pentest-sast
CommunityDetects code risks, dependencies, and secrets.
Software Engineering#sast#supply-chain#semgrep#security-audit#pentest#secret-scanning#dependency-scanning
AuthorXerrion
Version1.0.0
Installs0
System Documentation
What problem does it solve?
Static security testing for codebases to identify vulnerable dependencies, secrets, and compromised supply chains during pentest engagements.
Core Features & Use Cases
- Language-aware scanners for JavaScript, Python, Go, Rust, Java/JVM, Ruby, PHP.
- Secret scanning and credential discovery integrating with existing workflows.
- Supply-chain risk checks and remediation guidance.
Quick Start
Run a full repository analysis to surface SAST findings and generate a prioritized remediation plan
Dependency Matrix
Required Modules
None requiredComponents
Standard package💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: pentest-sast Download link: https://github.com/Xerrion/opencode/archive/main.zip#pentest-sast Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.