Slash Command260 estrellas del repoactualizado 16d ago

security-scan

The security-scan command performs pre-push security validation by checking for committed secrets using Gitleaks and auditing Python dependencies with Safety. Use this before pushing code to catch credential leaks and vulnerable packages in your project's requirements files.

Ver fuente Repositorio: Claude-Skills

Instalar en Claude Code

Copiar

mkdir -p ~/.claude/commands && curl -fsSL https://raw.githubusercontent.com/borghei/Claude-Skills/HEAD/.claude/commands/security-scan.md -o ~/.claude/commands/security-scan.md

Después abre una sesión nueva de Claude Code; el slash command carga automáticamente.

Definición

security-scan.md

1. Ensure dependencies are installed:
   ```bash
   pip install safety==3.2.4
   brew install gitleaks  # or appropriate package manager
   ```
2. Scan for committed secrets:
   ```bash
   gitleaks detect --verbose --redact
   ```
   - Resolve any findings before continuing.
3. Audit Python dependencies (if requirements files exist):
   ```bash
   for f in $(find . -name "requirements*.txt" 2>/dev/null); do
       safety check --full-report --file "$f"
   done
   ```
4. Record results in the commit template's Testing section.
5. After a clean pass, proceed with commit and push workflow.

Del mismo repositorio

changelog-managerSubagent

code-reviewerSubagent

doc-generatorSubagent

git-workflowSubagent

qa-engineerSubagent

security-auditorSubagent

a11y-auditSlash Command

Run an accessibility audit on the current project for WCAG compliance.

code-to-prdSlash Command

Reverse-engineer a Product Requirements Document from existing code.