Security & Compliance Marketplace
Professional Security, Compliance, and Productivity Plugins for Claude Code
A curated collection of production-ready security, compliance, and productivity plugins for Claude Code. Built on authoritative sources and rigorously tested with real-world data.
📚 Documentation Wiki
→ Full Documentation Wiki (53 pages)
| Category | Topics |
|---|
| Getting Started | Installation, First Session, Quick Reference |
| Configuration | CLAUDE.md, Memory Architecture, Settings, Permissions |
| MCP Servers | Transports, Scopes, Authentication, Troubleshooting |
| Plugins | Lifecycle, Plugins vs MCP, Creating Plugins |
| Context | What Consumes Context, Reduction Strategies, Subagent Delegation |
| Sessions | Task-Based Config, When to Restart, Workflow Patterns |
| Platforms | macOS, Linux, WSL2, Windows Native |
| Examples | 14 copy-paste examples for CLAUDE.md, MCP, Workflows, Settings |
🚀 Quick Start
Step 1: Add Marketplace (GitHub Repository)
# IMPORTANT: Use GitHub repository format for remote updates
/plugin marketplace add diegocconsolini/ClaudeSkillCollection
⚠️ Critical: Do NOT use local paths like /path/to/ClaudeSkillCollection as this prevents remote updates. Always use the GitHub format owner/repo for automatic updates.
Step 2: Install Plugins
# Install desired plugins from the marketplace
/plugin install plugin-security-checker@security-compliance-marketplace
/plugin install gdpr-auditor@security-compliance-marketplace
/plugin install pdf-smart-extractor@security-compliance-marketplace
Step 3: Enable Plugins and Restart
After installation:
- Enable plugins via
/plugin interface (plugins are disabled by default after first install)
- Restart Claude Code to load the plugins properly
Updating Plugins
# To get updates from GitHub:
/plugin # Navigate to plugin details and select "Update now"
# If you installed with a local path and can't update:
/plugin marketplace remove security-compliance-marketplace
/plugin marketplace add diegocconsolini/ClaudeSkillCollection # Re-add using GitHub format
📂 Plugin Categories
🔒 Security & Compliance (Authoritative Sources)
Professional security and compliance plugins built from official regulatory texts, industry frameworks, and authoritative guidance. No hallucinated content - every template, requirement, and guideline is traceable to its source.
What makes these authoritative:
- GDPR Auditor: EUR-Lex official EU regulation texts, ICO guidance, EDPB guidelines
- Cybersecurity Policy Generator: SANS Institute templates, CIS Controls v8 official framework
- Incident Response Playbook Creator: NIST SP 800-61r3 (April 2025), CISA federal playbooks, GDPR Article 33/34, HIPAA Breach Notification Rule
📊 Productivity Tools (Smart Extraction with Persistent Caching)
High-performance document extraction plugins that solve the "PDF/Excel/Word too large for LLM" problem through local extraction, semantic chunking, and intelligent caching.
How caching works (v2.0.0 - Unified System):
- First extraction: Processes document locally (PyMuPDF for PDF, openpyxl for Excel, python-docx for Word)
- Persistent cache: Stores extracted content in
~/.claude-cache/{doc_type}/ with SHAKE256 hash keys (SHA-3 family)
- Subsequent queries: Instant - uses cached extraction, no re-processing needed
- Token optimization: 10-100x reduction by loading only relevant chunks, not entire documents
- Automatic migration: Old caches (SHA-256) automatically migrate to new format (SHAKE256)
All three extractors share unified caching: Local extraction → Semantic chunking → Persistent caching → Efficient querying
What's new in v2.0.0:
- Unified cache location:
~/.claude-cache/ (was ~/.claude-{type}-cache/)
- Modern hashing: SHAKE256 (was SHA-256)
- Automatic migration from v1.x caches
- Shared caching library for consistency
- See
/shared/CACHE_STRATEGY.md for details
⚠️ IMPORTANT: Cache Location Behavior
Extracted files are stored in user cache directory, NOT your working directory:
ChromeDevTools