Execute qualquer Skill no Manus
com um clique

Execute qualquer Skill no Manus com um clique

$pwd:

ship-safe-hooks

Name: Ship Safe Hooks
Author: asamassekou10

// Install ship-safe as real-time Claude Code hooks — blocks secrets and dangerous commands before they land on disk. Use when the user wants automatic security scanning on every file write or bash command.

Executar no Manus

$ git log --oneline --stat

stars:712

forks:80

updated:1 de abril de 2026 às 17:25

SKILL.md

readonly

name	ship-safe-hooks
description	Install ship-safe as real-time Claude Code hooks — blocks secrets and dangerous commands before they land on disk. Use when the user wants automatic security scanning on every file write or bash command.
argument-hint	[install\|remove\|status]

Ship Safe — Claude Code Hooks

You are installing ship-safe as real-time security hooks into Claude Code. Once installed, ship-safe will:

Block Write / Edit / MultiEdit calls that contain critical secrets (API keys, tokens, private keys) before they are written to disk
Block Bash calls matching dangerous patterns (curl piped to shell, credential exfiltration)
Scan every file after it is written and inject advisory findings directly into this conversation

Step 1: Determine the action

If $ARGUMENTS is remove: run the remove command below. If $ARGUMENTS is status: run the status command below. Otherwise (default or install): run the install command.

Step 2: Run the command

Install (default):

npx ship-safe@latest hooks install

Remove:

npx ship-safe@latest hooks remove

Status check:

npx ship-safe@latest hooks status

Step 3: Report the result

On install success:

Confirm that two hooks are now registered in ~/.claude/settings.json
Explain what each hook does:
- PreToolUse (on Write / Edit / MultiEdit / Bash): blocks critical secrets and dangerous commands in real time
- PostToolUse (on Write / Edit / MultiEdit): scans the written file and reports findings in context
Tell the user that no restart is needed — hooks take effect immediately

On remove success:

Confirm the hooks were removed from ~/.claude/settings.json

On status:

Report which hooks are installed (✔) and which are missing (✗)
If any are missing, offer to run install

On error:

If the command fails, check whether Node.js 18+ is available: node --version
If hook scripts are missing, suggest reinstalling: npm install -g ship-safe

Notes

Hooks are stored in ~/.claude/settings.json (global) so they apply to all Claude Code projects
The hooks are non-invasive: they only read file content and run patterns locally — no data is sent externally
PostToolUse never blocks, it only informs
To see what was installed: cat ~/.claude/settings.json

related-skills.json

mesmo repositório

ship-safe-baseline.md

from "asamassekou10/ship-safe"

Manage your security baseline — accept current findings as known debt, then only report new regressions on future scans. Use when the user wants to adopt security scanning incrementally or suppress existing findings.

2026-03-17712

ship-safe-ci.md

from "asamassekou10/ship-safe"

Run Ship Safe in CI mode — compact output, exit codes, SARIF generation. Use when the user wants to set up CI/CD security gates or test their pipeline configuration.

2026-03-17712

ship-safe-deep.md

from "asamassekou10/ship-safe"

Run a deep security audit with LLM-powered taint analysis — regex scan nominates findings, then an LLM verifies taint reachability and exploitability. Use when the user wants thorough, high-confidence results with fewer false positives.

2026-03-17712

ship-safe-fix.md

from "asamassekou10/ship-safe"

Auto-fix security issues — remediate hardcoded secrets and common vulnerabilities (TLS bypass, debug mode, XSS, shell injection, Docker :latest). Use when the user wants to automatically fix security findings.

2026-03-17712

ship-safe-red-team.md

from "asamassekou10/ship-safe"

Run a multi-agent red team scan — 16 specialized security agents scan for 80+ attack classes including injection, auth bypass, SSRF, supply chain, Supabase RLS, MCP security, agentic AI, RAG poisoning, PII compliance, and more. Use when the user wants a deep security analysis beyond just secrets.

2026-03-17712

ship-safe-scan.md

from "asamassekou10/ship-safe"

Quick scan for leaked secrets — API keys, passwords, tokens, database URLs. Use when the user wants to check for hardcoded secrets or exposed credentials.

2026-03-17712

package.json

"author": "asamassekou10"

"repository": "asamassekou10/ship-safe"

Abrir repositório GitHub Ver repositórios do creator

$ install --global

$ download --local

Executar no Manus

$ useful --forSOC

Analistas de segurança da informaçãoInformática e Matemática15-1212L4

name	ship-safe-hooks
description	Install ship-safe as real-time Claude Code hooks — blocks secrets and dangerous commands before they land on disk. Use when the user wants automatic security scanning on every file write or bash command.
argument-hint	[install\|remove\|status]

Ship Safe — Claude Code Hooks

You are installing ship-safe as real-time security hooks into Claude Code. Once installed, ship-safe will:

Block Write / Edit / MultiEdit calls that contain critical secrets (API keys, tokens, private keys) before they are written to disk
Block Bash calls matching dangerous patterns (curl piped to shell, credential exfiltration)
Scan every file after it is written and inject advisory findings directly into this conversation

Step 1: Determine the action

If $ARGUMENTS is remove: run the remove command below. If $ARGUMENTS is status: run the status command below. Otherwise (default or install): run the install command.

Step 2: Run the command

Install (default):

npx ship-safe@latest hooks install

Remove:

npx ship-safe@latest hooks remove

Status check:

npx ship-safe@latest hooks status

Step 3: Report the result

On install success:

Confirm that two hooks are now registered in ~/.claude/settings.json
Explain what each hook does:
- PreToolUse (on Write / Edit / MultiEdit / Bash): blocks critical secrets and dangerous commands in real time
- PostToolUse (on Write / Edit / MultiEdit): scans the written file and reports findings in context
Tell the user that no restart is needed — hooks take effect immediately

On remove success:

Confirm the hooks were removed from ~/.claude/settings.json

On status:

Report which hooks are installed (✔) and which are missing (✗)
If any are missing, offer to run install

On error:

If the command fails, check whether Node.js 18+ is available: node --version
If hook scripts are missing, suggest reinstalling: npm install -g ship-safe

Notes

Hooks are stored in ~/.claude/settings.json (global) so they apply to all Claude Code projects
The hooks are non-invasive: they only read file content and run patterns locally — no data is sent externally
PostToolUse never blocks, it only informs
To see what was installed: cat ~/.claude/settings.json

ship-safe-hooks

Ship Safe — Claude Code Hooks

Step 1: Determine the action

Step 2: Run the command

Step 3: Report the result

Notes

Mais deste repositório

Mais deste repositório

Ship Safe — Claude Code Hooks

Step 1: Determine the action

Step 2: Run the command

Step 3: Report the result

Notes