securevibes-scanner
Run AI-powered application security scans on codebases.
Setup & Installation
Install command
clawhub install anshumanbh/securevibes-scannerIf the CLI is not installed:
Install command
npx clawhub@latest install anshumanbh/securevibes-scannerOr install with OpenClaw CLI:
Install command
openclaw skills install anshumanbh/securevibes-scanneror paste the repo link into your assistant's chat
Install command
https://github.com/openclaw/skills/tree/main/skills/anshumanbh/securevibes-scannerWhat This Skill Does
SecureVibes Scanner runs AI-powered security scans on codebases using Claude. It executes a multi-phase pipeline covering architecture assessment, STRIDE threat modeling, code review, and report generation. Incremental mode tracks the last-scanned commit and only processes new changes, making it usable for continuous monitoring via cron.
Combines architecture assessment, threat modeling, static code review, and optional dynamic testing in one pipeline instead of requiring separate tools for each phase.
When to Use It
- Scanning a new codebase before shipping to production
- Running a threat model on a microservice or internal API
- Reviewing recent commits for newly introduced vulnerabilities
- Setting up automated security monitoring on a git repository
- Getting a severity-ranked security report before a pentest or audit
Example Workflow
Here's how your AI assistant might use this skill in practice.
User asks: Scanning a new codebase before shipping to production
- 1Scanning a new codebase before shipping to production
- 2Running a threat model on a microservice or internal API
- 3Reviewing recent commits for newly introduced vulnerabilities
- 4Setting up automated security monitoring on a git repository
- 5Getting a severity-ranked security report before a pentest or audit
Run AI-powered application security scans on codebases.
Security Audits
These signals reflect official OpenClaw status values. A Suspicious status means the skill should be used with extra caution.