Scans the codebase for security vulnerabilities using static analysis, dependency CVE checks, and configuration review. Produces a severity-categorized report with remediation steps.
How this command is triggered — by the user, by Claude, or both
Slash command
/vulnerability-scanner:scanThe summary Claude sees in its command listing — used to decide when to auto-load this command
# Vulnerability Scanner Perform comprehensive vulnerability scanning on the current codebase to identify security issues, CVEs, and potential attack vectors. ## Scan Process 1. **Code Analysis (SAST)** - Scan for common vulnerability patterns - Identify insecure code practices - Check for hardcoded secrets - Analyze authentication/authorization flaws 2. **Dependency Scanning** - Check npm/pip/composer dependencies for known CVEs - Identify outdated packages with security patches - Report transitive dependency vulnerabilities 3. **Configuration Review** - Analyze...
Perform comprehensive vulnerability scanning on the current codebase to identify security issues, CVEs, and potential attack vectors.
Code Analysis (SAST)
Dependency Scanning
Configuration Review
Report Generation
Generate a structured vulnerability report with:
18plugins reuse this command
First indexed Dec 31, 2025
Showing the 6 earliest of 18 plugins
npx claudepluginhub ktiseos-nyx/claude-code-plugins-plus-skills --plugin vulnerability-scanner/scanScans the codebase for security vulnerabilities using static analysis, dependency CVE checks, and configuration review. Produces a severity-categorized report with remediation steps.
/security-scanScans codebase for exposed secrets, dependency CVEs, and SAST issues like SQLi/XSS. Produces report with findings table, severities, and upgrade recommendations.
/securityScans code for exposed secrets and vulnerabilities via the github-autopilot MCP server, reporting risk level, severity, and fixes with redacted secrets.
/security-checkScans the codebase for security vulnerabilities — checks injection points, auth, data handling, dependencies, and configuration, then reports findings with CVSS severity ratings.
/security-scanScans the codebase for OWASP Top 10 and common security vulnerabilities across categories such as injection, authentication, and misconfiguration.
/scanRuns a deterministic security scan combining native checks (secret patterns, file permissions, git tracking) with auto-detected external tools (gitleaks, pip-audit, npm audit).