generating-security-audit-reports | security-audit-reporter | ClaudePluginHub

Skill

Community

generating-security-audit-reports

From security-audit-reporter

847

Description

Generate comprehensive security audit reports for applications and systems. Use when you need to assess security posture, identify vulnerabilities, evaluate compliance status, or create formal security documentation. Trigger with phrases like "create security audit report", "generate security assessment", "audit security posture", or "PCI-DSS compliance report".

Install

1

Add the repository(one-time)

$

/plugin marketplace add jeremylongshore/claude-code-plugins-plus

2

Install the plugin

$

/plugin install security-audit-reporter@claude-code-plugins-plus

Tool Access

This skill is limited to using the following tools:

ReadWriteEditGrepGlobBash(security-scan:*)Bash(report-gen:*)

Supporting Assets

View in Repository

assets/README.md

references/README.md

scripts/README.md

scripts/report_formatter.py

scripts/security_scan.py

Skill Content

Generating Security Audit Reports

Overview

This skill provides automated assistance for the described functionality.

Prerequisites

Before using this skill, ensure:

Security scan data or logs are available in {baseDir}/security/
Access to application configuration files
Security tool outputs (e.g., vulnerability scanners, SAST/DAST results)
Compliance framework documentation (if applicable)
Write permissions for generating report files

Instructions

Collect available security signals (scanner outputs, configs, logs).
Analyze findings and map to risk + compliance requirements.
Generate a report with prioritized remediation guidance.
Format outputs (Markdown/HTML/PDF) and include evidence links.

See {baseDir}/references/implementation.md for detailed implementation guide.

Output

The skill produces:

Primary Output: Comprehensive security audit report saved to {baseDir}/reports/security-audit-YYYYMMDD.md

Report Structure:

# Security Audit Report - [System Name]

## Error Handling

See `{baseDir}/references/errors.md` for comprehensive error handling.

## Examples

See `{baseDir}/references/examples.md` for detailed examples.

## Resources

- OWASP Top 10: https://owasp.org/www-project-top-ten/
- CWE Top 25: https://cwe.mitre.org/top25/
- NIST Cybersecurity Framework: https://www.nist.gov/cyberframework
- PCI-DSS Requirements: https://www.pcisecuritystandards.org/
- GDPR Compliance Checklist: https://gdpr.eu/checklist/

Links

GitHub Stats

0 forks

Updated 3 days ago

Similar Skills

gitops-workflow

Implement GitOps workflows with ArgoCD and Flux for automated, declarative Kubernetes deployments with continuous reconciliation. Use when implementing GitOps practices, automating Kubernetes deployments, or setting up declarative infrastructure management.

kubernetes-operations

24.8k

helm-chart-scaffolding

Design, organize, and manage Helm charts for templating and packaging Kubernetes applications with reusable configurations. Use when creating Helm charts, packaging Kubernetes applications, or implementing templated deployments.

kubernetes-operations

24.8k

k8s-manifest-generator

Create production-ready Kubernetes manifests for Deployments, Services, ConfigMaps, and Secrets following best practices and security standards. Use when generating Kubernetes YAML manifests, creating K8s resources, or implementing production-grade Kubernetes configurations.

kubernetes-operations

24.8k