Star0

Security agent skills

Security and compliance skills for AI agents.

Compare skills for vulnerability scanning, secret detection, dependency review, policy checks, audit notes, and security-aware workflows.

Built for teams looking for AI agent skills that can help scan projects, summarize risks, and prepare reviewable remediation steps.

Resolve via agent APIBrowse matching skills

Matched

16

Stars

219K

Workflow

Scan

Output

Risk notes

Agent jobs

Start from a real workflow, not a keyword.

These pages are built for high-intent search and for agents that need a structured shortlist before installing third-party code.

01

Scan repositories for common risky patterns

02

Summarize dependency and secret scanning results

03

Prepare remediation steps for maintainers

04

Add policy-aware checks before installing third-party skills

Task routes

Task pages agents can call.

View all tasks

Security scan

Scan a project for security risks

Find risky dependencies, exposed secrets, unsafe patterns, and practical remediation steps.

Open task

Review PRs

Review pull requests

Help a coding agent inspect diffs, summarize risk, and suggest targeted review comments.

Open task

Ranked shortlist

High-signal skills to inspect first.

Open best list

#01

Lynis

16K stars

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

100

Quality

100

Trust

70

Fit

securityMay 11, 2026 pushGPL-3.0
$ npx skills add CISOfy/lynis

#02

Vuls

12K stars

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

100

Quality

100

Trust

72

Fit

securityJun 12, 2026 pushGPL-3.0
$ npx skills add future-architect/vuls

#03

Brakeman

7.2K stars

A static analysis security vulnerability scanner for Ruby on Rails applications

100

Quality

100

Trust

69

Fit

developmentJun 12, 2026 pushUnknown
$ npx skills add presidentbeef/brakeman

#04

Nuclei

29K stars

Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the internet. It helps you find vulnerabilities in your applications, APIs, networks, DNS, and cloud configurations.

100

Quality

100

Trust

74

Fit

securityJun 13, 2026 pushMIT
$ npx skills add projectdiscovery/nuclei

#05

Grype

12K stars

A vulnerability scanner for container images and filesystems

100

Quality

100

Trust

72

Fit

developmentJun 12, 2026 pushApache-2.0
$ npx skills add anchore/grype

#06

Opa

12K stars

Open Policy Agent (OPA) is an open source, general-purpose policy engine.

100

Quality

100

Trust

72

Fit

securityJun 12, 2026 pushApache-2.0
$ npx skills add open-policy-agent/opa

Evaluation

How to choose the right skill.

Distinguishes confirmed issues from warnings

Documents scanner scope and false-positive behavior

Does not expose secrets in output

Encourages review before high-stakes compliance decisions

Questions

Can these replace a formal security audit?

No. They help agents collect signals and summarize risks, but formal audits need qualified human review and organization-specific controls.

How should agents report security findings?

They should prioritize confirmed risks, avoid leaking sensitive data, and include clear remediation steps with confidence levels.

Best security skillsSecurity scan taskAuditsCoding agent skills