security-alert-fix

Community

Automate triage and fixing GitHub security alerts

Authorpaulingham
Version1.0.0
Installs0

System Documentation

What problem does it solve?

This skill helps security engineers and developers quickly enumerate open CodeQL and secret-scanning alerts, group them by rule, and apply proper fixes through the pipeline, while ensuring revocation actions are surfaced for secrets.

Core Features & Use Cases

  • Enumerate open alerts from code-scanning, secret-scanning, and dependabot
  • Group alerts by rule and apply fixes via the pipeline
  • Surface secret revocation as a required manual action and avoid re-introducing secrets

Quick Start

Run the security-alert-fix workflow against your repository to enumerate open alerts and apply fixes.

Dependency Matrix

Required Modules

None required

Components

Standard package

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: security-alert-fix
Download link: https://github.com/paulingham/.claude/archive/main.zip#security-alert-fix

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 545,000+ vetted skills library on demand.