← Back to Skills

Convex Security Check

🌐Community
by waynesutton · vlatest · Repository

Analyzes code and infrastructure configurations for convexity vulnerabilities to proactively prevent financial exploits.

Install on your platform

We auto-selected Claude Code based on this skill’s supported platforms.

1

Run in terminal (recommended)

terminal
claude mcp add convex-security-check npx -- -y @trustedskills/convex-security-check
2

Or manually add to ~/.claude/settings.json

~/.claude/settings.json
{
  "mcpServers": {
    "convex-security-check": {
      "command": "npx",
      "args": [
        "-y",
        "@trustedskills/convex-security-check"
      ]
    }
  }
}

Requires Claude Code (claude CLI). Run claude --version to verify your install.

About This Skill

What it does

The convex-security-check skill performs automated security audits on codebases, identifying vulnerabilities such as insecure dependencies, misconfigurations, and potential injection attacks. It integrates with popular code repositories and provides actionable insights to improve overall system resilience.

When to use it

  • Before deploying a new application to production
  • After updating third-party libraries or frameworks
  • During routine security assessments of existing systems
  • When onboarding new developers to review code quality

Key capabilities

  • Scans for known vulnerabilities in dependencies
  • Detects common misconfigurations in environment files
  • Identifies potential SQL injection and XSS risks
  • Integrates with CI/CD pipelines for automated checks

Example prompts

  • "Run a security audit on the latest commit of our main branch."
  • "Check for insecure dependencies in the package.json file."
  • "Identify any misconfigurations in the .env files across all environments."

Tips & gotchas

Ensure that your code repositories are accessible to the skill, and grant it appropriate permissions. While it provides strong detection capabilities, manual review is still recommended for critical systems.

View Repository →

Tags

🛡️

TrustedSkills Verification

Unlike other registries that point to live repositories, TrustedSkills pins every skill to a verified commit hash. This protects you from malicious updates — what you install today is exactly what was reviewed and verified.

Security Audits

Gen Agent Trust HubPass
SocketPass
SnykPass

Details

Version
vlatest
License
Author
waynesutton
Installs
1.1k
Repository (canonical source) →

🌐 Community

Passed automated security scans.