sast-bandit

Description

Python security vulnerability detection using Bandit SAST with CWE and OWASP mapping. Use when: (1) Scanning Python code for security vulnerabilities and anti-patterns, (2) Identifying hardcoded secrets, SQL injection, command injection, and insecure APIs, (3) Generating security reports with severity classifications for CI/CD pipelines, (4) Providing remediation guidance with security framework references, (5) Enforcing Python security best practices in development workflows.

Tool Access

Full access

Inherits all available tools

Supporting Files

4 files

Additional assets for this skill

Tool Access

This skill inherits all available tools. When active, it can use any tool Claude has access to.

Supporting Assets

assets/bandit_config.yaml

assets/pre-commit-config.yaml

references/cwe_owasp_mapping.md

references/remediation_guide.md

Links

GitHub Stats

0 forks

Updated 22 days ago

Related Skills

bash-defensive-patterns

22.8K

Master defensive Bash programming techniques for production-grade scripts. Use when writing robust shell scripts, CI/CD pipelines, or system utilities requiring fault tolerance and safety.

From shell-scripting

bats-testing-patterns

22.8K

Master Bash Automated Testing System (Bats) for comprehensive shell script testing. Use when writing tests for shell scripts, CI/CD pipelines, or requiring test-driven development of shell utilities.

From shell-scripting

shellcheck-configuration

22.8K

Master ShellCheck static analysis configuration and usage for shell script quality. Use when setting up linting infrastructure, fixing code issues, or ensuring script portability.

From shell-scripting