Slash Command

/security-scan

Scans codebase for OWASP Top 10 vulnerabilities and common security patterns. Defaults to entire project or limits to specified path.

security

npx claudepluginhub rohitg00/awesome-claude-code-toolkit --plugin code-guardian

Popularity

Parent stars

1,716

Parent forks

535

Invocation

How this command is triggered — by the user, by Claude, or both

Slash command

/code-guardian:security-scan

Model invocable

No pre-commands

Context Preview

The summary Claude sees in its command listing — used to decide when to auto-load this command

# /code-guardian:security-scan

Perform a security-focused scan of the codebase targeting OWASP Top 10 and common vulnerability patterns.

## Process

1. Determine the scan scope:
   - Default: scan the entire project from the repository root
   - If an argument is provided, limit scanning to that path
   - Identify the primary language(s) and framework(s) by checking package.json, requirements.txt, go.mod, Cargo.toml, etc.

2. Scan for each vulnerability category:

### A01: Broken Access Control
- Search for endpoints missing authentication middleware
- Check for direct object reference pa...

Command Content

91 lines · ~1k tokens

Other plugins with /security-scan

/audit

1.7k

Performs security audit of codebase for dependency vulnerabilities, secrets, OWASP Top 10, input validation, auth issues, and misconfigs. Outputs findings report by severity with fixes and references.

claude-code-toolkit

/scan

Scans codebase for security vulnerabilities, hardcoded secrets, insecure patterns, and web security headers. Generates Markdown report with issues, code snippets, and remediation examples.

aura-frog

/security-scan

1.4k

Scans codebase for hardcoded secrets, vulnerable dependencies, common vulnerabilities like injections and XSS, and config issues, producing a structured security report with remediation steps.

project-starter

/security-scan

Scans codebase for vulnerabilities, hardcoded secrets, OWASP Top 10 compliance, and security best practices violations. Produces report with issues and fix recommendations.

5 tools

autonomous-dev

/security-scan

197.0k

Runs AgentShield security scan against agent, hook, MCP, permission, and secret surfaces, producing a prioritized remediation plan with severity counts and fix suggestions.

ecc

/security-scan

2.2k

Scans PostgreSQL and MySQL databases for 50+ OWASP security vulnerabilities, generates compliance reports, automated remediation scripts, and audit trails.

database-security-scanner

Stats

LanguageJavaScript

Parent stars1,716

Parent forks535

MaintenanceFair

Last CommitFeb 4, 2026

Actions

View Source View Plugin View on GitHub View README

Help us improve

Share bugs, ideas, or general feedback.

Stats

Actions

Help us improve

Share bugs, ideas, or general feedback.

/code-guardian:security-scan

Perform a security-focused scan of the codebase targeting OWASP Top 10 and common vulnerability patterns.

Process

Determine the scan scope:
- Default: scan the entire project from the repository root
- If an argument is provided, limit scanning to that path
- Identify the primary language(s) and framework(s) by checking package.json, requirements.txt, go.mod, Cargo.toml, etc.
Scan for each vulnerability category:

A01: Broken Access Control

Search for endpoints missing authentication middleware
Check for direct object reference patterns where user IDs from request params access resources without ownership verification
Look for missing CORS configuration or overly permissive origins (*)
Find routes that expose admin functionality without role checks

A02: Cryptographic Failures

Grep for weak hashing algorithms: MD5, SHA1 used for passwords or tokens
Check for hardcoded encryption keys, salts, or initialization vectors
Look for HTTP URLs where HTTPS should be used (API calls, webhooks)
Verify that sensitive data in logs is masked or redacted

A03: Injection

Search for string concatenation or template literals in SQL queries
Check for unsanitized input in shell exec, spawn, or system calls
Look for innerHTML assignments, dangerouslySetInnerHTML without sanitization
Find regex patterns vulnerable to ReDoS (catastrophic backtracking)

A04: Insecure Design

Check for missing rate limiting on authentication endpoints
Look for predictable resource IDs (sequential integers for sensitive resources)
Verify that file uploads validate type, size, and content
Check for missing CSRF protection on state-changing requests

A05: Security Misconfiguration

Search for debug mode enabled in production configs
Check for default credentials in config files or environment examples
Look for overly verbose error messages that leak stack traces
Verify security headers (CSP, X-Frame-Options, HSTS) in server config

A06: Vulnerable Components

If package-lock.json or yarn.lock exists, note that npm audit should be run
Check for pinned versions of known-vulnerable packages
Look for abandoned dependencies (check last publish date patterns in comments)

A07: Authentication Failures

Check JWT implementation: algorithm confusion, missing expiry, weak secrets
Look for session tokens in URLs or local storage instead of httpOnly cookies
Find password handling without proper hashing (bcrypt/argon2)
Check for missing account lockout after failed attempts

A08: Data Integrity Failures

Look for deserialization of untrusted data (pickle, yaml.load, JSON.parse of user input into eval)
Check for missing integrity verification on downloaded artifacts
Find CI/CD configs that pull unverified external actions or images

A09: Logging Failures

Check if authentication events (login, logout, failure) are logged
Verify that sensitive data (passwords, tokens, PII) is not written to logs
Look for missing request ID correlation in log entries

A10: SSRF

Search for user-controlled URLs passed to HTTP clients or fetch calls
Check for URL validation that only checks the scheme but not the host
Look for internal service URLs constructable from user input

Additionally scan for:
- .env files committed to the repository
- Private keys (RSA, SSH, PGP) in the source tree
- AWS access keys, GCP service account JSON, Azure connection strings
- Patterns matching API keys: long alphanumeric strings in source code near keywords like key, token, secret

Output Format

Group findings by OWASP category. For each finding provide:

Severity (Critical / High / Medium / Low)
File path and line number
Description of the vulnerability
Recommended remediation

Rules

Minimize false positives: only flag patterns with clear security implications
Prioritize findings that are exploitable in production
Do not flag test files unless they contain real credentials
Suggest specific fixes, not just "sanitize input"
End with a security posture summary and top 3 priority actions

/security-scan

Popularity

Invocation

Context Preview

Command Content

Other plugins with /security-scan

Help us improve

Help us improve

Find plugins for your project

/security-scan

Popularity

Invocation

Context Preview

Command Content

/code-guardian:security-scan

Process

A01: Broken Access Control

A02: Cryptographic Failures

A03: Injection

A04: Insecure Design

A05: Security Misconfiguration

A06: Vulnerable Components

A07: Authentication Failures

A08: Data Integrity Failures

A09: Logging Failures

A10: SSRF

Output Format

Rules

Other plugins with /security-scan

Help us improve

/code-guardian:security-scan

Process

A01: Broken Access Control

A02: Cryptographic Failures

A03: Injection

A04: Insecure Design

A05: Security Misconfiguration

A06: Vulnerable Components

A07: Authentication Failures

A08: Data Integrity Failures

A09: Logging Failures

A10: SSRF

Output Format

Rules