Skill

security-pattern-detection

Detect OWASP Top 10 vulnerabilities via static analysis. Calculate security score (0.00-1.00) for code quality. Auto-generate remediation suggestions with implementation examples. Integrate with Serena for vulnerability tracking and SLA compliance. Use when: securing code, detecting vulnerabilities, improving security posture, validating fixes, enforcing security standards.

Install

npx claudepluginhub krzemienski/shannon-framework --plugin shannon

Tool Access

This skill is limited to using the following tools:

All

Preview

Scan code for OWASP Top 10 vulnerabilities using static analysis. Calculate security score (0.00-1.00) showing vulnerability density. Generate auto-remediation suggestions with code examples. Track vulnerabilities via Serena for SLA compliance and trending.

SKILL.md

Similar Skills

design-system

Generates design tokens/docs from CSS/Tailwind/styled-components codebases, audits visual consistency across 10 dimensions, detects AI slop in UI.

team-skills-platform

167.4k

ui-demo

Records polished WebM UI demo videos of web apps using Playwright with cursor overlay, natural pacing, and three-phase scripting. Activates for demo, walkthrough, screen recording, or tutorial requests.

team-skills-platform

167.4k

kotlin-patterns

Delivers idiomatic Kotlin patterns for null safety, immutability, sealed classes, coroutines, Flows, extensions, DSL builders, and Gradle DSL. Use when writing, reviewing, refactoring, or designing Kotlin code.

team-skills-platform

167.4k

Stats

Stars2

Forks0

Last CommitNov 20, 2025

Actions

View Source View Plugin View on GitHub View README

Security Pattern Detection - Quantified Vulnerability Assessment

Purpose

When to Use

Securing new code before deployment
Identifying OWASP Top 10 patterns
Enforcing security standards (require 0.85+ score)
Tracking vulnerability fixes over time
Validating remediation implementations
Measuring security improvement ROI

Core Metrics

Security Score Calculation:

Score = 1.0 - (Critical×0.2 + High×0.1 + Medium×0.05)
Range: 0.00 (many vulns) to 1.00 (secure)

Critical: ≥0.2 deduction each (auth, injection, secrets)
High: ≥0.1 deduction each (XSS, CSRF, path traversal)
Medium: ≥0.05 deduction each (weak crypto, logging)

Vulnerability Categories (OWASP Top 10):

A1: Broken Authentication (score impact: -0.20)
A2: Sensitive Data Exposure (score impact: -0.20)
A3: Injection (SQL, NoSQL, command) (score impact: -0.20)
A4: Broken Access Control (score impact: -0.20)
A5: Security Misconfiguration (score impact: -0.10)
A6: XSS (Reflected, Stored, DOM) (score impact: -0.10)
A7: Insufficient Authentication (score impact: -0.15)
A8: CSRF (score impact: -0.10)
A9: Using Components with Known Vulnerabilities (score impact: -0.10)
A10: Insufficient Logging & Monitoring (score impact: -0.05)

Workflow

Phase 1: Vulnerability Detection

Run Semgrep/Bandit: Scan for OWASP patterns
Classify severity: Critical, High, Medium, Low
Calculate score: Apply deductions per formula
Generate report: List vulnerabilities with locations

Detection Example:

[CRITICAL] SQL Injection (A3)
File: src/database.js:45
Pattern: query("SELECT * FROM users WHERE id=" + userId)
Fix: Use parameterized query
Score impact: -0.20

[HIGH] Hardcoded Secret (A2)
File: config.ts:12
Pattern: apiKey: "sk_live_abc123def456"
Fix: Move to environment variable
Score impact: -0.20

Phase 2: Remediation Generation

Analyze pattern: Understand vulnerability context
Generate fix: Provide secure alternative
Add example: Show before/after code
Explain impact: Security & performance implications
Test guidance: How to validate fix

Auto-Remediation Example:

❌ Vulnerable:

app.get('/user/:id', (req, res) => {
  const query = "SELECT * FROM users WHERE id=" + req.params.id;
  db.query(query, (err, result) => res.json(result));
});

✅ Fixed:

app.get('/user/:id', (req, res) => {
  const query = "SELECT * FROM users WHERE id=$1";
  db.query(query, [req.params.id], (err, result) => res.json(result));
});

Phase 3: Serena Integration

Push vulnerabilities: Send to Serena with severity
Track SLA: Days to fix by severity (Critical: 24h)
Alert on violations: Flag overdue vulnerabilities
Measure velocity: Track fixes per week
Trend reporting: Show security trajectory

Serena Payload:

{
  "metric_type": "security_vulnerabilities",
  "project": "task-app",
  "security_score": 0.78,
  "vulnerabilities": [
    {
      "type": "SQL_INJECTION",
      "severity": "CRITICAL",
      "file": "src/database.js:45",
      "sla_hours": 24,
      "suggested_fix": "Use parameterized queries",
      "created": "2025-11-20T10:00:00Z"
    }
  ]
}

Real-World Impact

Financial Application Audit:

Initial security score: 0.62 (12 vulnerabilities)
Critical: 2 SQL injections, 1 auth bypass
High: 3 XSS, 4 weak crypto
Applied auto-remediation templates
Score improved to 0.89 (4 weeks)
Prevented potential breach affecting 50K users

E-Commerce Platform:

Continuous scanning detected 1 new vulnerability/week
Serena SLA tracking: 95% critical fixes <24h
Security score trending from 0.71 → 0.91 (6 months)
ROI: Prevented 2 data breaches (estimated $2.5M)

Success Criteria

✅ Security score ≥0.85 for production code ✅ Zero critical vulnerabilities ✅ High vulnerabilities fixed within 48h (SLA) ✅ All suggested fixes tested and passing ✅ Serena trending shows improvement or stability ✅ No OWASP Top 10 patterns in code reviews