Sharp Edges
Plugin ActiveIdentify error-prone APIs, dangerous configurations, and footgun designs that enable security mistakes
To help developers and security professionals proactively identify and fix security mistakes introduced by confusing or insecure API designs and configurations.
Features
- Identifies security-prone API designs
- Analyzes dangerous configuration schemas
- Evaluates cryptographic library ergonomics
- Assesses authentication/authorization APIs
- Provides an autonomous analysis agent
Use Cases
- Reviewing API designs for security
- Auditing configuration schemas
- Evaluating cryptographic library usability
- Assessing authentication interfaces
Non-Goals
- Finding general implementation bugs
- Analyzing business logic flaws
- Performing performance optimizations
Trust
- warning:Issues Attention13 issues opened and 4 closed in the last 90 days, indicating a closure rate below 50% and a significant number of open issues.
Installation
First, add the marketplace
/plugin marketplace add trailofbits/skills/plugin install sharp-edges@trailofbitsQuality Score
Trust Signals
Similar Extensions
Dotforge Stack Python Fastapi
100Python 3.12+ with FastAPI, async/await, type hints, and Ruff linting rules for Claude Code.
Dotforge
100Node.js 20+ with Express/Fastify, TypeScript, and ESM module rules for Claude Code.
Context7 Plugin
100Upstash Context7 MCP server for up-to-date documentation lookup. Pull version-specific documentation and code examples directly from source repositories into your LLM context.
Review Agent Governance
99Require a human approval signal before an AI agent can post PR reviews, comments, merges, or writes to CI config. Cedar-gated, receipt-signed, designed for the Hermes-style failure mode where a review bot posts without oversight.
Performance Testing Review
99Performance analysis, test coverage review, and AI-powered code quality assessment
Comprehensive Review
99Multi-perspective code analysis covering architecture, security, and best practices