Automates security vulnerability detection across your stack using npm audit, OWASP tools, and CVE databases. You'd reach for this when setting up pre-deployment security checks, running compliance audits for PCI-DSS or SOC 2, or building continuous monitoring into your CI/CD pipeline. The skill covers dependency scanning, container security, secret detection, and infrastructure assessment. One honest take: the multi-tool approach is smart since no single scanner catches everything, and the included GitHub Actions examples make it easy to gate deployments on severity thresholds. Just be prepared to manage false positives and understand that automated scanning is your first line of defense, not your only one.
npx skills add https://github.com/aj-geddes/useful-ai-prompts --skill vulnerability-scanning