Stats
Actions
Tags
Help us improve
Share bugs, ideas, or general feedback.
From bash-master
Analyzes Bash scripts or directories for security vulnerabilities, performance issues, portability concerns, and best practices compliance, producing scored reports with recommendations.
npx claudepluginhub josiahsiegel/claude-plugin-marketplace --plugin bash-masterHow this command is triggered — by the user, by Claude, or both
Slash command
/bash-master:bash-analyze <script.sh or directory>The summary Claude sees in its command listing — used to decide when to auto-load this command
## CRITICAL GUIDELINES ### Windows File Path Requirements **MANDATORY: Always Use Backslashes on Windows for File Paths** When using Edit or Write tools on Windows, you MUST use backslashes (`\`) in file paths, NOT forward slashes (`/`). --- # Bash Script Analyzer ## Purpose Perform comprehensive analysis of bash scripts covering security vulnerabilities, performance issues, portability concerns, and adherence to modern best practices. ## Analysis Categories ### 1. Security Analysis - Command injection vulnerabilities - Path traversal risks - Unsafe temporary file handling - Unquot...
/shell-reviewAudits shell scripts for correctness, safety, and portability. Reports exit code issues with fixes, portability warnings, safety recommendations, and overall assessment.
/ps-analyzeAnalyzes PowerShell scripts or directories for security issues, best practices, compatibility, and performance, producing a structured report with summary, issues, and fixes.
/validate-skillsValidates bash/shell code blocks in plugin markdown command/skill files or specified paths/directories using static analysis (bash -n, shellcheck), safety tiering, safe execution for green-tier, and AI review. Outputs report or JSON with --json.
/audit-codebaseAudits codebase for security vulnerabilities, performance issues, and best practices. Launches parallel agents to generate prioritized report with severity levels and recommendations.
/reviews-codeAnalyzes code at specified path for quality, security, and performance issues with optional scope, generating report with severity-categorized findings and recommendations.
/securityConducts security reviews of apps, APIs, scripts, and configs using OWASP Top 10 best practices and threat modeling; detects vulnerabilities and suggests fixes.
Share bugs, ideas, or general feedback.
MANDATORY: Always Use Backslashes on Windows for File Paths
When using Edit or Write tools on Windows, you MUST use backslashes (\) in file paths, NOT forward slashes (/).
Perform comprehensive analysis of bash scripts covering security vulnerabilities, performance issues, portability concerns, and adherence to modern best practices.
For each script analyzed, provide:
## Script: <filename>
### Security Issues
- [CRITICAL] <issue description>
- [HIGH] <issue description>
- [MEDIUM] <issue description>
### Performance Issues
- [IMPACT: HIGH] <issue description>
- [IMPACT: MEDIUM] <issue description>
### Portability Issues
- [Bash 5.x required] <feature used>
- [GNU-specific] <command/flag used>
### Best Practice Violations
- [ShellCheck SC####] <description>
- [Style] <description>
### Recommendations
1. <actionable recommendation>
2. <actionable recommendation>
### Score: X/100
- Security: X/25
- Performance: X/25
- Portability: X/25
- Best Practices: X/25
When analyzing scripts, systematically check:
Analyze single script:
/bash-analyze backup.sh
Analyze directory:
/bash-analyze scripts/
Focus on security:
/bash-analyze deploy.sh focus on security vulnerabilities
Check portability:
/bash-analyze build.sh check POSIX compliance
Based on findings, I will:
Comprehensive bash script analysis using 2025 best practices and security standards.