redpanda-data/security-scan
frontend/.claude/skills/security-scan/SKILL.md
Resolve npm dependency vulnerabilities detected by security scans.
$ install --global
skillsauthnpx skillsauth add redpanda-data/console security-scanInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Apr 11, 2026, 11:00 PM39.8s5 files scanned
SKILL.md
- name:
- security-scan
- description:
- Resolve npm dependency vulnerabilities detected by security scans.
Security Scan
Resolve npm dependency vulnerabilities detected by Snyk.io security scans.
Activation Conditions
- User shares Snyk vulnerability reports
- Mentions CVEs/CWEs
- Asks to fix security issues in npm dependencies
Quick Reference
| Action | Rule |
|--------|------|
| Fix direct deps | vuln-direct-deps.md |
| Fix transitive deps | vuln-transitive-deps.md |
Workflow
1. Assess
- Parse vulnerability report: package, version, CVE/CWE, severity, fixed version
- Categorize as direct (in package.json) or transitive (pulled in by another package)
2. Explore
- Check
package.jsonfor current versions and existing overrides - Check lockfile for actual resolved versions
- Search source code for direct usage of vulnerable package
- Check npm registry for available fixed versions:
npm view <package> versions --json
3. Fix
See rules for specific fix patterns.
4. Verify
bun i --yarn
bun run type:check
bun run lint
bun run build
bun run test
All must pass.
Tips
- Use exact versions for security fixes (no
^prefix) - Fix Critical/High severity first
- Replace unmaintained packages rather than patching
- Document workarounds with comments explaining why
Rules
See rules/ directory for detailed guidance.
Related Skills
redpanda-data/frontend/.claude/skills/web-design-guidelines
development
VerifiedTrustedCommunity
Review UI code for Web Interface Guidelines compliance
4,258SKILL.mdUpdated Apr 11, 2026
redpanda-data/ui-development
development
VerifiedTrustedCommunity
Build UI with Redpanda Registry components, Tailwind v4, and accessibility best practices.
4,258SKILL.mdUpdated Apr 11, 2026
redpanda-data/testing
testing
VerifiedTrustedCommunity
Write and maintain tests with Vitest v4 dual configuration, mock utilities, and Zustand store testing patterns.
4,258SKILL.mdUpdated Apr 11, 2026
redpanda-data/tanstack-router-migration
development
VerifiedTrustedCommunity
Migrate React applications from React Router to TanStack Router with file-based routing. Use when user requests: (1) Router migration, (2) TanStack Router setup, (3) File-based routing implementation, (4) React Router replacement, (5) Type-safe routing, or mentions 'migrate router', 'tanstack router', 'file-based routes'.
4,258SKILL.mdUpdated Apr 11, 2026