Reduce risk

Scan a project for security risks

Find skills for security scanning, dependency review, secret detection, audit notes, and policy-aware automation.

Resolve via APIOpen scenarioText version

Agent prompt

Find the best skill for scanning a code project for security risks and producing prioritized remediation steps.

12
Matched skills
8.1K
Top stars

Best first install

Bandit

Bandit is a tool designed to find common security issues in Python code.

8.1K stars69 qualitysecurity
Open skill pageInstall handoff

Install with one command

$ npx skills add PyCQA/bandit

Install targets

Install this skill in your agent workflow

Copy the registry command or an agent-specific install prompt for Codex, Claude Code, and Cursor.

skill install

OpenAgentSkill CLI

Use the registry command when your workflow supports the OpenAgentSkill installer.

$ npx skills add PyCQA/bandit

Decision guide

Use and avoid conditions

Success criteria

  • Prioritizes findings
  • Explains remediation
  • Separates warnings from confirmed issues

Do not use when

  • The scan touches production secrets
  • The result is used as a formal compliance audit
  • Repository access is incomplete

Alternatives

Compare before installing

Compare top 4

Terraform Skill

560

Terraform & OpenTofu Skill for AI Agents - testing, modules, CI/CD, and production patterns

2.0K starsagent-skills

Lynis

544

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

16K starssecurity

Vuls

543

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

12K starssecurity

Nuclei

535

Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the internet. It helps you find vulnerabilities in your applications, APIs, networks, DNS, and cloud configurations.

29K starssecurity

Wpscan

532

WPScan WordPress security scanner. Written for security professionals and blog maintainers to test the security of their WordPress websites. Contact us via contact@wpscan.com

9.6K starssecurity

Scanners Box

515

A powerful and open-source toolkit for hackers and security automation - 安全行业从业者自研开源扫描器合辑

8.9K starsdevelopment