Claude Code security workflows
Security commands, hooks, rules, MCP servers, and skills for auditing code, checking risky changes, and tightening agent behavior.
Security commands, hooks, rules, MCP servers, and skills for auditing code, checking risky changes, and tightening agent behavior.
Compared at a glance
The top 5 picks side by side on trust, install, platform support, and disclosed notes — full rationale for each below.
2 trust signals differ across this comparison (Package trust, Source provenance).
Next steps differ across picks — use the actions in the table below to copy install commands and source links per resource.
| Field | Build layered defenses against prompt injection, data exfiltration, and unsafe tool execution in AI agent systems. Open dossier | Comprehensive security audit with vulnerability detection, threat analysis, and automated remediation recommendations Open dossier | Configure Claude as a security expert for vulnerability assessment, penetration testing, and security best practices Open dossier | Automated security vulnerability scanning that integrates with development workflow to detect and prevent security issues before deployment. Open dossier | Expert code-review capability pack for deterministic PR audits, risk-ranked findings, and low-noise fix planning without SaaS lock-in. Open dossier |
|---|---|---|---|---|---|
| Next stepsDiffers | |||||
| Trust | |||||
| Review status | ReviewedMaintainer reviewed | ReviewedMaintainer reviewed | ReviewedMaintainer reviewed | ReviewedMaintainer reviewed | ReviewedMaintainer reviewed |
| Package trustDiffers | Package verified2026-04-10 | Package not verified | Package not verified | Package not verified | Package verified2026-04-11 |
| Source provenanceDiffers | No submission link | Source-backed | Source-backed | Source-backed | No submission link |
| Submitter | — | — | — | — | — |
| Install risk | Low risk | Review first | Review first | Review first | Low risk |
| Notes | Safety ✓ Privacy ✓ | Safety ✓ Privacy ✓ | Safety ✓ Privacy ✓ | Safety ✓ Privacy ✓ | Safety ✓ Privacy ✓ |
| Brand | — | — | — | — | — |
| Category | skills | commands | rules | hooks | skills |
| Source | First-party | Source-backed | Source-backed | Source-backed | First-party |
| Author | JSONbored | JSONbored | JSONbored | JSONbored | JSONbored |
| Added | 2026-04-10 | 2025-09-16 | 2025-09-15 | 2025-09-16 | 2026-04-11 |
| Platforms | |||||
| Harness | |||||
| Source repo | — | — | — | — | — |
| Safety notes | ✓Treat findings and generated mitigations as review inputs; validate suspected vulnerabilities and patches before changing production controls. Coordinate disclosure-sensitive security work privately and avoid running destructive probes outside authorized systems. | ✓Review generated changes and commands before applying them; slash commands can ask the agent to read, write, edit, or run tools in the current project. Limit scope to the intended files and run in a trusted checkout when the command analyzes code, tests, security findings, or generated output. | ✓Only assess, scan, or test systems you own or are explicitly authorized to test; unauthorized penetration testing or exploitation is illegal. Treat any active scanning, exploitation, or DAST tooling as potentially destructive; run it against staging or scoped targets, never production without written authorization. Vulnerability findings and exploit details are sensitive; handle and disclose them responsibly rather than committing live exploits or unredacted reports. | ✓Runs automatically after write, edit, or multiedit activity and invokes installed security tools against the touched file. May run truffleHog, Semgrep, npm audit, Bandit, or gosec depending on the file type and tools available. Treats scanner findings as warnings and does not guarantee that code is safe or unsafe. | ✓Installs from a downloaded package and may run local commands or scaffold files as part of the workflow; review the package and any generated changes before applying. |
| Privacy notes | ✓Security prompts and reports can include source snippets, vulnerability details, internal URLs, dependency metadata, and operational context. Redact secrets, customer data, exploit details, private infrastructure names, and unreleased findings before sharing outputs publicly. | ✓Prompts, source files, logs, errors, dependency metadata, and generated reports may be sent to the configured AI model during command execution. Redact secrets, customer data, private repository details, and proprietary code before sharing command output outside the workspace. | ✓Security review reads source code, configuration, environment files, and logs that can contain secrets, API keys, tokens, credentials, and PII. Do not paste discovered secrets, customer data, or internal log contents into shared chats, issues, or public notes; redact before reporting. Scanned outputs and incident artifacts may carry user data subject to GDPR/CCPA; store and transmit them only through approved, access-controlled channels. | ✓Reads modified file contents for security scanning and prints scanner output to local hook output. Semgrep and package audit commands may contact external rule, registry, or advisory services depending on local tool configuration. Scanner output may include file paths, code snippets, dependency names, and suspected secrets. | ✓Operates on your local project files and any context you share in the session; review what you expose before sharing — nothing is sent beyond the model unless a step calls an external service. |
| Prerequisites |
| — none listed | — none listed | — none listed |
|
| Install | | | — | | |
| Config | — | — | — | | — |
| Citations | |||||
| Claim | Unclaimed | Unclaimed | Unclaimed | Unclaimed | Unclaimed |
- 01
Prompt Injection Defense Guardrails Skill
Implement practical prompt injection defenses with policy gates, tool constraints, and adversarial test cases.
Level:advancedType:generalVerified:draftAdded 3mo agoSafety ✓ Privacy ✓by JSONboredWhy it made the cutPrompt Injection Defense Guardrails Skill is included because it has maintainer-built package, safety notes present, privacy notes present, first-party source posture.
- 02
/security - Vulnerability Scan Command for Claude Code
Comprehensive security audit with vulnerability detection, threat analysis, and automated remediation recommendations
Invocation:/security [options] <file_or_project>Added 10mo agoSafety ✓ Privacy ✓by JSONboredWhy it made the cut/security - Vulnerability Scan Command for Claude Code is included because it has safety notes present, privacy notes present, source-backed source posture.
Reach for insteadIf this will touch credentials, local files, or production systems, inspect the upstream source first.
- 03
Security Auditor Expert - CLAUDE.md Rules for Claude Code
Configure Claude as a security expert for vulnerability assessment, penetration testing, and security best practices
Added 10mo agoSafety ✓ Privacy ✓by JSONboredWhy it made the cutSecurity Auditor Expert - CLAUDE.md Rules for Claude Code is included because it has safety notes present, privacy notes present, source-backed source posture.
Reach for insteadIf this will touch credentials, local files, or production systems, inspect the upstream source first.
- 04
Security Scanner Hook - Hooks
Automated security vulnerability scanning that integrates with development workflow to detect and prevent security issues before deployment.
Trigger:PostToolUseAdded 10mo agoSafety ✓ Privacy ✓by JSONboredWhy it made the cutSecurity Scanner Hook - Hooks is included because it has safety notes present, privacy notes present, source-backed source posture.
Reach for insteadIf this will touch credentials, local files, or production systems, inspect the upstream source first.
- 05
Code Review Automation Capability Pack Skill
Run a local, repeatable PR review loop with severity scoring, false-positive control, and fix-ready output.
Level:expertType:capability-packVerified:validatedAdded 3mo agoSafety ✓ Privacy ✓by JSONboredWhy it made the cutCode Review Automation Capability Pack Skill is included because it has maintainer-built package, safety notes present, privacy notes present, first-party source posture.
- 06
MCP Server Authoring Security Capability Pack Skill
MCP server skill for secure tool design, authorization boundaries, contract stability, and production safety controls.
Level:expertType:capability-packVerified:validatedAdded 3mo agoSafety ✓ Privacy ✓by JSONboredWhy it made the cutMCP Server Authoring Security Capability Pack Skill is included because it has maintainer-built package, safety notes present, privacy notes present, first-party source posture.
- 07
Ethereum Base Smart Contract Security Capability Pack Skill
Deep smart contract security skill covering Solidity design, test rigor, deployment hygiene, and post-launch risk controls.
Level:expertType:capability-packVerified:validatedAdded 3mo agoSafety ✓ Privacy ✓by JSONboredWhy it made the cutEthereum Base Smart Contract Security Capability Pack Skill is included because it has maintainer-built package, safety notes present, privacy notes present, first-party source posture.
- 08
MCP Server Security Hardening Skill
Harden Model Context Protocol servers with practical controls for auth, tool scope, input validation, and supply-chain risk.
Level:advancedType:generalVerified:draftAdded 3mo agoSafety ✓ Privacy ✓by JSONboredWhy it made the cutMCP Server Security Hardening Skill is included because it has maintainer-built package, safety notes present, privacy notes present, first-party source posture.
- 09
n8n Production Security Capability Pack Skill
Deep n8n production security skill for safe AI workflows, credential protection, and incident-ready operations.
Level:expertType:capability-packVerified:validatedAdded 3mo agoSafety ✓ Privacy ✓by JSONboredWhy it made the cutn8n Production Security Capability Pack Skill is included because it has maintainer-built package, safety notes present, privacy notes present, first-party source posture.
- 10
Socket MCP Server for Claude
Security analysis and vulnerability scanning for dependencies
Added 10mo agoSafety ✓ Privacy ✓by SocketWhy it made the cutSocket MCP Server for Claude is included because it has maintainer-built package, safety notes present, privacy notes present, first-party source posture.
- 11
AWS CloudTrail MCP Server
Connect Claude to AWS CloudTrail to look up account events, analyze user activity, track API calls, and run CloudTrail Lake SQL for audits.
Added 28d agoSafety ✓ Privacy ✓by AWS Labs · submitted by jaso0n0818Why it made the cutAWS CloudTrail MCP Server is included because it has safety notes present, privacy notes present, source-backed source posture.
Reach for insteadIf this will touch credentials, local files, or production systems, inspect the upstream source first.
- 12
Prompt-Injection Content Scanner - Claude Code Hook
Warn or block when generated prompt/context files contain common instruction-override, secret-exfiltration, or hidden-command patterns.
Trigger:PreToolUseAdded 1mo agoSafety ✓ Privacy ✓by MkDev11Why it made the cutPrompt-Injection Content Scanner - Claude Code Hook is included because it has safety notes present, privacy notes present, source-backed source posture.
Reach for insteadIf this will touch credentials, local files, or production systems, inspect the upstream source first.
- 13
Cloudflare MCP Server - MCP Servers
Build applications, analyze traffic, and manage security settings through Cloudflare
Added 10mo agoSafety ✓ Privacy ✓by CloudflareWhy it made the cutCloudflare MCP Server - MCP Servers is included because it has maintainer-built package, safety notes present, privacy notes present, first-party source posture.
- 14
Ethereum Solidity Security Foundry Skill
Smart contract development skill focused on secure Solidity architecture, testing rigor, and safer deployment practices.
Level:advancedType:generalVerified:draftAdded 3mo agoSafety ✓ Privacy ✓by JSONboredWhy it made the cutEthereum Solidity Security Foundry Skill is included because it has maintainer-built package, safety notes present, privacy notes present, first-party source posture.
- 15
GitHub Actions Secure CI/CD Capability Pack Skill
Deep CI/CD security and reliability skill for GitHub Actions with reusable workflows, policy checks, and hardened automation patterns.
Level:expertType:capability-packVerified:validatedAdded 3mo agoSafety ✓ Privacy ✓by JSONboredWhy it made the cutGitHub Actions Secure CI/CD Capability Pack Skill is included because it has maintainer-built package, safety notes present, privacy notes present, first-party source posture.
- 16
OpenClaw Agent Ops Hardening Skill
Production hardening for OpenClaw deployments, including permissions, network segmentation, and abuse-resistant agent controls.
Level:advancedType:generalVerified:draftAdded 3mo agoSafety ✓ Privacy ✓by JSONboredWhy it made the cutOpenClaw Agent Ops Hardening Skill is included because it has maintainer-built package, safety notes present, privacy notes present, first-party source posture.
- 17
OpenClaw Operator Capability Pack Skill
Deep operational OpenClaw skill for maintaining secure, reliable, and cost-aware multi-agent systems.
Level:expertType:capability-packVerified:validatedAdded 3mo agoSafety ✓ Privacy ✓by JSONboredWhy it made the cutOpenClaw Operator Capability Pack Skill is included because it has maintainer-built package, safety notes present, privacy notes present, first-party source posture.
- 18
Stytch MCP Server for Claude
Configure and manage Stytch authentication services and workspace settings
Added 10mo agoSafety ✓ Privacy ✓by StytchWhy it made the cutStytch MCP Server for Claude is included because it has maintainer-built package, safety notes present, privacy notes present, first-party source posture.
Missing a pick? Propose an edit to this list — every change goes through the same review queue as new entries.
Suggest a pickGet the weekly brief
One calm read on Claude workflows. Sundays. No tracking pixels.
Unsubscribe any time. No tracking pixels. No partner blasts.