Summary
Scans your codebase for security vulnerabilities using pattern matching across SQL injection, XSS, path traversal, hardcoded secrets, and other OWASP risks. Automatically runs on new modules, security-related changes, and post-refactor. Critical and high severity findings (injection flaws, exposed credentials) block delivery, while medium and low can be accepted with documented rationale in DESIGN.md. The implementation is surprisingly practical about false positives, offering exclude patterns and context-based severity downgrading. For example, MD5 for hash bucketing or non-crypto random for jitter get a pass. Ships with a Node script that outputs human or JSON formats for CI integration. Chains nicely with other skills like securing-systems for remediation guidance.
Install to Claude Code
npx -y skills add telagod/code-abyss --skill analyzing-security --agent claude-codeInstalls into .claude/skills of the current project.
Connect Claude to +800M contacts, +150M companies. Find & Enrich leads in chat.
Try For Free →
Agent, run crypto. Access onchain data & trade routes via 1inch.
Install now →
On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.
Start earning →
An agent that runs the SEO playbooks that move rankings and ships PRs you control.
Get founding access →Files
SKILL.md
Select a file.
Featured
Connect Claude to +800M contacts, +150M companies. Find & Enrich leads in chat.
Try For Free →Agent, run crypto. Access onchain data & trade routes via 1inch.
Install now →On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.
Start earning →An agent that runs the SEO playbooks that move rankings and ships PRs you control.
Get founding access →
