Generates security audit reports from vulnerability scans, configs, and compliance data with CVSS scoring, findings tables, remediation plans, and status matrices.
How this skill is triggered — by the user, by Claude, or both
Slash command
/security-audit-reporter:generating-security-audit-reportsThis skill is limited to the following tools:
The summary Claude sees in its skill listing — used to decide when to auto-load this skill
Aggregate vulnerability scan results, configuration analyses, and compliance assessments into a structured, auditor-ready security report. Map every finding to a CVSS severity, applicable compliance control (PCI-DSS, HIPAA, SOC 2, GDPR), and a prioritized remediation timeline.
Aggregate vulnerability scan results, configuration analyses, and compliance assessments into a structured, auditor-ready security report. Map every finding to a CVSS severity, applicable compliance control (PCI-DSS, HIPAA, SOC 2, GDPR), and a prioritized remediation timeline.
${CLAUDE_SKILL_DIR}/security/${CLAUDE_SKILL_DIR}/reports/${CLAUDE_SKILL_DIR}/security/ for scanner outputs, log files, and configuration exports.${CLAUDE_SKILL_DIR}/reports/security-audit-YYYYMMDD.md. Optionally produce JSON for Jira/ServiceNow import.See ${CLAUDE_SKILL_DIR}/references/implementation.md for the detailed four-phase implementation workflow.
${CLAUDE_SKILL_DIR}/reports/security-audit-YYYYMMDD.md containing executive summary, detailed findings, compliance matrix, and remediation plan| Error | Cause | Solution |
|---|---|---|
| No security scan results found | Scanner outputs missing from ${CLAUDE_SKILL_DIR}/security/ | Specify alternate data source paths or run preliminary scans with nmap -sV or trivy fs . |
| Cannot assess compliance -- requirements unavailable | Compliance framework checklist not provided | Fall back to OWASP Top 10 and CWE Top 25 as baseline; note limitation in report |
| Permission denied reading config files | Insufficient filesystem access | Request elevated permissions or provide exported configuration snapshots |
| Scan results exceed processing capacity | Thousands of findings from multiple scanners | Process in batches by severity (Critical/High first), then merge |
| Conflicting severity ratings across scanners | Different tools score the same vulnerability differently | Use CVSS 3.1 base score as canonical severity; note discrepancies in appendix |
${CLAUDE_SKILL_DIR}/security/."${CLAUDE_SKILL_DIR}/references/errors.md -- full error handling reference${CLAUDE_SKILL_DIR}/references/examples.md -- additional usage examples11plugins reuse this skill
First indexed Jul 10, 2026
Showing the 6 earliest of 11 plugins
npx claudepluginhub ia23a-lachnita/claude-code-plugins-plus-fix-skills --plugin security-audit-reporterGenerates security audit reports from vulnerability scans, configs, and compliance data with CVSS scoring, findings tables, remediation plans, and status matrices.
Conducts security audits, SAST scans, penetration testing, and compliance checks. Produces structured vulnerability reports with severity ratings and remediation guidance.
Conducts security audits, SAST scans, penetration testing, and infrastructure security reviews. Produces structured vulnerability reports with severity ratings and remediation guidance.