Skills
.Work. You
Rest

pasta-vulns

Community

Analyze code for security vulnerabilities.

Software Engineering#security#vulnerability#threat modeling#sast#appsec#cwe#dast
Authorflorianbuetow
Version1.0.0
Installs0

System Documentation

What problem does it solve?

This Skill identifies specific weaknesses in code and configuration that could be exploited, mapping findings to CWE identifiers and correlating them with threat models.

Core Features & Use Cases

  • Vulnerability Scanning: Utilizes tools like semgrep, bandit, gosec, and dependency scanners to find common security flaws.
  • Threat Correlation: Maps identified vulnerabilities to specific threats and attack vectors defined in earlier stages of the PASTA methodology.
  • Exploitability Assessment: Evaluates the ease with which a vulnerability can be exploited, considering complexity and existing controls.
  • Use Case: After identifying potential threats to a web application, use this Skill to scan the codebase for SQL injection, insecure direct object references, and other vulnerabilities that could enable those threats.

Quick Start

Run a deep vulnerability analysis on the changed files, generating fix suggestions.

Dependency Matrix

Required Modules

None required

Components

referencesscripts

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: pasta-vulns
Download link: https://github.com/florianbuetow/claude-code/archive/main.zip#pasta-vulns

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 223,000+ vetted skills library on demand.