Skillget

security-skills

workflow
Guvenlik Denetimi
Gecti
Health Gecti
  • License — License: MIT
  • Description — Repository has a description
  • Active repo — Last push 0 days ago
  • Community trust — 36 GitHub stars
Code Gecti
  • Code scan — Scanned 12 files during light audit, no dangerous patterns found
Permissions Gecti
  • Permissions — No dangerous permissions requested
Purpose
This project is a plugin marketplace providing Claude Code skills that automate security operations. Currently, it focuses on creating and managing SOAR workflows for platforms like CrowdStrike Falcon.

Security Assessment
Overall Risk: Low. The tool itself does not contain hardcoded secrets. However, because it is designed to interact with live security platform APIs, it inherently requires making external network requests and handling sensitive API keys. The audit scanned 12 files and found no dangerous code patterns, malicious execution, or requests for unsafe local permissions. The overall risk is low, provided you follow best practices for storing your API keys outside of the codebase.

Quality Assessment
The project appears to be in its early stages but is actively maintained, with its most recent push happening just today. It uses the highly permissive and standard MIT license, making it safe for integration into almost any project. While the community is currently small at 36 GitHub stars, the clear documentation, structured contribution guidelines, and transparent setup process indicate solid project health.

Verdict
Safe to use, though you should ensure any required API keys are securely managed during setup.
SUMMARY

A collection of Claude Code skills that help security teams stay secure

README.md

Security Skills for Claude Code

A plugin marketplace of Claude Code skills that automate security operations.

Install individual skills to automate specific platforms, or combine several for end-to-end integration across your security stack.

Available Skills

Skill Platform What It Does
fusion-workflows CrowdStrike Falcon Fusion SOAR Create, validate, import, execute, and export Fusion SOAR workflows. Discovers actions via the live API, authors YAML with correct schema and data references, handles CEL expressions, loop/conditional patterns, and manages the full workflow lifecycle.

More skills coming soon.

Getting Started

Prerequisites

Install via Plugin Marketplace

/plugin marketplace add https://github.com/eth0izzle/security-skills.git
/plugin install SKILL-NAME@security-skills

Replacing SKILL-NAME with the desired skill name you want to install.

Manual Setup

If you prefer to install manually:

  1. Clone the repository:
git clone https://github.com/eth0izzle/security-skills.git
cd security-skills
cp -r plugins/ ~/.claude/plugins/

  1. Some skills may require configuration. For example, the CrowdStrike Fusion workflow requires an API key to understand your live environment and optimise your workflows.

  2. Start Claude Code in the project directory:

claude
  1. Ask Claude to build something:
/plan
> Create a workflow that contains a device and sends a Slack notification
> Create multiple workflows based on the attached BEC Playbook
> What CrowdStrike actions are available to help with forensics capture?

Claude will automatically use the appropriate skill based on your request.

Using a Skill Directly

Each skill lives under plugins/<plugin-name>/skills/<skill-name>/ and includes:

  • SKILL.md — the skill definition that Claude loads automatically
  • scripts/ — CLI tools for interacting with the platform API
  • references/ — schema docs, expression syntax, best practices
  • assets/ — templates and starter files

Contributing

To add a new security skill:

  1. Create a plugin directory under plugins/<plugin-name>/
  2. Add a .claude-plugin/plugin.json manifest
  3. Create the skill under plugins/<plugin-name>/skills/<skill-name>/
  4. Write a SKILL.md that describes the skill's capabilities, prerequisites, and step-by-step workflow
  5. Add scripts for API interaction, validation, and deployment
  6. Add reference docs for schema, syntax, and best practices
  7. Add template assets for common patterns
  8. Register the plugin in .claude-plugin/marketplace.json
  9. Submit a pull request

See the fusion-workflows skill as a reference implementation.

License

MIT

Yorumlar (0)

Sonuc bulunamadi