⚡ skillsplayground

🛡️ Scan Code

This skill performs a targeted SAST code analysis to identify security flaws and OWASP risks across a codebase, guiding efficient vulnerability scans.

Security ghostsecurity securitycode-reviewscriptingai
QUICK INSTALL
npx playbooks add skill ghostsecurity/skills --skill scan-code

About Scan Code

Scan Code is a free security skill that configures AI coding agents to this skill performs a targeted sast code analysis to identify security flaws and owasp risks across a codebase, guiding efficient vulnerability scans.

Its 22-word system prompt specializes your agent in security with structured methodology and proven output formats. Install with one command to activate immediately.

Use Cases

  • Auditing code for OWASP Top 10 vulnerabilities
  • Implementing authentication and authorization patterns
  • Reviewing API security, rate limiting, and input validation
  • Hardening infrastructure and dependency security

Example Prompts

Get started Help me use the Scan Code skill effectively.

System Prompt (22 words)

This skill performs a targeted SAST code analysis to identify security flaws and OWASP risks across a codebase, guiding efficient vulnerability scans.

Frequently Asked Questions

What is Scan Code?

Scan Code is a free security skill for AI coding agents. This skill performs a targeted SAST code analysis to identify security flaws and OWASP risks across a codebase, guiding efficient vulnerability scans.. It provides a specialized system prompt that configures your agent with security expertise.

How do I use Scan Code with Claude Code?

Run npx playbooks add skill ghostsecurity/skills --skill scan-code in your terminal to install Scan Code into your Claude Code session. It works immediately after installation.

Which AI coding agents work with Scan Code?

Scan Code is compatible with Claude Code, Cursor, GitHub Copilot, Windsurf, OpenClaw, Cline, and any AI agent that supports custom system prompts or .cursorrules files.

Is Scan Code free to use?

Yes, Scan Code is completely free and open source. The full source is available on GitHub at https://github.com/ghostsecurity/skills/tree/main/plugins/ghost/skills/scan-code. You only need a subscription to the AI agent you use it with.

Try in Playground View on GitHub
DETAILS
CategorySecurity
Authorghostsecurity/skills
Installs
Prompt sizeCompact (22 words)
LicenseOpen source
COMPATIBLE AGENTS
Claude CodeInstall via CLI
CursorAdd to .cursorrules
CopilotAdd to .github/copilot-instructions.md
WindsurfAdd to .windsurfrules
🦞OpenClawAdd as SKILL.md
ClineAdd to custom instructions
TAGS
securitycode-reviewscriptingai
SEE ALSO
Best Claude Code Skills More Security Skills Browse GitHub Skills
EMBED BADGE
Listed on Skills Playground
[![Listed on Skills Playground](https://skillsplayground.com/badges/plaque/ghostsecurity-skills-scan-code.svg)](https://skillsplayground.com/skills/ghostsecurity-skills-scan-code/)
Skills Playground installs
[![Skills Playground](https://skillsplayground.com/badges/installs/ghostsecurity-skills-scan-code.svg)](https://skillsplayground.com/skills/ghostsecurity-skills-scan-code/)
All badge options →
SHARE
Share on X

Related Skills

🛡️ Security Auditor
Find vulnerabilities, audit dependencies, and harden your application security
Security
🛡️ Supabase Postgres Best Practices
This skill helps optimize Postgres queries, schemas, and configs with Supabase best practices to boost performance and security.
Security4.4k
🛡️ Audit Website
Audit websites for SEO, performance, security, technical, content, and 15 other issue cateories with 150+ rules using the squirrelscan CLI. Returns LLM-optimized reports with health scores, broken links, meta tag analysis, and actionable recommendations. Use to discover and asses website or webapp i
Security4.1k
🛡️ Create Auth
This skill guides you to add robust authentication in TypeScript/JavaScript apps using Better Auth across frontend, backend, and migrations.
Security1.6k

Get the best new skills
in your inbox

Weekly roundup of top Claude Code skills, MCP servers, and AI coding tips.