/scan

Description

**Command:** `security:scan [path]`

Install

Add the repository(one-time)

/plugin marketplace add nguyenthienthanh/aura-frog

Install the plugin

/plugin install aura-frog@aurafrog

Namespace

security/

Prompt Preview

# Command: security:scan

**Command:** `security:scan [path]`
**Agent:** security-expert
**Version:** 1.0.0

---

## 🎯 Purpose

Static code security analysis to detect vulnerabilities, insecure patterns, and hardcoded secrets.

---

## 📋 Usage



---

## 🔧 Execution Steps

### Step 1: Static Analysis

**Tools by language:**
- **Node.js:** ESLint security plugins, Semgrep
- **Python:** Bandit
- **PHP:** PHPCS security rules
- **Go:** gosec

**Checks:**
- SQL injection risks
- XSS vulnerabilities
- Command injection
- Path traversal
- Insecure crypto
- Hardcoded credentials

### Step 2: Se...

Links

GitHub Stats

2 forks

Updated 1 month ago

Other plugins with /scan

/scan

Scan codebase for security vulnerabilities

vulnerability-scanner

830

/scan

Scan codebase for security vulnerabilities

vulnerability-scanner

704

/scan

Run comprehensive static security analysis on AI agent code using OWASP LLM Top 10 framework. Analyze prompts, outputs, tools, data handling, memory, supply chain, and behavioral patterns. Use when user asks for security scan, vulnerability check, OWASP analysis, code review for security, or wants to check their AI agent for security issues.

agent-inspector

/scan

Security vulnerability scanning with Trivy and compliance checking

BashReadWrite

container-workflow

/scan

Run a security scan on your project or a GitHub repository

vibeship