commit-security-scan
CommunityLLM-powered security scan for code changes.
AuthorIEatCodeDaily
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill analyzes code changes (PRs, commits, or diffs) for security vulnerabilities using large language model reasoning and a formal threat model approach, enabling safer code reviews and pre-merge checks.
Core Features & Use Cases
- LLM-driven threat analysis: Detects vulnerabilities across changed files using a repository threat model and severity thresholds.
- PR, pre-commit, and branch coverage: Suitable for PR reviews, pre-commit checks, and branch comparisons to enforce secure development.
- Prerequisite-driven workflow: Reads and validates the threat model at .factory/threat-model.md and the security config at .factory/security-config.json, auto-generating them if needed.
Quick Start
Run the security scan on the current workspace against changed files; ensure prerequisites exist or are auto-generated, and review the structured findings.
Dependency Matrix
Required Modules
None requiredComponents
Standard package💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: commit-security-scan Download link: https://github.com/IEatCodeDaily/cli-dotfiles/archive/main.zip#commit-security-scan Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.