playbooks

home / skills / affaan-m / everything-claude-code / security-scan

security-scan skill

/skills/security-scan

This skill scans Claude Code configurations for security issues, misconfigurations, and injection risks using AgentShield to harden projects before deployment.

npx playbooks add skill affaan-m/everything-claude-code --skill security-scan

Review the files below or copy the command above to add this skill to your agents.

Files (1)
SKILL.md
4.4 KB
---
name: security-scan
description: Scan your Claude Code configuration (.claude/ directory) for security vulnerabilities, misconfigurations, and injection risks using AgentShield. Checks CLAUDE.md, settings.json, MCP servers, hooks, and agent definitions.
---

# Security Scan Skill

Audit your Claude Code configuration for security issues using [AgentShield](https://github.com/affaan-m/agentshield).

## When to Activate

- Setting up a new Claude Code project
- After modifying `.claude/settings.json`, `CLAUDE.md`, or MCP configs
- Before committing configuration changes
- When onboarding to a new repository with existing Claude Code configs
- Periodic security hygiene checks

## What It Scans

| File | Checks |
|------|--------|
| `CLAUDE.md` | Hardcoded secrets, auto-run instructions, prompt injection patterns |
| `settings.json` | Overly permissive allow lists, missing deny lists, dangerous bypass flags |
| `mcp.json` | Risky MCP servers, hardcoded env secrets, npx supply chain risks |
| `hooks/` | Command injection via interpolation, data exfiltration, silent error suppression |
| `agents/*.md` | Unrestricted tool access, prompt injection surface, missing model specs |

## Prerequisites

AgentShield must be installed. Check and install if needed:

```bash
# Check if installed
npx ecc-agentshield --version

# Install globally (recommended)
npm install -g ecc-agentshield

# Or run directly via npx (no install needed)
npx ecc-agentshield scan .
```

## Usage

### Basic Scan

Run against the current project's `.claude/` directory:

```bash
# Scan current project
npx ecc-agentshield scan

# Scan a specific path
npx ecc-agentshield scan --path /path/to/.claude

# Scan with minimum severity filter
npx ecc-agentshield scan --min-severity medium
```

### Output Formats

```bash
# Terminal output (default) — colored report with grade
npx ecc-agentshield scan

# JSON — for CI/CD integration
npx ecc-agentshield scan --format json

# Markdown — for documentation
npx ecc-agentshield scan --format markdown

# HTML — self-contained dark-theme report
npx ecc-agentshield scan --format html > security-report.html
```

### Auto-Fix

Apply safe fixes automatically (only fixes marked as auto-fixable):

```bash
npx ecc-agentshield scan --fix
```

This will:
- Replace hardcoded secrets with environment variable references
- Tighten wildcard permissions to scoped alternatives
- Never modify manual-only suggestions

### Opus 4.6 Deep Analysis

Run the adversarial three-agent pipeline for deeper analysis:

```bash
# Requires ANTHROPIC_API_KEY
export ANTHROPIC_API_KEY=your-key
npx ecc-agentshield scan --opus --stream
```

This runs:
1. **Attacker (Red Team)** — finds attack vectors
2. **Defender (Blue Team)** — recommends hardening
3. **Auditor (Final Verdict)** — synthesizes both perspectives

### Initialize Secure Config

Scaffold a new secure `.claude/` configuration from scratch:

```bash
npx ecc-agentshield init
```

Creates:
- `settings.json` with scoped permissions and deny list
- `CLAUDE.md` with security best practices
- `mcp.json` placeholder

### GitHub Action

Add to your CI pipeline:

```yaml
- uses: affaan-m/agentshield@v1
  with:
    path: '.'
    min-severity: 'medium'
    fail-on-findings: true
```

## Severity Levels

| Grade | Score | Meaning |
|-------|-------|---------|
| A | 90-100 | Secure configuration |
| B | 75-89 | Minor issues |
| C | 60-74 | Needs attention |
| D | 40-59 | Significant risks |
| F | 0-39 | Critical vulnerabilities |

## Interpreting Results

### Critical Findings (fix immediately)
- Hardcoded API keys or tokens in config files
- `Bash(*)` in the allow list (unrestricted shell access)
- Command injection in hooks via `${file}` interpolation
- Shell-running MCP servers

### High Findings (fix before production)
- Auto-run instructions in CLAUDE.md (prompt injection vector)
- Missing deny lists in permissions
- Agents with unnecessary Bash access

### Medium Findings (recommended)
- Silent error suppression in hooks (`2>/dev/null`, `|| true`)
- Missing PreToolUse security hooks
- `npx -y` auto-install in MCP server configs

### Info Findings (awareness)
- Missing descriptions on MCP servers
- Prohibitive instructions correctly flagged as good practice

## Links

- **GitHub**: [github.com/affaan-m/agentshield](https://github.com/affaan-m/agentshield)
- **npm**: [npmjs.com/package/ecc-agentshield](https://www.npmjs.com/package/ecc-agentshield)

Overview

This skill scans a Claude Code configuration (.claude/ directory) for security vulnerabilities, misconfigurations, and injection risks using AgentShield. It targets CLAUDE.md, settings.json, MCP servers, hooks, and agent definitions to produce actionable findings and remediation suggestions. Reports can be emitted to terminal, JSON, Markdown, or HTML for CI and documentation workflows.

How this skill works

The scanner inspects configuration files and directories for patterns that indicate secrets, overly permissive permissions, command injection, and unsafe MCP server definitions. It ranks findings by severity (A–F or numeric score) and can apply safe auto-fixes for trivial issues like replacing hardcoded secrets with env references. An optional adversarial deep analysis runs attacker/defender/auditor agents for a richer threat assessment.

When to use it

  • Before committing changes to .claude/ or pushing configuration updates
  • When onboarding to a repository with existing Claude Code configs
  • After editing CLAUDE.md, settings.json, MCP configs, hooks, or agent definitions
  • As a periodic security hygiene check in CI/CD pipelines
  • When preparing a production deployment that relies on agent tooling

Best practices

  • Run scans locally and in CI with medium severity as a minimum gate
  • Replace hardcoded keys with environment variable references, not inline values
  • Restrict allow lists and add deny lists; avoid wildcard Bash access
  • Inspect and sanitize hook interpolations to prevent command injection
  • Use the auto-fix option only for low-risk, reversible changes and review diffs

Example use cases

  • Scan a new project scaffold to ensure default settings are secure before sharing
  • Block a pull request that introduces hardcoded API keys or npx -y MCP server installs
  • Generate a human-readable HTML or Markdown security report for audits
  • Run the Opus adversarial pipeline to stress-test agent prompts and hooks
  • Auto-fix low-risk issues (secrets -> env refs, tighten wildcard permissions) before merge

FAQ

Do I need to install anything to run the scan?

AgentShield must be available; you can run it via npx or install ecc-agentshield globally with npm for repeated use.

Can the tool automatically fix every finding?

No. It auto-fixes only safe, clearly reversible issues such as replacing hardcoded secrets and tightening simple wildcard permissions; manual review is required for complex suggestions.

How do I use this in CI?

Run the scanner as a CI step and emit JSON or set fail-on-findings for a minimum severity to fail the pipeline when unacceptable issues are found.