security-scanner

Solid

Run security scans including SAST, dependency scanning, and secret detection

AI & Automation 1,160 stars 71 forks Updated today MIT

Install

View on GitHub

Quality Score: 96/100

Stars 20%

100

Recency 20%

100

Frontmatter 20%

Documentation 15%

100

Issue Health 10%

License 10%

100

Description 5%

100

Skill Content

# Security Scanner Skill ## Overview Runs comprehensive security scans including SAST scanning with Semgrep/CodeQL, dependency vulnerability scanning with Snyk/OWASP, secret detection, and container image scanning. ## Capabilities - SAST scanning (Semgrep, CodeQL) - Dependency vulnerability scanning (Snyk, OWASP Dependency-Check) - Secret detection (git-secrets, truffleHog, gitleaks) - Container image scanning (Trivy, Grype) - License compliance checking - SBOM generation - CVE database lookup ## Target Processes - security-architecture-review - iac-review ## Input Schema ```json { "type": "object", "required": ["targets"], "properties": { "targets": { "type": "array", "items": { "type": "string" }, "description": "Paths to scan" }, "scanTypes": { "type": "array", "items": { "type": "string", "enum": ["sast", "dependencies", "secrets", "containers", "licenses"] }, "default": ["sast", "dependencies", "secrets"] }, "tools": { "type": "object", "properties": { "sast": { "type": "string", "enum": ["semgrep", "codeql"], "default": "semgrep" }, "dependencies": { "type": "string", "enum": ["snyk", "owasp", "npm-audit"], "default": "snyk" }, "secrets": { "type": "string", "enum": ["gitleaks", "trufflehog"], "default": "gitleaks" } } }, ...

Details

Author: a5c-ai
Repository: a5c-ai/babysitter
Created: 4 months ago
Last Updated: today
Language: JavaScript
License: MIT

Similar Skills

Semantically similar based on skill content — not just same category

AI & Automation Featured

security-scanning-security-sast

Static Application Security Testing (SAST) for code vulnerability analysis across multiple languages and frameworks

39,350 Updated today

sickn33

Testing & QA Listed

security-scanning-security-sast

Static Application Security Testing (SAST) for code vulnerability analysis across multiple languages and frameworks

335 Updated today

aiskillstore

DevOps & Infrastructure Listed

security-analyzer

Comprehensive security vulnerability analysis for codebases and infrastructure. Scans dependencies (npm, pip, gem, go, cargo), containers (Docker, Kubernetes), cloud IaC (Terraform, CloudFormation), and detects secrets exposure. Fetches live CVE data from OSV.dev, calculates risk scores, and generates phased remediation plans with TDD validation tests. Use when users mention security scan, vulnerability, CVE, exploit, security audit, penetration test, OWASP, hardening, dependency audit, container security, or want to improve security posture.

335 Updated today

aiskillstore

Data & Documents Listed

security-auditor

Runs available security scanners, parses results, and writes a consolidated security findings report. Use when you need to check a project for vulnerabilities, exposed secrets, insecure dependencies, or other security issues. Triggers: "security audit", "run security scan", "find vulnerabilities", "check for secrets", "scan dependencies", "run security-auditor".

0 Updated today

ivuorinen

AI & Automation Solid

dependency-scanner

Software Composition Analysis (SCA) and dependency vulnerability scanning. Scan npm, pip, maven, gradle dependencies. Check CVE databases, generate SBOM (CycloneDX, SPDX), identify license compliance issues, and track EPSS scores for prioritization.

1,160 Updated today

a5c-ai