← Back to Skills

Prowler Commit

🌐Community
by prowler-cloud · vlatest · Repository

This skill uses Prowler to identify and report security misconfigurations in your cloud infrastructure commits, proactively safeguarding against vulnerabilities.

Install on your platform

We auto-selected Claude Code based on this skill’s supported platforms.

1

Run in terminal (recommended)

terminal
claude mcp add prowler-commit npx -- -y @trustedskills/prowler-commit
2

Or manually add to ~/.claude/settings.json

~/.claude/settings.json
{
  "mcpServers": {
    "prowler-commit": {
      "command": "npx",
      "args": [
        "-y",
        "@trustedskills/prowler-commit"
      ]
    }
  }
}

Requires Claude Code (claude CLI). Run claude --version to verify your install.

About This Skill

What it does

The Prowler Commit skill assists users in crafting well-formatted and secure Git commit messages when working with cloud infrastructure code. It guides the user through a structured workflow, ensuring adherence to conventional commits standards (type(scope): description), limiting line lengths, and requiring explicit confirmation before committing changes. This helps maintain a clear audit trail and proactively prevents potential security misconfigurations introduced via commits.

When to use it

  • When making changes to cloud infrastructure code that need to be committed to version control.
  • To ensure commit messages follow the conventional commits format for improved readability and automation.
  • Before committing significant changes, especially those related to security or critical functionality.
  • When needing a structured approach to documenting the purpose of your code modifications.

Key capabilities

  • Enforces conventional commits formatting (e.g., feat(api): description).
  • Limits commit title line length to 72 characters.
  • Requires user confirmation before committing changes, displaying files and proposed message.
  • Provides guidance on choosing appropriate commit types (feat, fix, docs, chore, etc.) and scopes (api, ui, sdk, mcp, skills, ci, docs).
  • Offers examples of good and bad commit titles and body content.

Example prompts

  • "Analyze my changes and draft a commit message."
  • "Show me the proposed commit message for these modifications."
  • "What type and scope should I use for this change?"

Tips & gotchas

  • The skill relies on you having already made code changes using git status or similar commands.
  • Adherence to the conventional commits format is required for optimal results. Deviations will likely result in warnings or errors.
  • Be mindful of keeping commit titles concise and avoiding overly specific details within them.
View Repository →

Tags

🛡️

TrustedSkills Verification

Unlike other registries that point to live repositories, TrustedSkills pins every skill to a verified commit hash. This protects you from malicious updates — what you install today is exactly what was reviewed and verified.

Security Audits

Gen Agent Trust HubPass
SocketPass
SnykPass

Details

Version
vlatest
License
Author
prowler-cloud
Installs
39
Repository (canonical source) →

🌐 Community

Passed automated security scans.