Can it fix the vulnerabilities it finds?

The skill identifies risks and provides detailed remediation guidance. You can then direct Claude to apply the recommended fixes using its editing capabilities.

Should I run this on every commit?

Yes, running regular scans is a best practice. It is highly recommended to use this skill before any major deployment or after adding new dependencies.

Does it support multiple programming languages?

Yes, the scanner is designed to analyze various project types, identifying language-specific flaws and risks within common package managers like npm.

How does this skill detect vulnerabilities?

It uses the vulnerability-scanner plugin to perform static analysis of your code and cross-references your project dependencies against global CVE databases.

Vulnerability Scanner

Name: Vulnerability Scanner
Author: jeremylongshore

byjeremylongshore

•

897

安全与测试

Identifies security vulnerabilities in codebase, dependencies, and configurations to ensure robust application security.

关于

This skill empowers Claude to perform automated security audits within your development environment. By leveraging the vulnerability-scanner plugin, it systematically analyzes source code for flaws like SQL injection, checks package manifests against known CVE databases, and reviews project configurations for security weaknesses. It is particularly useful during the development lifecycle to preemptively identify risks before deployment, providing actionable remediation guidance and severity ratings for every finding.

主要功能

Security configuration analysis
897 GitHub stars
Dependency-level CVE detection
Automated codebase security auditing
Detailed reporting with severity levels
Actionable remediation steps and guidance

使用场景

Auditing npm or other package dependencies for known vulnerabilities
Identifying SQL injection and other code-level security risks
Reviewing project configurations for security best practices

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add jeremylongshore/claude-code-plugins-plus-skills scanning-for-vulnerabilities

For use in Claude.ai and ChatGPT

Download Skill

GitHub

关于