sast-bandit

Description

Python security vulnerability detection using Bandit SAST with CWE and OWASP mapping. Use when: (1) Scanning Python code for security vulnerabilities and anti-patterns, (2) Identifying hardcoded secrets, SQL injection, command injection, and insecure APIs, (3) Generating security reports with severity classifications for CI/CD pipelines, (4) Providing remediation guidance with security framework references, (5) Enforcing Python security best practices in development workflows.

Install

Add the repository(one-time)

/plugin marketplace add AgentSecOps/SecOpsAgentKit

Install the plugin

/plugin install appsec-skills@agent-sec-ops-kit-skills

Tool Access

This skill inherits all available tools. When active, it can use any tool Claude has access to.

Supporting Assets

View in Repository

assets/bandit_config.yaml

assets/pre-commit-config.yaml

references/cwe_owasp_mapping.md

references/remediation_guide.md

Links

GitHub Stats

0 forks

Similar Skills

attack-tree-construction

Build comprehensive attack trees to visualize threat paths. Use when mapping attack scenarios, identifying defense gaps, or communicating security risks to stakeholders.

security-scanning

23.7k

sast-configuration

Configure Static Application Security Testing (SAST) tools for automated vulnerability detection in application code. Use when setting up security scanning, implementing DevSecOps practices, or automating code vulnerability detection.

security-scanning

23.7k

security-requirement-extraction

Derive security requirements from threat models and business context. Use when translating threats into actionable requirements, creating security user stories, or building security test cases.

security-scanning

23.7k