Security Scanner

Name: Security Scanner
Author: matteocervelli

🌐Community

by matteocervelli · vlatest · Repository

Identifies potential vulnerabilities in web applications and code using comprehensive static and dynamic analysis techniques.

Install on your platform

We auto-selected Claude Code based on this skill’s supported platforms.

Run in terminal (recommended)

terminal

claude mcp add matteocervelli-security-scanner npx -- -y @trustedskills/matteocervelli-security-scanner

Or manually add to ~/.claude/settings.json

~/.claude/settings.json

{
  "mcpServers": {
    "matteocervelli-security-scanner": {
      "command": "npx",
      "args": [
        "-y",
        "@trustedskills/matteocervelli-security-scanner"
      ]
    }
  }
}

Requires Claude Code (claude CLI). Run claude --version to verify your install.

About This Skill

What it does

This skill performs vulnerability scanning on provided URLs. It identifies potential security weaknesses, such as common misconfigurations or exposed sensitive information. The scanner generates reports detailing discovered vulnerabilities and their severity levels to aid in remediation efforts.

When to use it

Website Security Audits: Regularly scan websites for known vulnerabilities before deployment or after significant changes.
Penetration Testing Support: Assist penetration testers by automating initial vulnerability discovery.
Security Awareness Training: Demonstrate potential attack vectors and educate developers on secure coding practices.
Compliance Checks: Verify adherence to security standards by scanning systems against established benchmarks.

Key capabilities

Vulnerability Scanning
Report Generation
Severity Level Assessment

Example prompts

"Scan the website at example.com for vulnerabilities and provide a report."
"Perform a security scan on this URL: https://www.insecure-website.org/login.php"
“Can you find any common misconfigurations on my web server located at 192.168.1.100?”

Tips & gotchas

The accuracy of the scan depends heavily on the target URL’s accessibility and configuration. Ensure the AI agent has network access to the target domain for optimal results.

View Repository →

TrustedSkills Verification

Unlike other registries that point to live repositories, TrustedSkills pins every skill to a verified commit hash. This protects you from malicious updates — what you install today is exactly what was reviewed and verified.

Security Audits

Gen Agent Trust Hub	Pass
Socket	Pass
Snyk	Pass

Details

Version: vlatest
License
Author: matteocervelli
Installs: 9

Repository (canonical source) →

🌐 Community

Passed automated security scans.