sast-skills

sast-skills

Transform your AI coding assistant into a SAST scanner to automatically detect vulnerabilities in code.

Agent SkillDevOpen source
Type
Agent Skill
Open source
Yes
GitHub Stars
★ 1.1k
Source
skill-github

Overview

sast-skills is a set of agent skills that turns your LLM coding assistant into a fully functional SAST scanner for identifying vulnerabilities in codebases. Supports IDEs such as Claude Code, Codex, Opencode, Cursor, and more. No third-party tools required. The skill set operates in three steps: 1. Codebase analysis; 2. Parallel vulnerability detection; 3. Report generation. Final reports are sorted by severity and include complete remediation guidance and dynamic testing instructions.

Capabilities

  • Codebase reconnaissance and architecture mapping
  • SQL injection detection
  • GraphQL injection detection
  • Cross-site scripting detection
  • Remote code execution detection
  • Server-side request forgery detection

Use cases

Code auditingSecurity vulnerability detectionAutomated security assessmentCode quality improvement

Setup

Requires: AI编码助手项目代码
Copy your project into the `sast-files` folder, then open `sast-files` as a workspace in your AI coding assistant.
```bash
cp -r /path/to/your/project sast-files/```

This information was compiled by AI from public sources and may contain inaccuracies — please refer to the source.

FAQ

How do I get started?

Copy your project into the `sast-files` folder, then open and run the vulnerability scan in your AI coding assistant.

Which IDEs are supported?

Supports IDEs such as Claude Code, Codex, Opencode, Cursor, and others.

Do I need third-party tools?

No, all functionality is integrated within the skill set.

Related skills