| name | security-scan |
| description | Security scanning and vulnerability assessment workflows. Use when performing security audits, scanning for vulnerabilities, checking dependencies, or hardening systems. |
| paths | **/*.py,**/*.js,**/*.go,**/*.sh,**/*.ts,**/*.rs,**/Dockerfile*,**/requirements*.txt,**/package.json,**/*.tf |
Security Scanning Workflows
Pre-Push Security Check
Before any push to remote, run this sequence:
gitleaks detect --verbose — scan for leaked secretstrivy fs --severity HIGH,CRITICAL . — filesystem vulnerability scanosv-scanner --lockfile=<lockfile> — dependency vulnerability check
Container Security
trivy image <image> — scan container imagesyft <image> — generate SBOM (Software Bill of Materials)grype <image> — scan SBOM/image for known vulnerabilitiescrane manifest <image> — inspect remote image without pullingcosign verify <image> — verify image signaturedive <image> — check image layer efficiencyhadolint Dockerfile — lint Dockerfile for best practices
Infrastructure Security
trivy config . — scan Terraform/CloudFormation for misconfigstflint — lint Terraform filesopengrep scan -f auto . — static analysis
Network Reconnaissance
subfinder -d <domain> — passive subdomain enumerationdnsx -l subdomains.txt -resp — bulk DNS resolutionhttpx -l hosts.txt -sc -title -tech-detect — probe for live HTTP serviceskatana -u <url> — crawl with JS rendering for hidden endpointsnmap -sV -sC <target> — service version detectionnuclei -u <target> — template-based vuln scanningnikto -h <target> — web server scanningffuf -u <url>/FUZZ -w <wordlist> — directory fuzzing
Supply Chain Security
syft dir:. — generate SBOM for project directorygrype sbom:./sbom.json — scan SBOM for known CVEsgrype dir:. — scan project directly for vulnerable dependencies
TLS & Certificate Debugging
step certificate inspect <cert.pem> — view certificate detailsstep certificate inspect https://<domain> — inspect remote TLS certstep certificate create — generate self-signed certs for testing
System Hardening
lynis audit system — full system security audit- Review output and address findings by severity
Rules
- NEVER scan targets you don't own or have authorization for
- Always use
--help before running any security tool
- Report findings clearly with severity levels
- Suggest remediations alongside findings
