跳转到主要内容
此内容尚未提供您的语言版本,正在以英文显示。

Security Scanning

插件 已验证 活跃

SAST analysis, dependency vulnerability scanning, OWASP Top 10 compliance, container security scanning, and automated security hardening

5 个 Skill 0 个 MCP
目的

To provide a robust, integrated set of tools for detecting and mitigating security vulnerabilities across the software development lifecycle.

功能

  • SAST analysis across multiple languages
  • Dependency vulnerability and SBOM generation
  • OWASP Top 10 compliance checks
  • Automated security hardening workflows
  • Container security scanning capabilities

使用场景

  • Scanning codebases for security vulnerabilities
  • Implementing automated security checks in CI/CD pipelines
  • Hardening applications against common attack vectors
  • Ensuring compliance with security standards like OWASP Top 10
  • Auditing project dependencies for known vulnerabilities

非目标

  • Performing dynamic application security testing (DAST)
  • Providing runtime application security monitoring
  • Managing infrastructure security outside of hardening configurations
  • Replacing dedicated penetration testing services

实践

  • Shift-left security
  • Secure coding standards
  • DevSecOps
  • Compliance automation
  • Vulnerability management

Documentation

  • info:Configuration & parameter referenceWhile configuration examples are provided within command documents (e.g., `.bandit`, `.eslintrc-security.json`), explicit documentation on precedence order of configuration files or implicit parameters is not readily available.

安装

请先添加 Marketplace

/plugin marketplace add wshobson/agents
/plugin install security-scanning@claude-code-workflows

质量评分

已验证
97 /100
13 days ago 分析

信任信号

最近提交14 days ago
星标35.3k
许可证MIT
状态
查看源代码