Skip to main content
SkillJury
Back to registry

ghost-scan-code

ghostsecurity/skills

You find security issues in a repository. This skill plans which vulnerability vectors to scan, then executes those scans against each project.

Installs762
Install command
npx skills add https://github.com/ghostsecurity/skills --skill ghost-scan-code
Security audits
Gen Agent Trust HubPASS
SocketPASS
SnykPASS
About this skill
You find security issues in a repository. This skill plans which vulnerability vectors to scan, then executes those scans against each project. $ARGUMENTS Note: Arguments passed can be used to customize the scan workflow if provided. For example, if the user specifies a specific set of vectors, count of vectors, specific candidate files, areas to focus on, count of candidate files, etc., ensure the relevant details are passed to the relevant steps in the skill. Compute the repo-specific output directory: If $scan_dir/plan.md already exists, skip to the next step. Otherwise, run the planner using scripts/loop.sh : Use a 10-minute timeout. If the command times out, re-run it — the script resumes from where it left off. If it fails 3 times consecutively with the same error, stop and report the failure. Verify: $scan_dir/plan.md exists and contains at least one ## Project: section before proceeding.

Source description provided by the upstream skill listing. Community reviews and install context appear in the sections below.

Community Reviews

Latest reviews

Sign in to review

No community reviews yet. Be the first to review.

Browse this skill in context
FAQ
What does ghost-scan-code do?

You find security issues in a repository. This skill plans which vulnerability vectors to scan, then executes those scans against each project.

Is ghost-scan-code good?

ghost-scan-code does not have approved reviews yet, so SkillJury cannot publish a community verdict.

What agent does ghost-scan-code work with?

ghost-scan-code currently lists compatibility with codex, gemini-cli, opencode, kimi-cli, github-copilot, claude-code.

What are alternatives to ghost-scan-code?

Skills in the same category include telegram-bot-builder, flutter-app-size, sharp-edges, iterative-retrieval.

How do I install ghost-scan-code?

npx skills add https://github.com/ghostsecurity/skills --skill ghost-scan-code

telegram-bot-builderflutter-app-sizesharp-edgesiterative-retrieval
Related skills

More from ghostsecurity/skills

ghost-scan-secrets

by ghostsecurity/skills

593

Source details, install context, and public review data are available on the full page.

Software EngineeringResearch and AuditsFirst seen Feb 19, 2026

ghost-scan-deps

by ghostsecurity/skills

512

Source details, install context, and public review data are available on the full page.

Software EngineeringResearch and AuditsFirst seen Feb 19, 2026

ghost-proxy

by ghostsecurity/skills

428

Reaper is a CLI-based MITM HTTPS proxy for application security testing. It intercepts, logs, and allows inspection of HTTP/HTTPS traffic flowing through it. Use it to capture live request/response pairs for security validation.

Software EngineeringFrontend and DesignFirst seen Feb 19, 2026

ghost-validate

by ghostsecurity/skills

417

Determine whether a security finding is a true positive or false positive. Produce a determination with supporting evidence.

Software EngineeringTesting and QAFirst seen Feb 19, 2026
Related skills

Alternatives in Software Engineering

telegram-bot-builder

by sickn33/antigravity-awesome-skills

998

Source details, install context, and public review data are available on the full page.

Software EngineeringFrontend and DesignFirst seen Jan 18, 2026

flutter-app-size

by flutter/skills

996

Analyzes and optimizes Flutter application size by measuring build artifacts, generating size analysis reports, utilizing Dart DevTools for component breakdown, and implementing specific size reduction strategies such as debug info splitting, resource compression, and platform-specific tree-shaking. Assumes a...

Software EngineeringFrontend and Design

sharp-edges

by trailofbits/skills

994

Evaluates whether APIs, configurations, and interfaces are resistant to developer misuse. Identifies designs where the "easy path" leads to insecurity.

Software EngineeringFrontend and DesignFirst seen Jan 18, 2026

iterative-retrieval

by affaan-m/everything-claude-code

993

Solves the "context problem" in multi-agent workflows where subagents don't know what context they need until they start working.

Software EngineeringFrontend and DesignFirst seen Jan 25, 2026