This is a comprehensive SecOps toolkit that scans code for hardcoded secrets, SQL injection, and XSS vulnerabilities, checks dependencies against CVE databases across npm, Python, and Go ecosystems, and verifies compliance with SOC 2, PCI-DSS, HIPAA, and GDPR. You'd reach for this when setting up CI/CD security gates, responding to new CVEs, or preparing for compliance audits. The three Python scripts cover the fundamentals well, and the incident response workflow is practical. The compliance checker is more of a starting point than a comprehensive audit tool, but it catches the obvious gaps. Exit codes are sensible for pipeline integration, and the JSON output makes it easy to pipe results into other systems.
npx skills add https://github.com/borghei/claude-skills --skill senior-secops