Takes the pain out of setting up SAST tools like Semgrep, SonarQube, and CodeQL in your CI/CD pipeline. Generates ready-to-use config files, pre-commit hooks, and GitHub Actions workflows that actually work. Covers custom rule creation for catching organization-specific security anti-patterns, tuning quality gates to reduce false positives, and integrating multiple scanners without breaking your build times. The troubleshooting section alone will save you hours of debugging why your CodeQL database won't build or why Semgrep is flagging every test file. Best when you need to go from zero to automated security scanning without reading documentation for three different tools.
npx skills add https://github.com/wshobson/agents --skill sast-configuration