Skills
.Work. You
Rest

sca-runner

Community

Automate vulnerability scans across ecosystems.

Software Engineering#security#vulnerability#npm audit#dependency#trivy#sca
Authornaporin0624
Version1.0.0
Installs0

System Documentation

What problem does it solve?

This Skill wraps npm audit and Trivy to perform Software Composition Analysis (SCA) and detect vulnerable dependencies. It provides a unified, JSON-friendly output to help you automate dependency vulnerability management.

Core Features & Use Cases

  • Auto-detects the scanner (npm audit or Trivy) based on project context.
  • Outputs a structured JSON report with findings and a summary.
  • Supports multi-language project scans (Node, Python, Go, etc.) for proactive security.

Quick Start

Run in your project folder to scan dependencies: npx sca-runner .

Dependency Matrix

Required Modules

None required

Components

Standard package

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: sca-runner
Download link: https://github.com/naporin0624/claude-web-audit-plugins/archive/main.zip#sca-runner

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository