sutanunandigrami/security-scan
dot-claude/skills/security-scan/SKILL.md
Security scanning and vulnerability assessment workflows. Use when performing security audits, scanning for vulnerabilities, checking dependencies, or hardening systems.
$ install --global
skillsauthnpx skillsauth add sutanunandigrami/claude-titan-setup security-scanInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Apr 15, 2026, 2:23 AM6.5s1 file scanned
SKILL.md
- name:
- security-scan
- description:
- Security scanning and vulnerability assessment workflows. Use when performing security audits, scanning for vulnerabilities, checking dependencies, or hardening systems.
- paths:
- **/*.py,**/*.js,**/*.go,**/*.sh,**/*.ts,**/*.rs,**/Dockerfile*,**/requirements*.txt,**/package.json,**/*.tf
Security Scanning Workflows
Pre-Push Security Check
Before any push to remote, run this sequence:
gitleaks detect --verbose— scan for leaked secretstrivy fs --severity HIGH,CRITICAL .— filesystem vulnerability scanosv-scanner --lockfile=<lockfile>— dependency vulnerability check
Container Security
trivy image <image>— scan container imagesyft <image>— generate SBOM (Software Bill of Materials)grype <image>— scan SBOM/image for known vulnerabilitiescrane manifest <image>— inspect remote image without pullingcosign verify <image>— verify image signaturedive <image>— check image layer efficiencyhadolint Dockerfile— lint Dockerfile for best practices
Infrastructure Security
trivy config .— scan Terraform/CloudFormation for misconfigstflint— lint Terraform filesopengrep scan -f auto .— static analysis
Network Reconnaissance
subfinder -d <domain>— passive subdomain enumerationdnsx -l subdomains.txt -resp— bulk DNS resolutionhttpx -l hosts.txt -sc -title -tech-detect— probe for live HTTP serviceskatana -u <url>— crawl with JS rendering for hidden endpointsnmap -sV -sC <target>— service version detectionnuclei -u <target>— template-based vuln scanningnikto -h <target>— web server scanningffuf -u <url>/FUZZ -w <wordlist>— directory fuzzing
Supply Chain Security
syft dir:.— generate SBOM for project directorygrype sbom:./sbom.json— scan SBOM for known CVEsgrype dir:.— scan project directly for vulnerable dependencies
TLS & Certificate Debugging
step certificate inspect <cert.pem>— view certificate detailsstep certificate inspect https://<domain>— inspect remote TLS certstep certificate create— generate self-signed certs for testing
System Hardening
lynis audit system— full system security audit- Review output and address findings by severity
Rules
- NEVER scan targets you don't own or have authorization for
- Always use
--helpbefore running any security tool - Report findings clearly with severity levels
- Suggest remediations alongside findings
Related Skills
sutanunandigrami/dot-claude/skills/workspace
tools
VerifiedTrustedCommunity
Project workspace configuration — auto-detect commands, _workspace.json convention, .envrc templates
9SKILL.mdUpdated Apr 15, 2026
sutanunandigrami/VibeSec-Skill
development
VerifiedTrustedCommunity
This skill helps Claude write secure web applications. Use this when working on any web application or when a user requests a scan or audit to ensure security best practices are followed.
9SKILL.mdUpdated Apr 15, 2026
sutanunandigrami/modern-python
tools
VerifiedTrustedCommunity
Configures Python projects with modern tooling (uv, ruff, ty). Use when creating projects, writing standalone scripts, or migrating from pip/Poetry/mypy/black.
9SKILL.mdUpdated Apr 15, 2026
sutanunandigrami/dot-claude/skills/tmux-control
tools
VerifiedTrustedCommunity
Control tmux sessions — create panes, run commands, read output, monitor processes
9SKILL.mdUpdated Apr 15, 2026