ghost-scan-secrets
AI-powered secrets and credentials scanner. Detects hardcoded API keys, passwords, and sensitive data in your codebase with contextual analysis to reduce false positives.
Discover reusable agent skills, browse implementation details, and find the right skill for your workflow.
83 skills found
AI-powered secrets and credentials scanner. Detects hardcoded API keys, passwords, and sensitive data in your codebase with contextual analysis to reduce false positives.
Audit AI skills for security vulnerabilities including prompt injection, hidden instructions, tool misuse, and data exfiltration risks.
Automated security auditing for Flutter applications based on OWASP Mobile Top 10 (2024). Perform vulnerability scans for hardcoded secrets, insecure storage, dependency risks, and network configuration issues.
Automated detection of IDOR vulnerabilities using a three-phase subagent workflow to verify authorization and ownership checks on sensitive endpoints.
Expert Swift code review for macOS/iOS. Detects memory leaks, threading bugs, concurrency issues, and accessibility gaps using parallel analysis agents.
Parses and processes SARIF files from static analysis tools. Enables aggregation, deduplication, filtering, and CI/CD integration of scan results.
AI-powered Technical SEO auditor that runs Lighthouse/PageSpeed tests and automatically applies code-level fixes for performance, accessibility, and structured data.
Extracts Supabase anonymous API keys from client-side source code to facilitate RLS testing and security auditing.
Audit and validate Claude Code plugins for structural integrity, manifest compliance, and best practice adherence to ensure reliable agent and skill performance.
Automated security scanning for n8n workflows: detects credential exposure, validates OAuth flows, tests API key management, and checks data sanitization.
Generate Software Bill of Materials (SBOM) for container images and filesystems using Syft. Supports 28+ ecosystems, multiple formats like CycloneDX and SPDX, and integration into CI/CD for supply chain security.
Analyze business contracts for risks, gaps, and unfavorable terms. Generate structured risk reports for NDAs, MSAs, SaaS agreements, and SOWs with actionable redline recommendations.