Slash Command

/semgrep-rule

Creates Semgrep security rules with test-first methodology, using conversation context for detection patterns, target languages, and taint modes.

security

code-quality

npx claudepluginhub trailofbits/skills --plugin semgrep-rule-creator

Details

Argument(uses conversation context for detection pattern)

Allowed Tools

BashReadWriteEditGlobGrepWebFetch

Prompt Preview

# Create Semgrep Rule

**Arguments:** $ARGUMENTS

This command is context-driven. Use conversation context to understand:
1. The vulnerability or pattern to detect
2. The target language
3. Whether taint mode is appropriate

If context is unclear, ask for a description of the pattern to detect.

Invoke the `semgrep-rule-creator` skill for the full workflow.

Command Content

Other plugins with /semgrep-rule

/create-rule

Creates a custom Semgrep YAML detection rule from a vulnerability pattern in a finding ID or file:line location. Supports --output dir and --test flags, saves for future scans.

5 tools

vuln-scout

/semgrep-analyze

Runs Semgrep static analysis on files or directories with optional ruleset, producing structured JSON findings with status, issues by severity/location/rule, and summary.

4 tools

agentic-dev-team

/security

Conducts security reviews of apps, APIs, scripts, and configs using OWASP Top 10 best practices and threat modeling; detects vulnerabilities and suggests fixes.

sonnet4 tools

backend-security

/kasi-security

Runs security audit on project codebase: detects stack (PHP/Node/Python/etc.), loads checklist, scans files for SQLi/XSS/CSRF/auth bypass/etc., outputs prioritized findings with confidence labels.

kasidit

/hookify

242

Creates custom behavioral rules from instructions to block or warn on unwanted actions like dangerous bash commands, debug code in files, or missing tests, saving regex-based rules to .claude/ files. Also analyzes conversation history for rule suggestions.

hookify

/security-review

681

Performs CWE Top 25 security review and STRIDE threat modeling on files/directories at maximum effort. Supports git diff scans (--auto/--quick), dependency checks, and markdown/json reports.

claude-forge

Stats

Parent Repo Stars4186

Parent Repo Forks370

Last CommitJan 29, 2026

Used By3 plugins

Actions

View Source View Plugin View on GitHub View README

Help us improve

Share bugs, ideas, or general feedback.

# Create Semgrep Rule **Arguments:** $ARGUMENTS This command is context-driven. Use conversation context to understand: 1. The vulnerability or pattern to detect 2. The target language 3. Whether taint mode is appropriate If context is unclear, ask for a description of the pattern to detect. Invoke the `semgrep-rule-creator` skill for the full workflow.

Create Semgrep Rule

Arguments: $ARGUMENTS

This command is context-driven. Use conversation context to understand:

The vulnerability or pattern to detect

The target language

Whether taint mode is appropriate

If context is unclear, ask for a description of the pattern to detect.

Invoke the semgrep-rule-creator skill for the full workflow.