// Install local-first security hardening: pre-commit secret detection, offline dependency scans, static analysis, reports, and gated free CI. Use when hardening repos or adding security hooks. Don't use for incident response or cloud security reviews.
Run coding tasks via opencode using free cloud models. Use when asked to offload work to opencode.ai or run a free model. Don't use for local models (Ollama, LM Studio), Claude/OpenAI calls, or when Claude should do the work itself.
Generate exactly 3 simple, fast, healthy recipes from food photos, ingredient lists, or cravings. Use for what-to-cook-tonight requests. Don't use for restaurants, meal plans, baking, or medical diets.
6-phase website cloning and improvement orchestrator. Takes a URL and produces an improved version (performance + UI/UX) via Vite/React/shadcn/Tailwind hosted on GitHub Pages. Use when asked to clone a site, rebuild a website, or make a better version of a URL. Orchestrates sibling skills with approval gates — don't use for single-phase work.
Analyze any website URL across 6 dimensions: UI/UX, category, style, performance (LCP/CLS/TTFB/weight/requests), surface-level security, and SEO (score 0-100 with breakdown). Outputs structured JSON for downstream skills. Use when asked to analyze, audit, or scan a website. Don't use for full SEO audits or penetration testing.
Execute the approved tasks.md to build a Vite + React + shadcn/ui + Tailwind CSS website deployable to GitHub Pages. Collects assets from the original site and creates new assets per plan. Emits builder metadata for the final report. Use when asked to build, implement, or code a website from a plan. Don't use for design review or planning — those are upstream phases.
Convert website analyzer output into a comprehensive plain-language report for non-technical users. Prompts for validation before persisting. Use when asked to report on a website analysis, create an end-user report, or translate technical metrics into plain language. Don't use for technical audit reports targeting developers, raw SEO audits, or penetration testing. Approval gate: never saves without explicit user approval.
| name | security-setup |
| description | Install local-first security hardening: pre-commit secret detection, offline dependency scans, static analysis, reports, and gated free CI. Use when hardening repos or adding security hooks. Don't use for incident response or cloud security reviews. |
| license | MIT |
| compatibility | Cross-platform (macOS, Linux, Windows). Requires git, Python 3.8+, and project write access. Uses pre-commit plus free local tools such as gitleaks, trivy, semgrep, bandit, or cargo-audit when appropriate. Semgrep on Windows requires WSL2. |
| effort | high |
| metadata | {"version":"1.3.2","author":"Luong NGUYEN <luongnv89@gmail.com>"} |
Install a local-first security hardening stack for a project. Favor checks that run offline at hook time, produce machine-readable output, and give developers a clear summary before code leaves their machine.
Before creating/updating/deleting files in an existing repository, sync the current branch with remote:
branch="$(git rev-parse --abbrev-ref HEAD)"
git fetch origin
git pull --rebase origin "$branch"
If the working tree is not clean, stash first as a backup, sync, then restore:
git stash push -u -m "pre-sync" # backup local changes
branch="$(git rev-parse --abbrev-ref HEAD)"
git fetch origin && git pull --rebase origin "$branch"
git stash pop # rollback by restoring the backup
If origin is missing, pull is unavailable, or rebase/stash conflicts occur, stop
and ask the user before continuing. Never use --force rollback options without
confirmation.
Work in two gated phases:
--ci, create a free-tier
GitHub Actions workflow that runs the same local runner on pull requests.Do not create CI files until Phase 1 is installed and passing.
Inspect the repo before choosing tools. The runner and skill instructions work on macOS, Linux, and Windows; pick the matching shell snippet.
macOS / Linux (bash, zsh):
ls -la package.json package-lock.json pnpm-lock.yaml yarn.lock pyproject.toml requirements.txt Cargo.toml Cargo.lock go.mod pom.xml build.gradle 2>/dev/null
ls -la .pre-commit-config.yaml SECURITY.md .github/workflows/security.yml 2>/dev/null
command -v gitleaks trivy semgrep detect-secrets bandit cargo-audit pre-commit 2>/dev/null
Windows PowerShell:
Get-ChildItem -Force -ErrorAction SilentlyContinue package.json,package-lock.json,pnpm-lock.yaml,yarn.lock,pyproject.toml,requirements.txt,Cargo.toml,Cargo.lock,go.mod,pom.xml,build.gradle
Get-ChildItem -Force -ErrorAction SilentlyContinue .pre-commit-config.yaml,SECURITY.md,.github\workflows\security.yml
foreach ($t in 'gitleaks','trivy','semgrep','detect-secrets','bandit','cargo-audit','pre-commit') { Get-Command $t -ErrorAction SilentlyContinue }
Identify:
Use references/tool-selection.md for the tool matrix and install commands.
Choose the smallest useful set:
gitleaks; use detect-secrets when it already exists in
a Python-heavy repo.trivy fs --skip-db-update for offline hook runtime;
add cargo-audit only for Rust repos that already use Cargo.semgrep with local rules under security/.
Add language-native scanners only when the language is present (bandit for
Python, gosec for Go, cargo clippy/cargo audit for Rust).When the repo uses package managers, recommend Socket Firewall as a lightweight
local guardrail for day-to-day dependency installs. This does not replace lockfile
scanning with trivy/cargo-audit; it shifts risk left by making risky installs
harder before a new dependency reaches the repo.
For macOS/Linux users on zsh or bash, suggest adding these aliases to the
developer shell profile:
alias npm="sfw npm"
alias yarn="sfw yarn"
alias pnpm="sfw pnpm"
alias pip="sfw pip"
alias uv="sfw uv"
alias cargo="sfw cargo"
Only include aliases for package managers the project actually uses, and document
the guardrail in SECURITY.md as optional local developer setup. If Socket
Firewall is not installed, print the official install instructions or link to
the official docs; do not add failing hooks that require sfw.
The hook must not call cloud services at runtime. If a scanner needs a local
database, warm that database during setup and run with offline flags in the hook.
If offline dependency scanning cannot be configured for an ecosystem, document the
gap in SECURITY.md and do not pretend the criterion is satisfied.
Pre-commit must be fast on small commits without losing coverage. Each check declares its own relevance rule — never a global "skip on .md only" filter.
Trigger semantics in security/security-tools.json:
| Trigger | Behavior |
|---|---|
"always": true | Always run. Use for secret scanners — secrets land in .md, .json, .env.example, Dockerfile, anywhere. |
"paths": [globs] | Run only when at least one staged file matches a glob. Use for lockfile-driven (trivy, cargo-audit) or language-driven (semgrep, bandit) checks. |
| (omitted) | Runner falls back to the per-tool defaults baked into scripts/security_check.py for the recognized tool name. |
A repo-wide trip_all_paths list (default: .pre-commit-config.yaml, security/**,
.github/workflows/**, Dockerfile*, .dockerignore, scripts/security_check.py)
forces every applicable check to run when any of those files is staged. This
catches workflow-injection edits, hook-tampering, and Dockerfile RCE that would
otherwise slip past purely category-based scoping.
CI runs full scans (--all). Scoping only applies on developer commits; the CI
mirror is the safety net.
Mandatory invariant: secret scanning runs on every commit. Do not move gitleaks (or its replacement) into a path-restricted trigger.
Before writing files, dry-run the changes: list every target path, diff any
existing file against the planned content, and confirm with the user. If a
target file already exists, back it up to <path>.bak so the user can
rollback. Treat any overwrite of .pre-commit-config.yaml or SECURITY.md
as destructive and require explicit confirmation.
Create or update these files:
.pre-commit-config.yaml - merge a local security-check hook into existing
config; do not overwrite user hooks.scripts/security_check.py - copy from scripts/security_check.py in this
skill, then adjust tool config if needed.security/semgrep-rules.yml - local Semgrep rules so runtime scans are offline.security/security-tools.json - selected tools and command overrides.SECURITY.md - summary of selected tools, why they were chosen, and how to run
or bypass checks.Use references/templates.md for starter snippets.
Never add a silent bypass. Bypass cannot be performed through git commit
because pre-commit redirects hook stdin to /dev/null, so the runner's
TTY check refuses --force from inside the hook. The approved bypass is a
two-step, explicit override:
Run the runner directly with --force and type YES at the prompt:
# macOS / Linux
SECURITY_CHECK_ARGS=--force python3 scripts/security_check.py
# Windows PowerShell
$env:SECURITY_CHECK_ARGS = "--force"; python scripts\security_check.py; Remove-Item Env:SECURITY_CHECK_ARGS
:: Windows cmd.exe
set SECURITY_CHECK_ARGS=--force && python scripts\security_check.py && set SECURITY_CHECK_ARGS=
The runner prints the prompt:
Type YES to override security checks and force-push:
It accepts only the literal string YES. Any other input, EOF, or a
non-TTY context exits non-zero and refuses the bypass.
After the override is recorded in the report, commit with
git commit --no-verify. Document the bypass in SECURITY.md (date,
reason, link to the recorded report) so the override is auditable.
Do not add --force to the pre-commit hook entry, and do not wrap
git commit in a script that opens /dev/tty for the hook — both routes
hide the bypass from review.
Run the local checks after writing files. Use python3 on macOS/Linux and
python on Windows (the Python launcher routes to the active interpreter).
Verification uses --all so every configured check runs regardless of what
happens to be staged.
# macOS / Linux
python3 scripts/security_check.py --all --no-fail-on-missing-tools
pre-commit run security-check --all-files
# Windows PowerShell
python scripts\security_check.py --all --no-fail-on-missing-tools
pre-commit run security-check --all-files
When run from a pre-commit hook with no flags, the runner inspects
git diff --cached and scopes checks to the staged file set per the trigger
table in §2. --all overrides this for verification or one-off full scans;
--staged-only errors if no staged files are found (useful for guarded
hooks).
If pre-commit is not installed, print the install command and stop:
python3 -m pip install pre-commit # use `python` on Windows
pre-commit install
A successful first run prints a summary to stdout and exits 0. Verify the output matches this shape (exact counts vary):
Security Check Summary
======================
Mode: full
Checks run: 3 of 3 (skipped: 0)
Findings: 1
Severity: HIGH=1
Categories: dependencies=1
JSON report: security/security-report.json
Markdown report: security/security-report.md
Top findings:
- HIGH [dependencies/trivy] CVE-XXXX-XXXX in <pkg> (<lockfile>)
Hint: Upgrade to <version>.
A scoped run on a docs-only commit looks like:
Mode: staged
Staged files: 2
Checks run: 1 of 3 (skipped: 2)
Skipped: trivy, semgrep
Skipped checks are recorded in both reports with their scope reason — they are not silent.
Assert: a clean run exits 0, both report paths exist, and
security-report.json parses as valid JSON with a top-level summary
object. Any HIGH or CRITICAL finding exits non-zero unless the bypass
in §"4. Bypass Policy" was completed.
--ci)Only run this phase when the user asks for CI/CD, for example
/security-setup --ci.
Preconditions:
python3 scripts/security_check.py --no-fail-on-missing-tools runs locally.pre-commit-config.yaml contains the security-check hookThen create .github/workflows/security.yml using references/templates.md.
Keep the workflow free-tier friendly:
pull_request and push to the default branch.python3 scripts/security_check.py.The local runner must print a concise report with:
The default exit behavior is strict: any HIGH or CRITICAL finding exits
non-zero.
A completed setup passes when:
.pre-commit-config.yaml contains a local security-check hook.scripts/security_check.py exists and prints the required summary.--force requires the exact YES confirmation before bypassing failures.SECURITY.md documents selected tools, omissions, run commands, and CI
status.--ci creates .github/workflows/security.yml only after Phase 1 passes.Walk through these manually after install. Each one is a real failure mode naive scoping creates:
README.md containing a synthetic
AKIA… AWS key. Hook fails HIGH (gitleaks ran).README.md with no secrets. Exit 0;
trivy/semgrep/bandit reported as skipped with reason; runtime is
measurably faster than --all.package-lock.json. trivy runs..py file containing
eval(user_input). semgrep and bandit run; exit non-zero..github/workflows/foo.yml with
${{ github.event.issue.title }} interpolated into a run: step. The
trip-all rule fires; semgrep runs.python3 scripts/security_check.py --all behaves like
pre-1.3.0 (every configured check executes).security/security-tools.json and document
per-package coverage.After each phase, report:
◆ Security Setup ([phase] - [context])
................................................................
Project detection: pass | fail - detail
Tool selection: pass | fail - detail
Local hook: pass | fail - detail
Security report: pass | fail - detail
CI mirror: pass | skipped | fail - detail
Criteria: N/M met
____________________________
Result: PASS | PARTIAL | FAIL
references/tool-selection.md - offline-first tool matrix and install notesreferences/templates.md - target repo file templatesscripts/security_check.py - reusable local security summary runner