From fortify
Creates new Fortify applications in FoD or SSC by guiding through platform selection, naming, and idempotent creation with fcli.
How this skill is triggered — by the user, by Claude, or both
Slash command
/fortify:fortify-create-appThe summary Claude sees in its skill listing — used to decide when to auto-load this skill
Creating an app is a 3-step process. Work through steps in order — each step has a clear entry condition and output that feeds the next.
Creating an app is a 3-step process. Work through steps in order — each step has a clear entry condition and output that feeds the next.
Stay within the documented workflow. Do not proactively offer side-quests or capabilities that aren't part of the step you're in. If a step in this skill calls for it, do it; if not, don't surface it as an option. Eager suggestions waste the user's attention and lead them off the remediation path.
Use the
fortify-sscorfortify-fodskill to create new releases or application versions for existing applications.
Fortify on Demand (FoD) vs Software Security Center (SSC). If the user did not specify, run both session checks to determine which platform is active:
fcli fod session ls --query "expired=='No'"
fcli ssc session ls --query "expired=='No'"
fcli not found: You interact with Fortify using fcli. It must already be on the PATH. If it is not installed, load references/fcli-install.md.
Step 0 → Step 1 gate
If the user provided an explicit name for both the application and release/version, move on to Step 1b. If not, load reference/naming-conventions.md to determine the application and release/version names.
Use the one of following commands to check if the application already exists in the selected platform:
fcli fod app list --query "applicationName=='<name>'" -o json
fcli ssc app list --query "name=='<name>'" -o json
Step 1 → Step 2 gate Application and initial release/version names identified Application does not already exist
Load the reference file for your platform and follow it to create the application and initial version/release. The reference file covers naming convention inspection, idempotency checks, standard vs. microservice app paths (FoD), required attribute handling, and the pre-creation checklist.
references/fod-create-app.mdreferences/ssc-create-app.mdStep 2 → Completion gate Application created successfully
fcli-common — used for fcli installation checks and any shared fcli logicnpx claudepluginhub fortify/skills --plugin fortify-skillsCovers cross-product Fortify CLI (fcli) functionality: installation, session management, output formatting, SpEL queries, variable chaining, and custom action framework.
Orchestrates the full Falcon Foundry app lifecycle from requirements to deployment using the Foundry CLI. Handles scaffolding, validation, and deployment. Does not manage individual capabilities within an existing app.
Performs an automated white-box security review of Atlassian Forge apps with structured rules, static analysis, and evidence-driven reporting.