sast-scanning
CommunityFind code vulnerabilities early.
Software Engineering#code analysis#sast#security scanning#vulnerability detection#codeql#sonarqube#semgrep
AuthorBagelHole
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill helps identify security vulnerabilities directly within your source code before deployment, reducing the risk of security breaches and compliance failures.
Core Features & Use Cases
- Automated Code Analysis: Integrates with popular SAST tools like Semgrep, CodeQL, and SonarQube to scan code.
- Vulnerability Detection: Identifies common security flaws such as SQL injection, hardcoded secrets, and insecure configurations.
- Use Case: Integrate this skill into your CI/CD pipeline to automatically scan all new code changes for security issues, preventing vulnerable code from reaching production.
Quick Start
Run Semgrep with default security audit rules against the current directory.
Dependency Matrix
Required Modules
None requiredComponents
scriptsreferences
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: sast-scanning Download link: https://github.com/BagelHole/DevOps-Security-Agent-Skills/archive/main.zip#sast-scanning Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.