{"slug":"security-code-scan-security-code-scan","name":"Security Code Scan","description":"Vulnerability Patterns Detector for C# and VB.NET","tagline":"Vulnerability Patterns Detector for C# and VB.NET","category":"development","tags":["static-analysis","code-quality","analysis","analyzer","code","dotnet","owasp","roslyn","scan","scanner"],"author":{"name":"security-code-scan","verified":false,"url":"https://github.com/security-code-scan"},"attribution":{"status":"community_indexed","statusLabel":"Community indexed","shortLabel":"COMMUNITY INDEXED","sourceLabel":"GitHub star discovery","sourceDetail":"security-code-scan/security-code-scan","creatorName":"security-code-scan","creatorUrl":"https://github.com/security-code-scan","sourceUrl":"https://github.com/security-code-scan/security-code-scan","indexedBy":"OpenAgentSkill community index","claimUrl":"https://www.openagentskill.com/skills/security-code-scan-security-code-scan#claim-this-skill","claimCta":"Claim this skill","trustNote":"This listing was indexed from public sources and is not marked official until a maintainer claim is approved.","publicNote":"Attribution links to the public repository or creator profile. Creators can claim the listing to update ownership signals."},"stats":{"stars":975,"forks":160,"downloads":0,"rating":0,"review_count":0,"quality_score":39.63},"quality":{"score":56,"tier":"promising","label":"Promising","summary":"Useful candidate, but compare it with alternatives before adopting.","signals":[{"label":"GitHub stars","value":"975","tone":"positive"},{"label":"Freshness","value":"2y ago","tone":"warning"},{"label":"Install ready","value":"Yes","tone":"positive"},{"label":"License","value":"LGPL-3.0","tone":"neutral"}],"warnings":["Repository looks stale"]},"trust":{"version":"trust-score-v2","score":75,"tier":"strong","label":"Strong shortlist","summary":"Good trust signals with a few areas worth checking before rollout.","recommendedAction":"Test in a sandbox workflow and compare its install path with close alternatives.","dimensions":[{"id":"github_adoption","label":"GitHub adoption","score":76,"weight":0.16,"status":"info","detail":"975 GitHub stars"},{"id":"maintenance","label":"Recent maintenance","score":38,"weight":0.18,"status":"fail","detail":"2y since push"},{"id":"license","label":"License clarity","score":86,"weight":0.1,"status":"pass","detail":"LGPL-3.0"},{"id":"documentation","label":"README/SKILL.md completeness","score":74,"weight":0.16,"status":"info","detail":"Public metadata needs stronger README/SKILL.md context"},{"id":"dependency_risk","label":"Dependency risk","score":90,"weight":0.14,"status":"pass","detail":"no major dependency risk hints in public metadata"},{"id":"installability","label":"Install availability","score":92,"weight":0.14,"status":"pass","detail":"npx skills add security-code-scan/security-code-scan"},{"id":"repository","label":"Repository evidence","score":86,"weight":0.06,"status":"pass","detail":"https://github.com/security-code-scan/security-code-scan"},{"id":"review_status","label":"Review status","score":88,"weight":0.06,"status":"pass","detail":"AI review data available"}],"checks":[{"status":"info","label":"GitHub adoption","detail":"975 GitHub stars"},{"status":"fail","label":"Recent maintenance","detail":"2y since push"},{"status":"pass","label":"License clarity","detail":"LGPL-3.0"},{"status":"info","label":"README/SKILL.md completeness","detail":"Public metadata needs stronger README/SKILL.md context"},{"status":"pass","label":"Dependency risk","detail":"no major dependency risk hints in public metadata"},{"status":"pass","label":"Install availability","detail":"npx skills add security-code-scan/security-code-scan"},{"status":"pass","label":"Repository evidence","detail":"https://github.com/security-code-scan/security-code-scan"},{"status":"pass","label":"Review status","detail":"AI review data available"},{"status":"warn","label":"Ownership","detail":"No approved owner claim yet"},{"status":"info","label":"OpenAgentSkill usage","detail":"No local usage activity yet"}],"strengths":["AI review approved","Install path is available","Repository evidence is available","Meaningful GitHub adoption signal"],"warnings":["Repository looks stale","Quality score needs review","Recent maintenance: 2y since push"],"evidence":{"stars":"975 GitHub stars","lastPushed":"2y since push","license":"LGPL-3.0","repository":"https://github.com/security-code-scan/security-code-scan","install":"npx skills add security-code-scan/security-code-scan","documentation":"Usable metadata, review docs"},"installReadiness":{"ready":true,"command":"npx skills add security-code-scan/security-code-scan","policy":"human_review_before_install","label":"Human review before install","notes":["Install path is available","Repository evidence is available","License is declared","2y since push"]},"agentCompatibility":["C#","Static Analysis","Codex","Claude Code","Cursor","OpenAgentSkill CLI"],"riskSummary":{"level":"medium","label":"Review before production","notes":["Repository looks stale","Quality score needs review","Recent maintenance: 2y since push"]}},"safety":{"score":54,"level":"avoid_auto_install","label":"Avoid automatic install","safety_tier":{"tier":"experimental","label":"Experimental","badge":"EXPERIMENTAL","summary":"Sparse or mixed signals. Useful for discovery, but not for autonomous installation.","recommended_action":"Test manually in an isolated workspace and compare against safer alternatives.","auto_install_policy":"review","reasons":["Repository appears stale","54/100 agent safety score"]},"auto_install_allowed":false,"human_review_required":true,"blocked":false,"audit_risk":"needs_review","permission_hints":[{"id":"network","label":"Network access","reason":"Skill likely fetches remote pages, APIs, repositories, or external services.","severity":"medium"},{"id":"filesystem","label":"Filesystem access","reason":"Skill may read or write project files, documents, generated artifacts, or local workspace state.","severity":"medium"}],"policy_warnings":["Repository appears stale"],"constraints_applied":{"max_risk":"medium","needs_install_command":true,"min_stars":0}},"safety_gate":{"tier":"experimental","label":"Experimental","badge":"EXPERIMENTAL","auto_install_policy":"review","auto_install_allowed":false,"human_review_required":true,"blocked":false,"recommended_action":"Test manually in an isolated workspace and compare against safer alternatives.","reasons":["Repository appears stale","54/100 agent safety score"]},"supply_profile":{"track":{"slug":"coding","label":"Coding and developer agents","shortLabel":"Coding","description":"Code review, repo analysis, testing, CI, GitHub, DevOps, and developer workflow skills."},"scenario":{"label":"Coding agents","description":"I need a coding agent that can understand a repository, edit code, and review pull requests.","useCases":[{"slug":"coding-agents","title":"Coding agents"},{"slug":"security-compliance","title":"Security and compliance"},{"slug":"rag-knowledge","title":"RAG and knowledge"}]},"applicableAgents":["Claude Code","CLI","Codex","Cursor","C#"],"install":{"ready":true,"command":"npx skills add security-code-scan/security-code-scan","primaryTarget":"CLI","targetCount":4},"githubQuality":{"stars":975,"starsLabel":"975","forks":160,"license":"LGPL-3.0","qualityScore":56,"trustScore":75,"auditScore":70},"maintenance":{"status":"stale","label":"2y since push","daysSincePush":707,"lastPushedAt":"2024-07-08T14:28:26+00:00"},"risk":{"level":"needs_review","label":"Needs review","requiresReview":true,"notes":["Repository appears stale","Repository looks stale","Quality score needs review","Recent maintenance: 2y since push","Needs review"]},"coverageTags":["Coding","Coding agents","development","static-analysis","code-quality","analysis","analyzer","code"]},"audit":{"audit_score":70,"risk_level":"needs_review","risk_label":"Needs review","warnings":["Repository appears stale","Repository looks stale","Quality score needs review","Recent maintenance: 2y since push"]},"decision":{"readiness_score":58,"readiness_label":"Prototype first","headline":"Fallback candidate for Coding agents","role":"Fallback candidate","primary_fit":"Coding agents","best_for":["Coding agents workflows","Claude Code teams","teams that value GitHub adoption signals"],"risks":["Repository looks stale","No OpenAgentSkill engagement data yet"],"next_steps":["Install it in a sandbox agent and run one Coding agents task end to end.","Compare output quality, latency, and failure behavior against at least one alternative.","Promote it into production only after reviewing repository permissions, license, and maintenance signals."]},"platforms":["C#","Static Analysis","Claude Code"],"use_cases":[{"slug":"coding-agents","title":"Coding agents","url":"https://www.openagentskill.com/use-cases/coding-agents"},{"slug":"security-compliance","title":"Security and compliance","url":"https://www.openagentskill.com/use-cases/security-compliance"},{"slug":"rag-knowledge","title":"RAG and knowledge","url":"https://www.openagentskill.com/use-cases/rag-knowledge"},{"slug":"workflow-automation","title":"Workflow automation","url":"https://www.openagentskill.com/use-cases/workflow-automation"}],"install":"npx skills add security-code-scan/security-code-scan","install_targets":[{"id":"openagentskill-cli","label":"CLI","title":"OpenAgentSkill CLI","kind":"command","value":"npx skills add security-code-scan/security-code-scan","description":"Use the registry command when your workflow supports the OpenAgentSkill installer.","copyLabel":"Copy command"},{"id":"codex","label":"Codex","title":"Codex install prompt","kind":"agent-prompt","value":"Install the \"Security Code Scan\" agent skill from https://github.com/security-code-scan/security-code-scan. Read its SKILL.md or equivalent instructions first, install only the files needed for this workspace, and summarize any required setup before using it. Skill purpose: Vulnerability Patterns Detector for C# and VB.NET","description":"Give Codex a repo-aware install prompt when the skill is not available through a local CLI.","copyLabel":"Copy prompt"},{"id":"claude-code","label":"Claude Code","title":"Claude Code skill prompt","kind":"agent-prompt","value":"Add \"Security Code Scan\" as a Claude Code skill from https://github.com/security-code-scan/security-code-scan. Inspect the skill instructions, place the reusable skill files in the appropriate local skills location for this project, and report the activation steps. Skill purpose: Vulnerability Patterns Detector for C# and VB.NET","description":"Use this prompt to ask Claude Code to add the skill and explain the local activation steps.","copyLabel":"Copy prompt"},{"id":"cursor","label":"Cursor","title":"Cursor rule prompt","kind":"agent-prompt","value":"Turn \"Security Code Scan\" from https://github.com/security-code-scan/security-code-scan into a reusable Cursor project rule or agent instruction. Preserve the core workflow, adapt paths to this repo, and keep the rule scoped to tasks where it is relevant. Skill purpose: Vulnerability Patterns Detector for C# and VB.NET","description":"Use this when installing as Cursor project rules or reusable agent instructions.","copyLabel":"Copy prompt"}],"repository":"https://github.com/security-code-scan/security-code-scan","github_repo":"security-code-scan/security-code-scan","version":"1.0.0","license":"LGPL-3.0","updated_at":"2026-06-14T16:01:14.365464+00:00","canonical_key":"security-code-scan/security-code-scan","recommendation_reasons":["Useful GitHub adoption: 975 stars","Install handoff is available","Repository freshness signal is available"],"urls":{"web":"https://www.openagentskill.com/skills/security-code-scan-security-code-scan","api":"https://www.openagentskill.com/api/agent/skills/security-code-scan-security-code-scan","install_api":"https://www.openagentskill.com/api/skills/security-code-scan-security-code-scan/install","audit":"https://www.openagentskill.com/skills/security-code-scan-security-code-scan/audit","repository":"https://github.com/security-code-scan/security-code-scan"},"meta":{"endpoint":"/api/registry/manifest/{slug}","canonical_agent_endpoint":"/api/agent/skills/security-code-scan-security-code-scan","agent_friendly":true,"api_version":"1.0","generated_at":"2026-06-16T13:11:01.522Z"}}