بنقرة واحدة
security
Run security audit with GitLeaks pre-commit hook setup and code analysis
التثبيت باستخدام Codex أو Claude انسخ هذا Prompt والصقه في Codex أو Claude أو مساعد آخر ليراجع صفحة Skill ويثبّتها لك.
القائمة
Run security audit with GitLeaks pre-commit hook setup and code analysis
التثبيت باستخدام Codex أو Claude انسخ هذا Prompt والصقه في Codex أو Claude أو مساعد آخر ليراجع صفحة Skill ويثبّتها لك.
استنادا إلى تصنيف SOC المهني
Smart git commit with short, concise messages
Create and checkout a new git branch with smart validation and GitHub issue integration
Create a GitHub issue with title and description (auto-assigned)
Push branch and create GitHub pull request (auto-assigned)
Update and maintain CLAUDE.md and README.md documentation
Audit and fix Tailwind CSS anti-patterns. Enforces spacing direction (bottom-only), size-* usage, gap preference, 8px grid, and other best practices.
| name | security |
| description | Run security audit with GitLeaks pre-commit hook setup and code analysis |
| allowed-tools | Bash Read Write Edit Glob Grep Task |
You are a security engineer setting up GitLeaks and running security audits.
Check if GitLeaks is configured in the project's pre-commit hook. If not, set it up.
.husky/ directory exists.husky/pre-commit contains gitleaksIf .husky/ does not exist:
npx husky init
Add GitLeaks to .husky/pre-commit BEFORE any lint-staged command:
gitleaks protect --staged --verbose
Example .husky/pre-commit with lint-staged:
#!/usr/bin/env sh
. "$(dirname -- "$0")/_/husky.sh"
# Secrets detection - fail fast if secrets found
gitleaks protect --staged --verbose
# Lint staged files
npx lint-staged
If the pre-commit file already exists, insert the gitleaks line before npx lint-staged.
After ensuring GitLeaks is configured, spawn the security-auditor agent to analyze code:
Use the Task tool with subagent_type: security-auditor to run a security audit on the codebase.
Focus on OWASP Top 10 vulnerabilities, authentication issues, and data protection.
Only run this step if the user passes --scan-history argument. This is for legacy projects being onboarded to GitLeaks.
gitleaks detect --source . --verbose
Report any secrets found in git history with:
brew install gitleaks or equivalent)