From security
Runs a fast, zero-dependency security scan checking for secret patterns, file permissions, .gitignore coverage, tracked .env files, and debug flags in configs. Supports --json and --verbose flags.
How this command is triggered — by the user, by Claude, or both
Slash command
/security:quickThis command is limited to the following tools:
The summary Claude sees in its command listing — used to decide when to auto-load this command
# Security Quick Scan Fast security scan using only built-in native scanners. No external tools required. > **Semantic code review?** For SQL injection, XSS, authorization, and insecure > credential handling, use Claude Code's native **`/security-review`**. This > command covers the *deterministic* complement - fast secret and config checks > with zero dependencies. ## Arguments - `--json` - Output as JSON - `--verbose` - Show additional details ## What's Checked - `.gitignore` coverage for sensitive file patterns - File permissions on secrets/keys - High-confidence secret patterns in...
Fast security scan using only built-in native scanners. No external tools required.
Semantic code review? For SQL injection, XSS, authorization, and insecure credential handling, use Claude Code's native
/security-review. This command covers the deterministic complement - fast secret and config checks with zero dependencies.
--json - Output as JSON--verbose - Show additional details.gitignore coverage for sensitive file patterns.env files tracked by git/flow:finish)PYTHONPATH="${HOME}/Projects/claude-power-pack/lib" python3 -m lib.security quick
npx claudepluginhub cooneycw/claude-power-pack --plugin security/scanScans codebase for security vulnerabilities, hardcoded secrets, insecure patterns, and web security headers. Generates Markdown report with issues, code snippets, and remediation examples.
/security-scanScans codebase for vulnerabilities, hardcoded secrets, OWASP Top 10 compliance, and security best practices violations. Produces report with issues and fix recommendations.
/guardRuns manual security and quality scan on specified files/directories or git changes, producing categorized report of critical findings, warnings, and info.
/kasi-securityRuns security audit on project codebase: detects stack (PHP/Node/Python/etc.), loads checklist, scans files for SQLi/XSS/CSRF/auth bypass/etc., outputs prioritized findings with confidence labels.
/scanRuns a multi-surface security scanner (SCA, secrets, authz, MCP, pipeline, logic, diff) with focused modes and supplementary output blocks. Exit codes convey severity.
/quickExecutes a quick task with atomic commits and state tracking, skipping optional research and discussion. Supports list, status, and resume subcommands for managing in-session tasks.