Can it scan npm or Python packages?

Yes, it analyzes dependency manifest files like package.json to identify packages with known security vulnerabilities and recommends updates.

Should I use this for production security audits?

While it is a powerful tool for catching common errors and known vulnerabilities during development, it should be used as part of a broader security strategy including manual reviews.

How do I trigger a security scan in Claude Code?

You can trigger it using commands like '/scan' or '/vuln', or by asking Claude to 'check for security issues' or 'scan for vulnerabilities'.

What types of vulnerabilities does this skill find?

It identifies code-level flaws such as SQL injection, vulnerable third-party dependencies via CVE detection, and insecure project configurations.

Does it provide instructions on how to fix the issues?

Yes, the generated report includes severity levels and specific remediation guidance to help you resolve identified security risks effectively.

Vulnerability Scanner

Name: Vulnerability Scanner
Author: intent-solutions-io

byintent-solutions-io

0•

Security & Testing

Identifies and reports security vulnerabilities, CVEs, and configuration weaknesses across your codebase and project dependencies.

The Vulnerability Scanner skill equips Claude with automated security auditing capabilities to detect potential risks within your development environment. By performing static analysis, dependency checks, and configuration reviews, it identifies code-level flaws like SQL injection, flags insecure packages with known CVEs, and highlights configuration errors. This skill is essential for developers looking to maintain a secure software supply chain and proactively address security debt throughout the development lifecycle.

Key Features

01Security configuration auditing for project settings

02Detailed vulnerability reporting with severity levels

030 GitHub stars

04Automated static code analysis for security flaws

05Dependency scanning for known CVEs and outdated packages

06Actionable remediation guidance and fix validation

Use Cases

01Monitoring third-party dependencies for emerging security threats

02Conducting pre-deployment security audits to catch critical flaws

03Identifying common coding vulnerabilities like SQL injection or XSS

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add intent-solutions-io/plugins-nixtla vulnerability-scanner

For use in Claude.ai and ChatGPT

Download Skill