers Claude to proactively identify critical security risks before code is committed to a repository. By integrating specialized scripts for secret detection, dependency auditing via pip-audit, and pattern-matching for common vulnerabilities like SQL injection or path traversal, this skill ensures that sensitive credentials and insecure logic are flagged during the development lifecycle. It is essential for teams working on sensitive training frameworks like Project Odyssey, providing automated guardrails for pre-release audits and secure code refactoring.

주요 기능

01Integration with pre-commit hooks and .gitignore validation

02Security-focused code refactoring suggestions for Mojo and Python

03Automated detection of hardcoded API keys and AWS credentials

04Pattern-based identification of SQL injection and path traversal risks

0514 GitHub stars

06Comprehensive dependency vulnerability scanning using pip-audit

사용 사례

01Auditing Python dependencies for known CVEs and security vulnerabilities

02Performing a pre-release security audit to ensure no credentials are leaked

03Refactoring legacy code to replace unsafe file operations with secure alternatives

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add homericintelligence/projectodyssey quality-security-scan

For use in Claude.ai and ChatGPT

Download Skill