Adoption

Agent Skills are supported by leading AI development tools.

VS Code Gemini CLI GitHub Goose Amp Cursor Claude Code Letta OpenCode Claude OpenAI Codex Factory VS Code Gemini CLI GitHub Goose Amp Cursor Claude Code Letta OpenCode Claude OpenAI Codex Factory

ruchernchong/security

Name: security
Author: ruchernchong

skills/security/SKILL.md

npx skillsauth add ruchernchong/claude-kit security

Clean

TrivyContainer and dependency vulnerability scanner

Clean

SemgrepStatic code analysis for vulnerabilities

Clean

mcp-scan (Snyk)Model Context Protocol security validation

Skipped

Snyk (dep)Open source security scanning

Skipped

Socket.devSupply chain security analysis

Skipped

VirusTotalMulti-engine malware detection

Skipped

CrowdStrikeAdvanced threat intelligence

Skipped

OSV-ScannerOpen Source Vulnerability database check

Skipped

OWASP Dep-Check

You are a security engineer setting up GitLeaks and running security audits.

Workflow

1. Setup GitLeaks in Husky Pre-commit Hook

Check if GitLeaks is configured in the project's pre-commit hook. If not, set it up.

Detection Steps

Check if .husky/ directory exists
Check if .husky/pre-commit contains gitleaks

Setup Steps (if GitLeaks is missing)

If .husky/ does not exist:

npx husky init

Add GitLeaks to .husky/pre-commit BEFORE any lint-staged command:

gitleaks protect --staged --verbose

Example .husky/pre-commit with lint-staged:

#!/usr/bin/env sh
. "$(dirname -- "$0")/_/husky.sh"

# Secrets detection - fail fast if secrets found
gitleaks protect --staged --verbose

# Lint staged files
npx lint-staged

If the pre-commit file already exists, insert the gitleaks line before npx lint-staged.

2. Code Security Audit

After ensuring GitLeaks is configured, spawn the security-auditor agent to analyze code:

Use the Task tool with subagent_type: security-auditor to run a security audit on the codebase.
Focus on OWASP Top 10 vulnerabilities, authentication issues, and data protection.

3. Retrospective Git History Scan (Optional)

Only run this step if the user passes --scan-history argument. This is for legacy projects being onboarded to GitLeaks.

gitleaks detect --source . --verbose

Report any secrets found in git history with:

File path and line number
Commit where the secret was introduced
Type of secret detected
Remediation steps (rotate the secret, use git-filter-repo to remove from history)

Output Format

GitLeaks Setup Status: Whether hooks were already configured or newly set up
Security Audit Findings: Results from the security-auditor agent
History Scan Results (if --scan-history): Any secrets found in git history

Assumptions

GitLeaks is already installed on the system (brew install gitleaks or equivalent)
Target projects use Husky + lint-staged (JS/TS stack)

ruchernchong/security

skills/security/SKILL.md

Run security audit with GitLeaks pre-commit hook setup and code analysis

development

Updated May 19, 2026

$ install --global

skillsauth

npx skillsauth add ruchernchong/claude-kit security

Install this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.

Security Scan Results

3 of 9 scanners reported clean

Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.

Scanners Passed

Scanners in report

Clean

TrivyContainer and dependency vulnerability scanner

95%

Clean

SemgrepStatic code analysis for vulnerabilities

95%

Clean

mcp-scan (Snyk)Model Context Protocol security validation

95%

Skipped

Snyk (dep)Open source security scanning

50%

Skipped

Socket.devSupply chain security analysis

50%

Skipped

VirusTotalMulti-engine malware detection

50%

Skipped

CrowdStrikeAdvanced threat intelligence

50%

Skipped

OSV-ScannerOpen Source Vulnerability database check

50%

Skipped

OWASP Dep-Check

50%

Last scanned: May 19, 2026, 2:03 AM180.7s1 file scanned

SKILL.md

name:: security
description:: Run security audit with GitLeaks pre-commit hook setup and code analysis
allowed-tools:: Bash Read Write Edit Glob Grep Task

You are a security engineer setting up GitLeaks and running security audits.

Workflow

1. Setup GitLeaks in Husky Pre-commit Hook

Check if GitLeaks is configured in the project's pre-commit hook. If not, set it up.

Detection Steps

Check if .husky/ directory exists
Check if .husky/pre-commit contains gitleaks

Setup Steps (if GitLeaks is missing)

If .husky/ does not exist:

npx husky init

Add GitLeaks to .husky/pre-commit BEFORE any lint-staged command:

gitleaks protect --staged --verbose

Example .husky/pre-commit with lint-staged:

#!/usr/bin/env sh
. "$(dirname -- "$0")/_/husky.sh"

# Secrets detection - fail fast if secrets found
gitleaks protect --staged --verbose

# Lint staged files
npx lint-staged

If the pre-commit file already exists, insert the gitleaks line before npx lint-staged.

2. Code Security Audit

After ensuring GitLeaks is configured, spawn the security-auditor agent to analyze code:

Use the Task tool with subagent_type: security-auditor to run a security audit on the codebase.
Focus on OWASP Top 10 vulnerabilities, authentication issues, and data protection.

3. Retrospective Git History Scan (Optional)

Only run this step if the user passes --scan-history argument. This is for legacy projects being onboarded to GitLeaks.

gitleaks detect --source . --verbose

Report any secrets found in git history with:

File path and line number
Commit where the secret was introduced
Type of secret detected
Remediation steps (rotate the secret, use git-filter-repo to remove from history)

Output Format

GitLeaks Setup Status: Whether hooks were already configured or newly set up
Security Audit Findings: Results from the security-auditor agent
History Scan Results (if --scan-history): Any secrets found in git history

Assumptions

GitLeaks is already installed on the system (brew install gitleaks or equivalent)
Target projects use Husky + lint-staged (JS/TS stack)

Related Skills

ruchernchong/update-issue

tools

VerifiedTrustedCommunity

Update a GitHub issue with new title, body, labels, or assignees

SKILL.mdUpdated May 19, 2026

ruchernchong/update-issue

ruchernchong/tailwind

development

VerifiedTrustedCommunity

Audit and fix Tailwind CSS anti-patterns. Enforces spacing direction (bottom-only), size-* usage, gap preference, 8px grid, and other best practices.

SKILL.mdUpdated May 19, 2026

ruchernchong/tailwind

ruchernchong/sync-docs

documentation

VerifiedTrustedCommunity

Update and maintain CLAUDE.md and README.md documentation

SKILL.mdUpdated May 19, 2026

ruchernchong/sync-docs

ruchernchong/skills/heroui

development

VerifiedTrustedCommunity

--- name: heroui description: Build accessible UIs using HeroUI v3 components (React + Tailwind CSS v4 + React Aria). Use when creating React interfaces, selecting UI components, implementing forms, navigation, overlays, or data display. Use when installing HeroUI v3, customizing themes, accessing component documentation, building with compound components, or working with component APIs. Keywords: HeroUI, Hero UI, heroui, React Aria, accessible components, Tailwind CSS v4, @heroui/react@beta, @h

SKILL.mdUpdated May 19, 2026

ruchernchong/skills/heroui

Download

For Claude Desktop. Download once, then upload the file in the app — no terminal needed.

Need help? View full Cowork setup guide →

Install manually

Choose your platform

# Clone the repo
git clone https://github.com/ruchernchong/claude-kit.git

# Copy into Claude Code skills folder (global)
cp -r claude-kit/skills/security ~/.claude/skills/

Claude Code Skills — official skills path docs.

Repository

ruchernchong/claude-kit

Compatible with

Claude Code

OpenAI Codex CLI

ChatGPT