Skip to main content
SkillJury
Back to the directory
wshobson/agentsSoftware EngineeringFrontend and Design

sast-configuration

Configure SAST tools for automated vulnerability detection across multiple languages and CI/CD pipelines.

SkillJury keeps community verdicts, source metadata, and external repository signals in separate lanes so ranking data never pretends to be a review.

SkillJury verdict
Pending

No approved reviews yet

Would recommend
Pending

Waiting on enough review volume

Install signal
5

Weekly or total install activity from catalog data

Sign in to review
0 review requests
Install command
npx skills add https://github.com/wshobson/agents --skill sast-configuration
SkillJury does not have enough approved reviews to publish a community verdict yet. Source metadata and repository proof are still available above.
SkillJury Signal Summary

As of Apr 30, 2026, sast-configuration has 5 weekly installs, 0 community reviews on SkillJury. Community votes currently stand at 0 upvotes and 0 downvotes. Source: wshobson/agents. Canonical URL: https://skills.sh/wshobson/agents/sast-configuration.

Security audits
Gen Agent Trust HubPASS
SocketPASS
SnykPASS
About this skill
Configure SAST tools for automated vulnerability detection across multiple languages and CI/CD pipelines. Static Application Security Testing (SAST) tool setup, configuration, and custom rule creation for comprehensive security scanning across multiple programming languages. This skill provides comprehensive guidance for setting up and configuring SAST tools including Semgrep, SonarQube, and CodeQL. Use this skill when you need to: Start with Baseline Incremental Adoption False Positive Management Performance Optimization Team Enablement - Covers three major SAST platforms: Semgrep (custom pattern-based rules), SonarQube (quality gates and code coverage), and CodeQL (GitHub Advanced Security integration) - Includes CI/CD integration patterns for GitHub Actions, GitLab CI, and Jenkins, plus pre-commit hook setup for early detection - Provides production-ready configuration templates, custom rule examples, and performance optimization strategies for large codebases - Addresses false positive management, compliance scanning (PCI-DSS, SOC 2), and team enablement workflows - Set up SAST scanning in CI/CD pipelines - Create custom security rules for your codebase - Configure quality gates and compliance policies - Optimize scan performance and reduce false positives - Integrate multiple SAST tools for defense-in-depth - Custom rule creation with pattern matching - Language-specific...

Source description provided by the upstream listing. Community review signal and install context stay separate from this narrative layer.

Community reviews

Latest reviews

No community reviews yet. Be the first to review.

Browse this skill in context
FAQ
What does sast-configuration do?

Configure SAST tools for automated vulnerability detection across multiple languages and CI/CD pipelines.

Is sast-configuration good?

sast-configuration does not have approved reviews yet, so SkillJury cannot publish a community verdict.

Which AI agents support sast-configuration?

sast-configuration currently lists compatibility with Skills CLI.

Is sast-configuration safe to install?

sast-configuration has been scanned by security audit providers tracked on SkillJury. Check the security audits section on this page for detailed results from Socket.dev and Snyk.

What are alternatives to sast-configuration?

Skills in the same category include grimoire-morpho-blue, conversation-memory, second-brain-ingest, zai-tts.

How do I install sast-configuration?

Run the following command to install sast-configuration: npx skills add https://github.com/wshobson/agents --skill sast-configuration

grimoire-morpho-blueconversation-memorysecond-brain-ingestzai-tts
Related skills

More from wshobson/agents

wshobson/agents/Software Engineering

protect-mcp-setup

Cryptographic governance for every Claude Code tool call. Each invocation is evaluated against a Cedar policy and produces an Ed25519-signed receipt that anyone can verify offline.

Weekly installs
968
Community vote
0
0 up / 0 down
Freshness
Synced Apr 30, 2026
Software EngineeringFrontend and DesignNo reviews yetSource wshobson/agents
wshobson/agents/Software Engineering

signed-audit-trails-recipe

Cookbook-style walkthrough for cryptographically signed receipts on every Claude Code tool call. This is the teaching skill. For the runtime implementation, install the protect-mcp plugin.

Weekly installs
781
Community vote
0
0 up / 0 down
Freshness
Synced Apr 30, 2026
Software EngineeringFrontend and DesignNo reviews yetSource wshobson/agents
wshobson/agents/Software Engineering

tailwind-design-system

CSS-first design system framework for Tailwind v4 with tokens, components, and responsive patterns.

Weekly installs
37
Community vote
0
0 up / 0 down
Freshness
Synced Apr 30, 2026
Software EngineeringFrontend and DesignNo reviews yetSource wshobson/agents
wshobson/agents/Software Engineering

typescript-advanced-types

Advanced TypeScript type system patterns for building type-safe, reusable components and utilities.

Weekly installs
37
Community vote
0
0 up / 0 down
Freshness
Synced Apr 30, 2026
Software EngineeringFrontend and DesignNo reviews yetSource wshobson/agents
Related skills

Alternatives in Software Engineering

franalgaba/grimoire/Software Engineering

grimoire-morpho-blue

Query Morpho Blue deployment metadata and vault snapshots via the Grimoire CLI.

Weekly installs
999
Community vote
0
0 up / 0 down
Freshness
Synced Apr 30, 2026
Software EngineeringFrontend and DesignNo reviews yetSource franalgaba/grimoire
sickn33/antigravity-awesome-skills/Software Engineering

conversation-memory

Persistent memory systems for LLM conversations with tiered storage and intelligent retrieval.

Weekly installs
998
Community vote
0
0 up / 0 down
Freshness
Synced Apr 30, 2026
Software EngineeringFrontend and DesignNo reviews yetSource sickn33/antigravity-awesome-skills
nicholasspisak/second-brain/Software Engineering

second-brain-ingest

Process raw source documents into structured, interlinked wiki pages.

Weekly installs
998
Community vote
0
0 up / 0 down
Freshness
Synced Apr 30, 2026
Software EngineeringWriting and ContentNo reviews yetSource nicholasspisak/second-brain
aahl/skills/Software Engineering

zai-tts

High-quality text-to-speech audio generation using GLM-TTS with customizable voices and playback parameters.

Weekly installs
998
Community vote
0
0 up / 0 down
Freshness
Synced Apr 30, 2026
Software EngineeringFrontend and DesignNo reviews yetSource aahl/skills