patrykkopycinski/security-inbox
skills/security-inbox/SKILL.md
Start your security session with a personalized briefing — attacks, alerts, cases, rules, threat intel. Use as the first thing when starting security work.
$ install --global
skillsauthnpx skillsauth add patrykkopycinski/elastic-cursor-plugin security-inboxInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: May 27, 2026, 6:31 AM313.2s1 file scanned
SKILL.md
- name:
- security-inbox
- description:
- >
Security Inbox
Use security_inbox to get a personalized SOC briefing.
When to use
- Starting a security session ("what's happening?")
- Morning briefing ("show me what I missed")
- Shift handoff ("summarize the current state")
What it shows
- Attacks discovered since last session
- Alert summary with false positive identification
- Case updates with new comments
- Detection rule status
- Data ingestion health
- Suggested next actions
Related Skills
patrykkopycinski/security-threat-hunting
testing
VerifiedTrustedCommunity
Interactive threat hunting workflow using ES|QL and Elasticsearch queries — from hypothesis formulation through data exploration, IOC search, and finding documentation.
6SKILL.mdUpdated May 27, 2026
patrykkopycinski/security-full-setup
testing
VerifiedTrustedCommunity
Interactive guide for complete Elastic Security setup — discovers data sources, assesses detection coverage, configures rules, and creates security dashboards.
6SKILL.mdUpdated May 27, 2026
patrykkopycinski/security-detection-engineering
testing
VerifiedTrustedCommunity
Guide for authoring custom detection rules — from threat hypothesis through rule creation, testing, and tuning with KQL, EQL, ES|QL, and threshold rules.
6SKILL.mdUpdated May 27, 2026
patrykkopycinski/security-case-management
testing
VerifiedTrustedCommunity
Guide for creating and managing security investigation cases — from case creation through alert attachment, investigation tracking, and resolution.
6SKILL.mdUpdated May 27, 2026