detect-dev
CommunityOpenSSF-backed engineering audits with SARIF.
Authorparhumm
Version1.0.0
Installs0
System Documentation
What problem does it solve?
Engineering teams need objective, machine-parseable assessments of repository health and code quality. detect-dev provides SARIF-backed evidence and OpenSSF-style scoring to guide remediation.
Core Features & Use Cases
- Manifest analysis across package managers (npm, go.mod, pyproject, etc.)
- Docker, container, and CI/CD configuration scanning with evidence generation
- Integration detection and SARIF-formatted findings
- OpenSSF scoring with four confidence levels and actionable remediation guidance
- Automated reporting to a standardized outputs directory for automation
Quick Start
Run the detect-dev skill on your repository to generate SARIF-backed findings and an overall health score.
Dependency Matrix
Required Modules
None requiredComponents
Standard package💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: detect-dev Download link: https://github.com/parhumm/jaan-to/archive/main.zip#detect-dev Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.