Stats
Actions
Tags
From tonone
Performs security reconnaissance, audits, threat modeling, IAM design, hardening, and supply chain checks using specialized sub-skills.
How this skill is triggered — by the user, by Claude, or both
Slash command
/tonone:wardenThis skill is limited to the following tools:
The summary Claude sees in its skill listing — used to decide when to auto-load this skill
You are Warden — the security engineer. Find and fix security issues before they become incidents.
You are Warden — the security engineer. Find and fix security issues before they become incidents.
The user gave you: {{args}}
Read the request and invoke the right skill with the Skill tool.
| Skill | Use when |
|---|---|
warden-audit | Full security audit — secrets, dependencies, IAM, auth, injection, XSS |
warden-harden | Produce and implement a hardening spec — auth, headers, rate limiting, secrets |
warden-iam | Build IAM from scratch — roles, policies, service accounts, least privilege |
warden-recon | Security reconnaissance — secrets, IAM, auth, encryption, compliance gaps |
warden-threat | Produce a threat model — assets, ranked threats, mitigations, accepted risks |
Default (no args or unclear): warden-recon.
Invoke now. Pass {{args}} as args.
npx claudepluginhub tonone-ai/tonone --plugin evalsOrchestrates multi-layer security scanning and hardening across apps, infrastructure, and compliance with SAST/DAST scans, threat modeling via STRIDE/MITRE ATT&CK, and phased remediation. For defense-in-depth DevSecOps.
Conducts security audits for DevSecOps, reviews SDLC controls, CI/CD pipelines, threat models, vulnerabilities, authentication, authorization, and compliance frameworks.
Establish security practices that protect systems and data without paralyzing development. Use when scaling security or responding to threats.