SomtechSolutionMAxime/audit-rls
.claude/skills/audit-rls/SKILL.md
Auditer les policies RLS d'une table ou du projet. TRIGGERS : audit-rls, vérifier RLS, sécurité DB, check policies, audit sécurité
testing
Updated Apr 17, 2026
$ install --global
skillsauthnpx skillsauth add SomtechSolutionMAxime/somtech-pack audit-rlsInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Apr 17, 2026, 12:15 PM12.7s1 file scanned
SKILL.md
- name:
- audit-rls
- description:
- |
- TRIGGERS:
- audit-rls, vérifier RLS, sécurité DB, check policies, audit sécurité
- disable-model-invocation:
- false
- allowed-tools:
- Read, Bash, Grep
Audit RLS Policies
Procédure
1. Lister les tables SANS RLS
SELECT schemaname, tablename
FROM pg_tables
WHERE schemaname = 'public'
AND tablename NOT IN (
SELECT DISTINCT tablename FROM pg_policies
)
ORDER BY tablename;
2. Vérifier les policies existantes
SELECT
tablename,
policyname,
permissive,
roles,
cmd,
qual as using_clause,
with_check
FROM pg_policies
WHERE schemaname = 'public'
ORDER BY tablename, cmd;
3. Valider les règles
| Opération | USING | WITH CHECK | Correct ? | |-----------|-------|------------|-----------| | SELECT | ✅ | ❌ | USING seul | | INSERT | ❌ | ✅ | WITH CHECK seul | | UPDATE | ✅ | ✅ | Les deux | | DELETE | ✅ | ❌ | USING seul |
4. Vérifier les indexes
SELECT
indexname,
tablename,
indexdef
FROM pg_indexes
WHERE schemaname = 'public'
AND (
indexdef LIKE '%user_id%'
OR indexdef LIKE '%auth.uid%'
)
ORDER BY tablename;
5. Vérifier les performances
-- Tables avec RLS mais sans index sur user_id
SELECT t.tablename
FROM pg_tables t
JOIN pg_policies p ON t.tablename = p.tablename
WHERE t.schemaname = 'public'
AND t.tablename NOT IN (
SELECT tablename FROM pg_indexes
WHERE indexdef LIKE '%user_id%'
)
GROUP BY t.tablename;
Rapport
Générer un rapport avec :
- ❌ Critique : Tables sans RLS
- ⚠️ Warning : Policies mal configurées
- ⚠️ Warning : Indexes manquants sur colonnes RLS
- ✅ OK : Tables conformes
Related Skills
SomtechSolutionMAxime/somcraft
tools
VerifiedTrustedCommunity
Documentation de référence SomCraft — DMS Markdown-native avec AI, MCP server, et Studio. À consulter pour toute question sur l'architecture, les APIs, les concepts, ou l'exploitation d'une instance SomCraft. TRIGGERS : somcraft, dms, document management, workspace somcraft, studio somcraft, mcp somcraft, api somcraft
SKILL.mdUpdated Apr 18, 2026
SomtechSolutionMAxime/deploy-somcraft
tools
VerifiedTrustedCommunity
Déployer une instance SomCraft pour un client existant (migrations Supabase + Fly.io + skills). Orchestre 7 phases : pré-flight, plan, migrations, seed, déploiement, smoke tests, installation des skills. TRIGGERS : deploy-somcraft, déployer somcraft, installer somcraft, somcraft client, setup somcraft, upgrade somcraft, status somcraft
SKILL.mdUpdated Apr 18, 2026
SomtechSolutionMAxime/silo-generator
tools
VerifiedTrustedCommunity
Génère l'intégralité de la configuration d'un silo SomTech : docker-compose, services Fly.io, constitutions d'agents, et templates d'environnement. Valide les métadonnées d'application avant génération. À utiliser après validation initiale du client et avant déploiement.
SKILL.mdUpdated Apr 18, 2026
SomtechSolutionMAxime/silo-deployer
development
VerifiedTrustedCommunity
Exécute le déploiement complet d'une silo après sa génération : conteneurs Docker, environnement de développement Fly.io, branche Git, et configuration Netlify. Transforme les configs générées en infrastructure active avec URLs stables et builds automatisés.
SKILL.mdUpdated Apr 18, 2026