Unified Policy as Code
$ npx skills add kyverno/kyvernoAlternatives
Compare similar skills by workflow fit, trust score, quality, GitHub adoption, maintenance, and install readiness.
Current skill
StackGuardian Policy Framework
Unified Policy as Code
$ npx skills add kyverno/kyvernoBandit is a tool designed to find common security issues in Python code.
$ npx skills add PyCQA/banditWazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.
$ npx skills add wazuh/wazuhOpen Policy Agent (OPA) is an open source, general-purpose policy engine.
$ npx skills add open-policy-agent/opaNuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the internet. It helps you find vulnerabilities in your applications, APIs, networks, DNS, and cloud configurations.
$ npx skills add projectdiscovery/nucleiThe ZAP by Checkmarx Core project
$ npx skills add zaproxy/zaproxyLynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
$ npx skills add CISOfy/lynisVulnerability scanner written in Go which uses the data provided by https://osv.dev
$ npx skills add google/osv-scannerYour personal intelligence agent. Watches the world from multiple data sources and pings you when something changes.
$ npx skills add calesthio/CrucixWPScan WordPress security scanner. Written for security professionals and blog maintainers to test the security of their WordPress websites. Contact us via contact@wpscan.com
$ npx skills add wpscanteam/wpscan๐ต๏ธโโ๏ธ Collect a dossier on a person by username from 3000+ sites
$ npx skills add soxoj/maigretDownload pictures (or videos) along with their captions and other metadata from Instagram.
$ npx skills add instaloader/instaloaderOpen-source intelligence for the global theater. Track everything from the corporate/private jets of the wealthy, and spy satellites, to seismic events in one unified interface. Hook an AI agent up to have it parse through data and find previously unseen correlations. The knowledge is available to all but rarely aggregated in the open, until now.
$ npx skills add BigBodyCobain/ShadowbrokerThe recursive internet scanner for hackers. ๐งก
$ npx skills add blacklanternsecurity/bbotPrevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.
$ npx skills add bridgecrewio/checkovAgent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices
$ npx skills add future-architect/vulsHow to choose
Use an alternative when it has a clearer install path, higher trust score, fresher maintenance, or better platform fit for your current agent stack. Keep Tirith if it already passes your workflow test and repository review.
Next step
Open the compare page, test the install commands in a sandbox, and check each repository before using a skill in production.