This one's built for teams serious about shifting security left in their pipelines. You get opinionated patterns for integrating SAST, SCA, container scanning, and secrets detection directly into CI/CD without killing developer velocity. The TDD approach is refreshing: write failing security tests first, then implement gates that actually catch vulnerabilities. It covers the full stack from Semgrep and Trivy to Kubernetes admission controllers and HashiCorp Vault. The performance patterns alone are worth it, showing you how to do incremental scans and parallel execution so security checks don't become the bottleneck. Use this when you're tired of bolting security on at the end and want automated gates that developers don't route around.
npx skills add https://github.com/martinholovsky/claude-skills-generator --skill devsecops-expert