From asi
Parses, analyzes, and processes SARIF files from security scans. Aggregates findings from multiple tools, deduplicates alerts, extracts vulnerabilities, and integrates into CI/CD pipelines.
npx claudepluginhub plurigrid/asi --plugin asiThis skill uses the workspace's default tool permissions.
**Trit**: -1 (MINUS)
Parses SARIF files from static analysis tools like CodeQL and Semgrep. Filters, deduplicates, aggregates findings, converts formats, and integrates with CI/CD pipelines.
Scans code for vulnerabilities, bugs, and code smells using Semgrep and CodeQL. Run before releases, large PRs, or when suspecting recurrent bug classes.
Runs Semgrep for static analysis, security scanning, and pattern matching. Scans code, writes custom YAML rules, detects vulnerabilities, uses taint mode, sets up CI/CD pipelines.
Share bugs, ideas, or general feedback.
Trit: -1 (MINUS) Category: static-analysis Author: Trail of Bits Source: trailofbits/skills License: AGPL-3.0
Parse, analyze, and process SARIF (Static Analysis Results Interchange Format) files. Use when reading security scan results, aggregating findings from multiple tools, deduplicating alerts, extracting specific vulnerabilities, or integrating SARIF data into CI/CD pipelines.
This is a Trail of Bits security skill. Refer to the original repository for detailed usage guidelines and examples.
See: https://github.com/trailofbits/skills