Claude Code Plugins

Community-maintained marketplace

Feedback

audit-security

@Git-Fg/thecattoolkit
0
0

|

Install Skill

1Download skill
2Enable skills in Claude

Open claude.ai/settings/capabilities and find the "Skills" section

3Upload to Claude

Click "Upload skill" and select the downloaded ZIP file

Note: Please verify skill by going through its instructions before using it.

SKILL.md

name audit-security
description USE when verifying security of code changes or auditing file safety. Automatically scans for secrets (API keys, tokens) and prevents modification of protected files (locks, credentials).
allowed-tools Read, Grep

Security Audit Standards

Capabilities

This skill provides automatic security verification via hooks:

1. Secret Detection

Trigger: PreToolUse (Edit/Write) Action: Scans content for:

  • API Keys (OpenAI, Anthropic, AWS)
  • Bearer Tokens
  • Private Keys
  • GitHub Tokens

2. File Protection

Trigger: PreToolUse (Edit/Write) Action: Warns on modification of:

  • Lock files (package-lock.json, poetry.lock)
  • Secrets directories (.env, credentials/)
  • Git internals

Usage

This skill functions passively via the runtime hook system. You do not need to invoke it manually.

Configuration

Patterns are defined in:

  • plugins/verify/hooks/scripts/security-check.py
  • plugins/verify/hooks/scripts/protect-files.py