Covers the basics of automated security scanning with Trivy, Snyk, and npm audit across dependencies, containers, and code. You get working examples for local scans, a GitHub Actions workflow that fails on high/critical findings, and quick snippets for Python's Bandit and Safety tools. The CI/CD integration is the real value here since it shows how to actually gate deployments on security issues. Missing some depth on handling false positives and vulnerability triage, but it's a solid starting point if you need to add security scanning to a pipeline and don't want to figure out all the CLI flags yourself.
npx skills add https://github.com/secondsky/claude-skills --skill vulnerability-scanning