Bandit is a tool designed to find common security issues in Python code.
$ npx skills add PyCQA/banditAlternatives
Compare similar skills by workflow fit, trust score, quality, GitHub adoption, maintenance, and install readiness.
Current skill
SAST and DAST Scan Supported with 400 plus rules available for secrets and allow you add your own wordlist as well. lightweight source code scanner and for URL that detects hardcoded secrets like API keys, credentials, and sensitive information across files and folders.
Bandit is a tool designed to find common security issues in Python code.
$ npx skills add PyCQA/banditWPScan WordPress security scanner. Written for security professionals and blog maintainers to test the security of their WordPress websites. Contact us via contact@wpscan.com
$ npx skills add wpscanteam/wpscanThe recursive internet scanner for hackers. ๐งก
$ npx skills add blacklanternsecurity/bbotVulnerability scanner written in Go which uses the data provided by https://osv.dev
$ npx skills add google/osv-scannerYour personal intelligence agent. Watches the world from multiple data sources and pings you when something changes.
$ npx skills add calesthio/CrucixUnified Policy as Code
$ npx skills add kyverno/kyverno๐ต๏ธโโ๏ธ Collect a dossier on a person by username from 3000+ sites
$ npx skills add soxoj/maigretDownload pictures (or videos) along with their captions and other metadata from Instagram.
$ npx skills add instaloader/instaloaderOpen-source intelligence for the global theater. Track everything from the corporate/private jets of the wealthy, and spy satellites, to seismic events in one unified interface. Hook an AI agent up to have it parse through data and find previously unseen correlations. The knowledge is available to all but rarely aggregated in the open, until now.
$ npx skills add BigBodyCobain/ShadowbrokerNuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the internet. It helps you find vulnerabilities in your applications, APIs, networks, DNS, and cloud configurations.
$ npx skills add projectdiscovery/nucleiThe ZAP by Checkmarx Core project
$ npx skills add zaproxy/zaproxyLynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
$ npx skills add CISOfy/lynisAgent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices
$ npx skills add future-architect/vulsWazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.
$ npx skills add wazuh/wazuhOpen Policy Agent (OPA) is an open source, general-purpose policy engine.
$ npx skills add open-policy-agent/opaInfisical is the open-source platform for secrets, certificates, and privileged access management.
$ npx skills add Infisical/infisicalHow to choose
Use an alternative when it has a clearer install path, higher trust score, fresher maintenance, or better platform fit for your current agent stack. Keep Scan4secrets if it already passes your workflow test and repository review.
Next step
Open the compare page, test the install commands in a sandbox, and check each repository before using a skill in production.