markus41/plugins/claude-code-expert/skills/security-compliance
plugins/claude-code-expert/skills/security-compliance/SKILL.md
--- name: security-compliance description: Claude Code security and compliance — permissions model, settings.json allowlists/denylists, enterprise managed settings, audit logging, secrets handling, SOC2/HIPAA/GDPR patterns. Use this skill whenever configuring permissions, auditing a setup for security, handling secrets, preparing for compliance, or tightening access. Triggers on: "permissions", "allowlist", "security audit", "compliance", "SOC2", "HIPAA", "GDPR", "secrets", "enterprise settings"
$ install --global
skillsauthnpx skillsauth add markus41/claude plugins/claude-code-expert/skills/security-complianceInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Apr 17, 2026, 9:37 AM19.7s1 file scanned
SKILL.md
- name:
- security-compliance
- description:
- Claude Code security and compliance — permissions model, settings.json allowlists/denylists, enterprise managed settings, audit logging, secrets handling, SOC2/HIPAA/GDPR patterns. Use this skill whenever configuring permissions, auditing a setup for security, handling secrets, preparing for compliance, or tightening access. Triggers on: "permissions", "allowlist", "security audit", "compliance", "SOC2", "HIPAA", "GDPR", "secrets", "enterprise settings", "managed settings", "deny list".
Security & Compliance
Baseline security + enterprise compliance patterns for Claude Code.
Permission model
Permissions live in .claude/settings.json:
{
"permissions": {
"allow": ["Read", "Write", "Edit", "Glob", "Grep", "Bash(npm *)"],
"deny": ["Bash(rm -rf /)", "Bash(sudo *)", "Bash(curl * | sh)"],
"ask": ["WebFetch", "Bash(git push *)", "Bash(npm publish *)"]
}
}
allow→ tool executes without askingdeny→ tool never executesask→ user is prompted each time- Missing from all lists → falls back to permission mode default
Permission modes
| Mode | Behavior |
|---|---|
| ask | Prompt for every tool use |
| acceptEdits | Auto-accept Read/Write/Edit; prompt for others |
| auto | Minimal prompting |
| bypassPermissions | Skip prompts (dangerous; CI only) |
| plan | Plan mode — no file writes |
Set via claude --permission-mode <mode> or in settings.json → permissionMode.
Secrets handling
Never in repo:
.envfiles (except.env.example)- API keys, tokens, credentials in settings/MCP config
- Passwords, private keys
Where secrets go:
- OS keychain (via
secretstorage,keyring,keychain) - Cloud secret manager (AWS Secrets Manager, Azure Key Vault, GCP Secret Manager, Vault)
- CI-injected env vars
Install the protect-sensitive-files hook (via cc_kb_hook_recipe("protect-sensitive-files")) to prevent accidental writes to .env / credentials.
Audit logging
Enterprise deployments log all tool calls for compliance:
{
"hooks": {
"PostToolUse": [
{ "matcher": "*", "hooks": [{ "type": "command", "command": "bash .claude/hooks/audit-log.sh" }] }
]
}
}
audit-log.sh appends JSON lines to a log shipping to SIEM (Splunk, Elastic, Datadog). Key fields: timestamp, session_id, tool_name, tool_input_hash (not raw input if sensitive), decision, duration_ms.
Enterprise managed settings
For org-wide enforcement, use managed settings at the OS level:
- macOS:
/Library/Application Support/Claude/managed-settings.json - Windows:
C:\ProgramData\Claude\managed-settings.json - Linux:
/etc/claude/managed-settings.json
Managed settings override user settings. Use for: denylist of dangerous commands, required hooks (audit), forbidden MCP servers.
Compliance frameworks
SOC2 Type II
- Audit logging of all file modifications and tool calls.
- Access control: user-level
allow/denytied to AD/SSO identity. - Change management: all
.claude/edits go through PR review. - Retention: audit logs kept ≥1 year.
HIPAA (healthcare)
- PHI never in prompts — scan with
detect-secrets+ custom PHI regex in hook. - BAA required for any cloud-hosted MCP server handling PHI.
- Encryption at rest for any memory/cache files containing PHI.
GDPR
- Right-to-erasure: memory stores (engram, Obsidian) must support selective deletion by user identity.
- Data minimization: don't save user PII to memory without a legitimate purpose.
- Portability: export format for user's saved memory (
mem_timeline,/cc-memory export).
Security audit checklist
Run security-compliance-advisor agent for a full audit. Minimum checks:
- [ ] No secrets in
settings.json,.mcp.json, or any committed file - [ ]
denylist includes destructive commands (rm -rf, sudo, curl|sh) - [ ]
protect-sensitive-fileshook installed - [ ] Permission mode not
bypassPermissionsoutside CI - [ ] MCP servers from trusted sources only
- [ ] Hook scripts pass shellcheck
- [ ] No
--dangerously-skip-permissionsin any committed script
MCP delegation
| Need | Tool |
|---|---|
| Settings schema | cc_docs_settings_schema |
| Audit checklist | cc_docs_checklist("security") |
| Model for review | cc_docs_model_recommend("security review") → Opus |
| Hook recipe for protection | cc_kb_hook_recipe("protect-sensitive-files") |
Anti-patterns
permissions.allow: ["*"]→ defeats the point.- Secrets in settings.json under
env→ committed to git. bypassPermissionsin developer default → one typo destroys something.- Audit log writes to same disk as repo → logs vanish with the incident.
- Skipping managed settings for enterprise → one dev disables them all.
Reference
- compliance-checklists.md — SOC2/HIPAA/GDPR control mapping
Related Skills
markus41/writing-plans-enhanced
development
VerifiedTrustedCommunity
Enhanced plan-authoring skill with Pre-Writing context gathering, task metadata, non-TDD templates, Red Flags, telemetry, and an automated plan linter. Use when you have a spec or requirements for a multi-step task, before touching code.
13SKILL.mdUpdated Apr 25, 2026
markus41/plugins/scrapin-aint-easy
tools
VerifiedTrustedCommunity
Documentation intelligence engine with graph-based API docs, algorithm library, and drift detection
13SKILL.mdUpdated Apr 17, 2026
markus41/ultraplan
tools
VerifiedTrustedCommunity
Ultraplan cloud planning — kick off a plan in the cloud from your terminal, review and revise in the browser, then execute remotely or send back to CLI
13SKILL.mdUpdated Apr 17, 2026
markus41/plugins/claude-code-expert/skills/mcp
tools
VerifiedTrustedCommunity
--- name: mcp description: Configure MCP servers for Claude Code — stdio vs HTTP, authentication, Tools/Resources/Prompts distinction, channels (CI webhook, mobile relay, Discord bridge, fakechat), and cost of always-loaded tools. Use this skill whenever adding an MCP server, debugging connection issues, choosing between MCP Tools vs Prompts vs Resources, installing channel servers, or managing .mcp.json. Triggers on: "MCP server", "mcp config", "add Obsidian MCP", "install context7", "channels"
13SKILL.mdUpdated Apr 17, 2026