security-scanning
🔌Pluginwshobson/agents
|The security-scanning plugin is part of the wshobson/agents marketplace for Claude Code. It falls under the Security category and provides specialized AI agents for static application security testing (SAST), dependency scanning, and comprehensive...
Overview
The security-scanning plugin is part of the wshobson/agents marketplace for Claude Code. It falls under the Security category and provides specialized AI agents for static application security testing (SAST), dependency scanning, and comprehensive security hardening. The plugin includes a dedicated security skill and can run multi-agent security assessments when combined with other security-focused plugins.
The plugin supports a security hardening command that performs comprehensive multi-agent security assessment. It uses the Sonnet-tier model for intelligent support tasks while keeping token usage minimal by loading only its specific security agents and skills.
Key Features
- Static application security testing (SAST) with specialized security agents
- Dependency scanning for vulnerability detection in project dependencies
- Security hardening command with comprehensive and standard assessment levels
- Multi-agent security assessment when composed with compliance, backend/API security, and frontend/mobile security plugins
- Progressive disclosure architecture with security-specific skills loaded on demand
- Sonnet-tier model assignment for intelligent, thorough security analysis
Who is this for?
Security engineers, DevSecOps teams, and developers who use Claude Code and want automated security scanning, vulnerability detection, and security hardening capabilities integrated into their development workflow.
Part of
wshobson-agents
Installation
/plugin marketplace add wshobson/agents/plugin install security-scanning@claude-code-workflowsMore from this repository10
Comprehensive Claude Code plugin collection with 112 AI agents, 146 skills, and 73 focused plugins covering full-stack development, security, infrastructure, and multi-agent orchestration.
A specialized agent skill for advanced TypeScript type system patterns, part of the wshobson/agents plugin marketplace with 146 skills across 73 plugins for Claude Code.
Production-ready workflow orchestration with 72 focused plugins, 108 specialized agents, and 129 skills - optimized for granular installation and minimal token usage
A Claude Code plugin bundling core development agents and tools from the wshobson/agents marketplace, providing a foundational set of AI-assisted capabilities with minimal token usage.
The error-debugging plugin is part of the wshobson/agents marketplace for Claude Code, providing specialized AI agents for diagnosing and resolving software errors.
A Claude Code plugin from the wshobson/agents marketplace providing specialized error diagnosis and troubleshooting agents for root cause analysis, stack trace investigation, and fix recommendations across technology stacks.
git-pr-workflows is a Claude Code plugin from the wshobson/agents marketplace that provides specialized Git and pull request workflow automation.
A specialized AI agent plugin for modernizing legacy codebases using Claude Code. Part of a comprehensive system of 112 specialized agents, it automates the assessment and transformation of outdated code into modern architectures and patterns.
The data-validation-suite plugin is part of the wshobson/agents marketplace for Claude Code. It falls under the Data category, which includes two data-focused plugins: data engineering and data validation.
The ui-design plugin is part of the wshobson/agents marketplace for Claude Code, providing specialized AI agents for UI/UX design assistance within development workflows.