메뉴
A skill with connection strings carrying embedded credentials, which must be caught and have the credential redacted.
Codex 또는 Claude로 설치 이 Prompt를 복사해 Codex, Claude 또는 다른 어시스턴트에 붙여 넣으면 Skill 페이지를 검토하고 설치를 진행할 수 있습니다.
SOC 직업 분류 기준
Extracts a reusable code pattern from the current repo and authors a portable, validated Agent Skill. Use when you want to capture a logging setup, CI/CD pipeline, observability stack, async messaging pattern, frontend component library, feature-flag middleware, or any other repeatable engineering pattern so it can be replayed across other repos. Produces: a standard-conformant SKILL.md, parameterized code templates in assets/templates/, a PARAMETERS.md documenting every placeholder, then runs validate-skill.sh, scan-leaks.sh, and dry-run-replay.sh as a tiered quality gate. Output is ready to publish via references/publishing.md.
Regression fixture for dry-run-replay header-skip drift.
A clean skill containing a git commit SHA, a UUID, and an embedded base64 image asset — none of which are secrets and none must trip the scanner.
Sets up structured logging for a service using a configurable log level and service name. Produces a logger.config file ready for ingestion by your logging pipeline. Works with any service that reads configuration from a flat config file.
A skill that accidentally contains an AWS access key — should be caught by the scanner.
A skill containing bare base64 secrets ending in equals-sign padding, which must not evade the entropy detector.
| name | connstring-leak-skill |
| description | A skill with connection strings carrying embedded credentials, which must be caught and have the credential redacted. |
| version | 1.0.0 |
Connection strings of the form scheme://user:password@host embed credentials that must be flagged, with the credential never echoed.
DATABASE_URL=PLACEHOLDER_REPLACED_AT_RUNTIME
MONGO_URL=PLACEHOLDER_REPLACED_AT_RUNTIME
REDIS_URL=PLACEHOLDER_REPLACED_AT_RUNTIME
AMQP_URL=PLACEHOLDER_REPLACED_AT_RUNTIME