Agent Security Scanning

Name: Agent Security Scanning
Author: itallstartedwithaidea

itallstartedwithaidea/agent-skills

Run an agent-guided security pass on AI-generated code for OWASP-LLM issues, dependency CVEs, and typical agent codegen anti-patterns before you deploy.

Overview

Agent Security Scanning is an agent skill for the Ship phase that detects vulnerabilities in AI-generated code using OWASP LLM guidance, dependency CVE checks, and agent-specific threat patterns before production.

Install

npx skills add https://github.com/itallstartedwithaidea/agent-skills --skill agent-security-scanning

What is this skill?

Three-layer pipeline: static code analysis, dependency CVE scanning, agent-specific threat modeling
Calibrated for AI-generated patterns: unsanitized dynamic SQL, eval(), unvalidated deserialization
OWASP Top 10 for LLM Applications plus prompt-injection and tool-misuse vectors
Each finding includes severity, CWE classification, and concrete remediation with code examples
Flags data exfiltration risks through tool calls and insecure auth/crypto patterns common in agent output
Covers three scanning layers: static analysis, dependency CVE matching, and agent-specific threat modeling

Compatible agents: Claude Code, Cursor, Codex, any compatible agent

Adoption & trust: 1 installs on skills.sh; 18 GitHub stars; 3/3 security scanners passed (skills.sh audits); trending (+100% hot-view momentum).

What problem does it solve?

Your agent-built feature passes tests but may still ship exploitable injection, auth, crypto, or dependency flaws you have not systematically reviewed.

Who is it for?

Indie builders shipping APIs, SaaS, or agent tools where most implementation velocity comes from LLM codegen and you need a dedicated security lens.

Skip if: Formal compliance-only audits with no code changes, or projects with zero agent-generated surface where a standard SAST-only workflow already suffices.

When should I use this skill?

Before production when reviewing AI-generated code for exploitable vulnerabilities, dependency CVEs, and LLM-specific threats.

What do I get? / Deliverables

You receive a prioritized list of findings with CWE tags and remediation examples so you can fix issues before deploy instead of discovering them in production.

Severity-rated vulnerability findings with CWE IDs
Remediation guidance with example fixes per finding class

Recommended Skills

Azure Compliancemicrosoft/azure-skills

Azure Compliance is a Microsoft agent skill for solo builders and small teams who need structured security and complianc…373k installs·1.2k stars

Openclaw Secure Linux Cloudxixu-me/skills

OpenClaw Secure Linux Cloud guides a hardened VPS deployment—rootless Podman, loopback-only gateway, SSH-tunneled Contro…201k installs·61 stars

Entra Agent Idmicrosoft/azure-skills

entra-agent-id is a Microsoft-authored agent skill for provisioning and operating OAuth-capable identities tailored to A…99.1k installs·1.2k stars

Firebase Security Rules Auditorfirebase/agent-skills

Firebase Security Rules Auditor turns your agent into a senior penetration-style reviewer for Firestore rulesets. Solo b…40.3k installs·345 stars

Firestore Security Rules Auditorfirebase/agent-skills

Firestore-security-rules-auditor is a checker skill for solo builders and small teams shipping Firebase-backed apps who …20.3k installs·345 stars

Skill Vetteruseai-pro/openclaw-skills-security

Skill Vetter is a security-first OpenClaw agent skill that makes your coding agent behave like a pre-install auditor for…19.2k installs·62 stars

Journey fit

Primary fit

Placed in Ship because the skill is explicitly framed as catching vulnerabilities before production, not as early ideation or growth work. Security subphase matches static analysis, dependency CVE matching, and agent-specific threat modeling with severities and remediations.

How it compares

Use as a codegen-aware security reviewer, not as a substitute for dependency bots alone or generic lint rules that ignore LLM-specific threat models.

Common Questions / FAQ

Who is agent-security-scanning for?

Solo builders and small teams using agent-skills workflows who need a structured pre-production security review tuned for AI-written code.

When should I use agent-security-scanning?

In Ship before merging or deploying agent-generated features, after large dependency upgrades, or when adding tools that accept user-influenced prompts.

Is agent-security-scanning safe to install?

Check the Security Audits panel on this Prism page and limit network or secret access in your agent environment according to how you run dependency and code scans.

SKILL.md

READMESKILL.md - Agent Security Scanning

# Agent Security Scanning

Part of [Agent Skills™](https://github.com/itallstartedwithaidea/agent-skills) by [googleadsagent.ai™](https://googleadsagent.ai)

## Description

Agent Security Scanning detects vulnerabilities in AI-generated code before it reaches production. The agent applies OWASP Top 10 for LLM Applications, scans for known CVEs in dependencies, identifies prompt injection vectors, and flags insecure patterns specific to agent-generated code—such as unsanitized dynamic SQL, eval() usage, and unvalidated deserialization.

AI code generators produce code that "works" but frequently contains security vulnerabilities invisible to functional testing. Studies show that AI-generated code contains exploitable vulnerabilities at higher rates than human-written code, particularly in input validation, authentication, and cryptographic operations. This skill applies security analysis specifically calibrated for the patterns that AI agents produce.

The scanning pipeline covers three layers: static analysis of generated code (injection, XSS, SSRF), dependency vulnerability scanning (CVE database matching), and agent-specific threat modeling (prompt injection, tool misuse, data exfiltration through tool calls). Each finding includes a severity rating, CWE classification, and a concrete remediation with code example.

## Use When

- Reviewing AI-generated code before committing or deploying
- Scanning dependencies for known CVEs after `npm install` or `pip install`
- Auditing agent tool call patterns for potential misuse
- Implementing security gates in CI/CD pipelines
- The user requests security review, vulnerability scan, or penetration testing
- Building applications that handle user input, authentication, or payments

## How It Works

```mermaid
graph TD
    A[AI-Generated Code] --> B[Layer 1: Static Analysis]
    B --> C[Injection: SQL, XSS, SSRF, Command]
    B --> D[Auth: Hardcoded Secrets, Weak Crypto]
    B --> E[Data: PII Exposure, Logging Secrets]
    A --> F[Layer 2: Dependency Scan]
    F --> G[CVE Database Match]
    F --> H[License Compliance]
    A --> I[Layer 3: Agent Threat Model]
    I --> J[Prompt Injection Vectors]
    I --> K[Tool Call Audit]
    I --> L[Data Exfiltration Paths]
    C --> M[Severity Classification + CWE]
    D --> M
    E --> M
    G --> M
    J --> M
    K --> M
    L --> M
    M --> N[Remediation Report]
```

The three-layer scan runs in parallel. Static analysis catches code-level vulnerabilities, dependency scanning catches known CVEs, and agent threat modeling catches risks unique to AI-powered applications.

## Implementation

```python
import re
from dataclasses import dataclass

@dataclass
class SecurityFinding:
    severity: str  # CRITICAL, HIGH, MEDIUM, LOW
    cwe: str
    title: str
    file: str
    line: int
    description: str
    remediation: str

class AgentSecurityScanner:
    PATTERNS = [
        {
            "name": "SQL Injection",
            "pattern": r'f["\'].*(?:SELECT|INSERT|UPDATE|DELETE).*\{.*\}',
            "severity": "CRITICAL",
            "cwe": "CWE-89",
            "remediation": "Use parameterized queries instead of string interpolation",
        },
        {
            "name": "Command Injection",
            "pattern": r'(?:os\.system|subprocess\.call|exec)\s*\(.*(?:f["\']|\+\s*\w)',
            "severity": "CRITICAL",
            "cwe": "CWE-78",
            "remediation": "Use subprocess with list args, never shell=True with user input",
        },
        {
            "name": "Hardcoded Secret",
            "pattern": r'(?:password|secret|api_key|token)\s*=\s*["\'][^"\']{8,}["\']',
            "severity": "HIGH",
            "cwe": "CWE-798",
            "remediation": "Use environment variables or a secrets manager",
        },
        {
            "name": "Eval Usage",
            "p

What is this skill?

Three-layer pipeline: static code analysis, dependency CVE scanning, agent-specific threat modeling

Calibrated for AI-generated patterns: unsanitized dynamic SQL, eval(), unvalidated deserialization

OWASP Top 10 for LLM Applications plus prompt-injection and tool-misuse vectors

Each finding includes severity, CWE classification, and concrete remediation with code examples

Flags data exfiltration risks through tool calls and insecure auth/crypto patterns common in agent output

Covers three scanning layers: static analysis, dependency CVE matching, and agent-specific threat modeling

Compatible agents: Claude Code, Cursor, Codex, any compatible agent

Adoption & trust: 1 installs on skills.sh; 18 GitHub stars; 3/3 security scanners passed (skills.sh audits); trending (+100% hot-view momentum).

Who is it for?

Indie builders shipping APIs, SaaS, or agent tools where most implementation velocity comes from LLM codegen and you need a dedicated security lens.

Skip if: Formal compliance-only audits with no code changes, or projects with zero agent-generated surface where a standard SAST-only workflow already suffices.

Journey fit

Primary fit

SKILL.md

READMESKILL.md - Agent Security Scanning

# Agent Security Scanning

Part of [Agent Skills™](https://github.com/itallstartedwithaidea/agent-skills) by [googleadsagent.ai™](https://googleadsagent.ai)

## Description

Agent Security Scanning detects vulnerabilities in AI-generated code before it reaches production. The agent applies OWASP Top 10 for LLM Applications, scans for known CVEs in dependencies, identifies prompt injection vectors, and flags insecure patterns specific to agent-generated code—such as unsanitized dynamic SQL, eval() usage, and unvalidated deserialization.

AI code generators produce code that "works" but frequently contains security vulnerabilities invisible to functional testing. Studies show that AI-generated code contains exploitable vulnerabilities at higher rates than human-written code, particularly in input validation, authentication, and cryptographic operations. This skill applies security analysis specifically calibrated for the patterns that AI agents produce.

The scanning pipeline covers three layers: static analysis of generated code (injection, XSS, SSRF), dependency vulnerability scanning (CVE database matching), and agent-specific threat modeling (prompt injection, tool misuse, data exfiltration through tool calls). Each finding includes a severity rating, CWE classification, and a concrete remediation with code example.

## Use When

- Reviewing AI-generated code before committing or deploying
- Scanning dependencies for known CVEs after `npm install` or `pip install`
- Auditing agent tool call patterns for potential misuse
- Implementing security gates in CI/CD pipelines
- The user requests security review, vulnerability scan, or penetration testing
- Building applications that handle user input, authentication, or payments

## How It Works

```mermaid
graph TD
    A[AI-Generated Code] --> B[Layer 1: Static Analysis]
    B --> C[Injection: SQL, XSS, SSRF, Command]
    B --> D[Auth: Hardcoded Secrets, Weak Crypto]
    B --> E[Data: PII Exposure, Logging Secrets]
    A --> F[Layer 2: Dependency Scan]
    F --> G[CVE Database Match]
    F --> H[License Compliance]
    A --> I[Layer 3: Agent Threat Model]
    I --> J[Prompt Injection Vectors]
    I --> K[Tool Call Audit]
    I --> L[Data Exfiltration Paths]
    C --> M[Severity Classification + CWE]
    D --> M
    E --> M
    G --> M
    J --> M
    K --> M
    L --> M
    M --> N[Remediation Report]
```

The three-layer scan runs in parallel. Static analysis catches code-level vulnerabilities, dependency scanning catches known CVEs, and agent threat modeling catches risks unique to AI-powered applications.

## Implementation

```python
import re
from dataclasses import dataclass

@dataclass
class SecurityFinding:
    severity: str  # CRITICAL, HIGH, MEDIUM, LOW
    cwe: str
    title: str
    file: str
    line: int
    description: str
    remediation: str

class AgentSecurityScanner:
    PATTERNS = [
        {
            "name": "SQL Injection",
            "pattern": r'f["\'].*(?:SELECT|INSERT|UPDATE|DELETE).*\{.*\}',
            "severity": "CRITICAL",
            "cwe": "CWE-89",
            "remediation": "Use parameterized queries instead of string interpolation",
        },
        {
            "name": "Command Injection",
            "pattern": r'(?:os\.system|subprocess\.call|exec)\s*\(.*(?:f["\']|\+\s*\w)',
            "severity": "CRITICAL",
            "cwe": "CWE-78",
            "remediation": "Use subprocess with list args, never shell=True with user input",
        },
        {
            "name": "Hardcoded Secret",
            "pattern": r'(?:password|secret|api_key|token)\s*=\s*["\'][^"\']{8,}["\']',
            "severity": "HIGH",
            "cwe": "CWE-798",
            "remediation": "Use environment variables or a secrets manager",
        },
        {
            "name": "Eval Usage",
            "p

Overview

Install

What is this skill?

What problem does it solve?

Who is it for?

When should I use this skill?

What do I get? / Deliverables

Recommended Skills

Journey fit

Who is agent-security-scanning for?

When should I use agent-security-scanning?

Is agent-security-scanning safe to install?

SKILL.md

This week for builders

Overview

Install

What is this skill?

What problem does it solve?

Who is it for?

When should I use this skill?

What do I get? / Deliverables

Recommended Skills

Journey fit

Who is agent-security-scanning for?

When should I use agent-security-scanning?

Is agent-security-scanning safe to install?

SKILL.md