Stats
Actions
Tags
'%20stop-opacity%3D'0.16'%2F%3E%3Cstop%20offset%3D'1'%20stop-color%3D'rgb(200%2C90%2C60)'%20stop-opacity%3D'0.03'%2F%3E%3C%2FlinearGradient%3E%3C%2Fdefs%3E%3Crect%20width%3D'320'%20height%3D'200'%20fill%3D'url(%23g)'%2F%3E%3Ccircle%20cx%3D'250'%20cy%3D'56'%20r%3D'92'%20fill%3D'rgb(200%2C90%2C60)'%20fill-opacity%3D'0.06'%2F%3E%3Ccircle%20cx%3D'64'%20cy%3D'172'%20r%3D'58'%20fill%3D'rgb(200%2C90%2C60)'%20fill-opacity%3D'0.05'%2F%3E%3C%2Fsvg%3E)
From aikido
Lists, counts, summarizes, or triages security issues from the Aikido security feed including vulnerabilities, leaked secrets, SAST/IaC/SCA results, cloud/container issues, and EOL/license/malware alerts.
How this skill is triggered — by the user, by Claude, or both
Slash command
/aikido:issuesThe summary Claude sees in its skill listing — used to decide when to auto-load this skill
When listing Aikido feed issues:
When listing Aikido feed issues:
cloud_name, repo_name, vm_name, domain_name, container_name.issue_types (array): open_source, leaked_secret, cloud, sast, iac, surface_monitoring, malware, eol, mobile, docker_container, cloud_instance, scm_security, license, ai_pentest — e.g. include leaked_secret for secrets. Omit when no category filter is needed.page only when the user needs more than the first page of results (zero-indexed). Only 25 findings are reported per page. Report to the user if there are more findings on following pages.#):
Issue #1: <issue_title>
- Issue type: <issue_type>
- Severity: <issue_severity>
- Remediation: <issue_remediation>
If the Aikido MCP server is not available or fails, inform the user:
The Aikido MCP server is required for Aikido feed issues but is not available. Install it following the setup guide at reference.md, or run
/aikido:setup, then retry.
npx claudepluginhub aikidosec/aikido-claude-plugin --plugin aikidoInvestigate vulnerable images in a Sysdig-monitored environment. Fetches and ranks images by risk, lets the user choose a focus (zero-day, critical in-use, exposed, all), builds a remediation plan, optionally creates a tracking ticket (Jira / Linear / GitHub Projects) using Sysdig-side signals to determine the assignee, and hands off to /sysdig-remediate. Triggers on: "investigate", "what should I fix", "show me vulnerable images", "prioritize vulnerabilities", "/sysdig-investigate".
Pulls AWS Security Agent findings (penetration tests and code reviews) and drives remediation. Discovers scans, exports findings to a gitignored local directory, produces a prioritized triage summary, and offers to fix the highest-risk issues.
Reviews SentinelOne XSPM misconfigurations across AWS, Azure, GCP, Kubernetes, identity, and IaC. Covers detection, compliance standards, MITRE ATT&CK mappings, remediation steps, evidence, and MSP posture workflows.