Can it identify specific code flaws like SQL injection?

Yes, the plugin performs static analysis on your source code to identify common security risks such as SQL injection, insecure data handling, and hardcoded secrets.

Does it check for CVEs in third-party dependencies?

Yes, the skill analyzes project dependency files (like package.json) to identify third-party libraries that contain known Common Vulnerabilities and Exposures (CVEs).

How do I start a security scan with Claude?

You can trigger a scan by asking Claude to 'scan for vulnerabilities', 'check for CVEs', or by using short commands like /scan or /vuln.

Does it provide solutions for the vulnerabilities it finds?

Yes, the generated report includes detailed findings along with severity levels and specific remediation guidance to help you fix the issues.

Vulnerability Scanner

Name: Vulnerability Scanner
Author: intent-solutions-io

byintent-solutions-io

0•

Security & Testing

Performs automated security audits to detect code flaws, vulnerable dependencies, and insecure configurations within your project.

The Vulnerability Scanner skill empowers Claude to proactively secure your codebase by identifying potential risks before they reach production. By integrating static analysis, dependency checking, and configuration review, it provides a comprehensive security overview including CVE detection and remediation guidance. It is an essential tool for developers who want to maintain high security standards, automate audits, and ensure their third-party packages are free from known exploits.

Key Features

01Automated static analysis for code-level security flaws

02Configuration analysis to identify insecure project settings

030 GitHub stars

04Real-time dependency scanning for known CVEs

05Actionable remediation steps for identified vulnerabilities

06Detailed security reporting with severity-based prioritization

Use Cases

01Performing a final security audit before deploying code to production

02Checking package files for outdated, vulnerable libraries with known CVEs

03Scanning a project for SQL injection or Cross-Site Scripting (XSS) risks

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add intent-solutions-io/plugins-nixtla vulnerability-scanner

For use in Claude.ai and ChatGPT

Download Skill