47network/infra-scanner
skills/security/infra-scanner/SKILL.md
Audit Docker Compose services, TLS certificates, and environment files for security misconfigurations. Checks for privileged containers, dangerous capabilities, host mounts, exposed ports, hardcoded secrets in compose, weak TLS, and insecure env vars.
$ install --global
skillsauthnpx skillsauth add 47network/Sven infra-scannerInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Apr 23, 2026, 6:16 PM35.1s2 files scanned
SKILL.md
- name:
- infra-scanner
- description:
- Audit Docker Compose services, TLS certificates, and environment files for security misconfigurations. Checks for privileged containers, dangerous capabilities, host mounts, exposed ports, hardcoded secrets in compose, weak TLS, and insecure env vars.
- version:
- 2026.4.11
- publisher:
- 47Network
- handler_language:
- typescript
- handler_file:
- handler.ts
- inputs_schema:
- {"type":"object","properties":{"action":{"type":"string","enum":["audit_compose","audit_tls","audit_env","full_report"],"default":"full_report"},"services":{"type":"array","items":{"type":"object"},"description":"Docker Compose service definitions"},"certs":{"type":"array","items":{"type":"object"},"description":"TLS certificate info objects"},"env_content":{"type":"string","description":"Raw .env file content"},"env_path":{"type":"string","description":"Path of the env file being audited"}},"required":["action"],"additionalProperties":false}
- outputs_schema:
- {"type":"object","properties":{"action":{"type":"string"},"result":{"type":"object"}},"required":["action","result"]}
Infrastructure Scanner Skill
Audit Docker Compose, TLS/SSL, and environment configurations for security misconfigurations. Produces scored findings with OWASP-mapped remediation.
Actions
audit_compose— Audit Docker Compose services for privileged mode, dangerous caps, host mounts, exposed ports, hardcoded secretsaudit_tls— Check TLS certificates for expiry, weak keys, deprecated protocolsaudit_env— Audit .env files for weak passwords, empty secrets, debug modefull_report— Run all audits and generate a unified infrastructure security report
Scope Mapping
security.infra: read (configuration analysis, no runtime probes)
Related Skills
47network/webapp-tester
development
VerifiedTrustedCommunity
Automated web testing advisor — generate Playwright test scripts, accessibility checks, and performance audits.
3SKILL.mdUpdated Apr 23, 2026
47network/security-posture
testing
VerifiedTrustedCommunity
Unified security posture reporting — combines SAST, dependency audit, secret scan, infrastructure scan, and pentest results into a single scored report with OWASP and SOC 2 compliance mapping, top risks, and remediation recommendations.
3SKILL.mdUpdated Apr 23, 2026
47network/secret-scanner
development
VerifiedTrustedCommunity
Detect hardcoded secrets, API keys, tokens, private keys, and credentials in source code and config files. 20 built-in patterns covering AWS, GitHub, Slack, Stripe, database URLs, JWTs, and more.
3SKILL.mdUpdated Apr 23, 2026
47network/sast-scanner
development
VerifiedTrustedCommunity
Static Application Security Testing — scan TypeScript/JavaScript source code for SQL injection, XSS, SSRF, path traversal, command injection, hardcoded secrets, insecure crypto, auth bypass, prototype pollution, and more. 14 built-in rules mapped to OWASP Top 10 and CWE.
3SKILL.mdUpdated Apr 23, 2026