{"id":"3e5d502c-54b3-4ca3-94e6-38a65b416abe","shortId":"twG7HK","kind":"skill","title":"security","tagline":"Use when auditing security, checking for vulnerabilities, scanning for secrets, or reviewing dependencies. OWASP Top 10 audit with GitLeaks and dependency checks.","description":"You are a security engineer running audits and setting up GitLeaks.\n\nRead individual rule files in `rules/` for detailed explanations and examples.\n\n## Rules Overview\n\n| Rule | Impact | File |\n|------|--------|------|\n| OWASP Top 10 | HIGH | `rules/owasp-top-10.md` |\n| Hardcoded secrets | HIGH | `rules/hardcoded-secrets.md` |\n| Auth & access control | HIGH | `rules/auth-access-control.md` |\n| Insecure dependencies | MEDIUM | `rules/insecure-dependencies.md` |\n| Data protection | MEDIUM | `rules/data-protection.md` |\n\n## Workflow\n\n### Step 1: GitLeaks Setup\n\nEnsure GitLeaks is configured in the project's pre-commit hook:\n\n1. Check if `.husky/pre-commit` exists and contains `gitleaks`\n2. If missing, set up Husky and add `gitleaks protect --staged --verbose` before any `lint-staged` command\n\n### Step 2: Code Security Audit\n\nScan the codebase against every rule in `rules/`. Search for vulnerability patterns.\n\n### Step 3: Report\n\n```\n## Security Audit Results\n\n### HIGH Severity\n- `src/api/users.ts:23` - Unsanitised user input in SQL query\n\n### MEDIUM Severity\n- `package.json` - 3 packages with known vulnerabilities\n\n### Summary\n| Category | Findings |\n|----------|----------|\n| OWASP Top 10 | X |\n| Hardcoded secrets | Y |\n| **Total** | **Z** |\n```\n\n### Step 4: Retrospective History Scan (Optional)\n\nOnly when user passes `--scan-history`:\n\n```bash\ngitleaks detect --source . --verbose\n```\n\n## Assumptions\n\n- GitLeaks is installed on the system\n- Target projects use Husky + lint-staged (JS/TS stack)","tags":["security","skills","tartinerlabs","agent-skills","automation","claude-code","claude-code-skills","cli","code-quality","developer-tools","github-actions","productivity"],"capabilities":["skill","source-tartinerlabs","skill-security","topic-agent-skills","topic-automation","topic-claude-code","topic-claude-code-skills","topic-cli","topic-code-quality","topic-developer-tools","topic-github-actions","topic-productivity","topic-tailwind-css"],"categories":["skills"],"synonyms":[],"warnings":[],"endpointUrl":"https://skills.sh/tartinerlabs/skills/security","protocol":"skill","transport":"skills-sh","auth":{"type":"none","details":{"cli":"npx skills add tartinerlabs/skills","source_repo":"https://github.com/tartinerlabs/skills","install_from":"skills.sh"}},"qualityScore":"0.453","qualityRationale":"deterministic score 0.45 from registry signals: · indexed on github topic:agent-skills · 7 github stars · SKILL.md body (1,514 chars)","verified":false,"liveness":"unknown","lastLivenessCheck":null,"agentReviews":{"count":0,"score_avg":null,"cost_usd_avg":null,"success_rate":null,"latency_p50_ms":null,"narrative_summary":null,"summary_updated_at":null},"enrichmentModel":"deterministic:skill-github:v1","enrichmentVersion":1,"enrichedAt":"2026-05-18T19:13:56.951Z","embedding":null,"createdAt":"2026-05-07T20:43:01.812Z","updatedAt":"2026-05-18T19:13:56.951Z","lastSeenAt":"2026-05-18T19:13:56.951Z","tsv":"'1':75,90 '10':17,53,162 '2':98,117 '23':142 '3':134,152 '4':170 'access':61 'add':105 'assumpt':187 'audit':4,18,30,120,137 'auth':60 'bash':182 'categori':158 'check':6,23,91 'code':118 'codebas':123 'command':115 'commit':88 'configur':81 'contain':96 'control':62 'data':69 'depend':14,22,66 'detail':42 'detect':184 'engin':28 'ensur':78 'everi':125 'exampl':45 'exist':94 'explan':43 'file':38,50 'find':159 'gitleak':20,34,76,79,97,106,183,188 'hardcod':56,164 'high':54,58,63,139 'histori':172,181 'hook':89 'huski':103,197 'husky/pre-commit':93 'impact':49 'individu':36 'input':145 'insecur':65 'instal':190 'js/ts':201 'known':155 'lint':113,199 'lint-stag':112,198 'medium':67,71,149 'miss':100 'option':174 'overview':47 'owasp':15,51,160 'packag':153 'package.json':151 'pass':178 'pattern':132 'pre':87 'pre-commit':86 'project':84,195 'protect':70,107 'queri':148 'read':35 'report':135 'result':138 'retrospect':171 'review':13 'rule':37,40,46,48,126,128 'rules/auth-access-control.md':64 'rules/data-protection.md':72 'rules/hardcoded-secrets.md':59 'rules/insecure-dependencies.md':68 'rules/owasp-top-10.md':55 'run':29 'scan':9,121,173,180 'scan-histori':179 'search':129 'secret':11,57,165 'secur':1,5,27,119,136 'set':32,101 'setup':77 'sever':140,150 'skill' 'skill-security' 'sourc':185 'source-tartinerlabs' 'sql':147 'src/api/users.ts':141 'stack':202 'stage':108,114,200 'step':74,116,133,169 'summari':157 'system':193 'target':194 'top':16,52,161 'topic-agent-skills' 'topic-automation' 'topic-claude-code' 'topic-claude-code-skills' 'topic-cli' 'topic-code-quality' 'topic-developer-tools' 'topic-github-actions' 'topic-productivity' 'topic-tailwind-css' 'total':167 'unsanitis':143 'use':2,196 'user':144,177 'verbos':109,186 'vulner':8,131,156 'workflow':73 'x':163 'y':166 'z':168","prices":[{"id":"a840cc9c-267d-4226-b615-fe0bda34bf7f","listingId":"3e5d502c-54b3-4ca3-94e6-38a65b416abe","amountUsd":"0","unit":"free","nativeCurrency":null,"nativeAmount":null,"chain":null,"payTo":null,"paymentMethod":"skill-free","isPrimary":true,"details":{"org":"tartinerlabs","category":"skills","install_from":"skills.sh"},"createdAt":"2026-05-07T20:43:01.812Z"}],"sources":[{"listingId":"3e5d502c-54b3-4ca3-94e6-38a65b416abe","source":"github","sourceId":"tartinerlabs/skills/security","sourceUrl":"https://github.com/tartinerlabs/skills/tree/main/skills/security","isPrimary":false,"firstSeenAt":"2026-05-18T13:21:01.665Z","lastSeenAt":"2026-05-18T19:13:56.951Z"},{"listingId":"3e5d502c-54b3-4ca3-94e6-38a65b416abe","source":"skills_sh","sourceId":"tartinerlabs/skills/security","sourceUrl":"https://skills.sh/tartinerlabs/skills/security","isPrimary":true,"firstSeenAt":"2026-05-07T20:43:01.812Z","lastSeenAt":"2026-05-07T22:41:56.692Z"}],"details":{"listingId":"3e5d502c-54b3-4ca3-94e6-38a65b416abe","quickStartSnippet":null,"exampleRequest":null,"exampleResponse":null,"schema":null,"openapiUrl":null,"agentsTxtUrl":null,"citations":[],"useCases":[],"bestFor":[],"notFor":[],"kindDetails":{"org":"tartinerlabs","slug":"security","github":{"repo":"tartinerlabs/skills","stars":7,"topics":["agent-skills","automation","claude-code","claude-code-skills","cli","code-quality","developer-tools","github-actions","productivity","tailwind-css"],"license":"mit","html_url":"https://github.com/tartinerlabs/skills","pushed_at":"2026-05-17T09:09:47Z","description":"Claude Code skills for git workflows, GitHub automation, security audits, code refactoring, and project tooling","skill_md_sha":"d3abe3817a4ed77001488469cde62a79c03b1584","skill_md_path":"skills/security/SKILL.md","default_branch":"main","skill_tree_url":"https://github.com/tartinerlabs/skills/tree/main/skills/security"},"layout":"multi","source":"github","category":"skills","frontmatter":{"name":"security","description":"Use when auditing security, checking for vulnerabilities, scanning for secrets, or reviewing dependencies. OWASP Top 10 audit with GitLeaks and dependency checks."},"skills_sh_url":"https://skills.sh/tartinerlabs/skills/security"},"updatedAt":"2026-05-18T19:13:56.951Z"}}