ReddRadar
Agent skill
security-check
セキュリティスキャン実行。gitleaks、pre-commitフック、秘密情報検出。トリガー: security, gitleaks, pre-commit, secrets, scan
Install this agent skill to your Project
npx add-skill https://github.com/majiayu000/claude-skill-registry/tree/main/skills/data/security-check
SKILL.md
security-check スキル
dotfilesリポジトリのセキュリティスキャンを実行する。
利用可能なコマンド
gitleaksスキャン(全ファイル)
cd /Users/snkrheadz/ghq/github.com/snkrheadz/laptop && gitleaks detect --source=. --no-git -v
gitleaksスキャン(Git履歴込み)
cd /Users/snkrheadz/ghq/github.com/snkrheadz/laptop && gitleaks detect --source=. -v
pre-commitフック実行
cd /Users/snkrheadz/ghq/github.com/snkrheadz/laptop && pre-commit run --all-files
pre-commit特定フック実行
cd /Users/snkrheadz/ghq/github.com/snkrheadz/laptop && pre-commit run gitleaks --all-files
cd /Users/snkrheadz/ghq/github.com/snkrheadz/laptop && pre-commit run trailing-whitespace --all-files
cd /Users/snkrheadz/ghq/github.com/snkrheadz/laptop && pre-commit run detect-private-key --all-files
pre-commitフックインストール
cd /Users/snkrheadz/ghq/github.com/snkrheadz/laptop && pre-commit install
pre-commitフック更新
cd /Users/snkrheadz/ghq/github.com/snkrheadz/laptop && pre-commit autoupdate
設定ファイル確認
cat /Users/snkrheadz/ghq/github.com/snkrheadz/laptop/.gitleaks.toml
cat /Users/snkrheadz/ghq/github.com/snkrheadz/laptop/.pre-commit-config.yaml
secrets.env確認(存在のみ)
ls -la ~/.secrets.env
実行フロー
フルセキュリティチェック
- gitleaksスキャン実行
- pre-commit全フック実行
- 結果サマリーを報告
問題が見つかった場合
- 検出された問題の詳細を報告
- 該当ファイル・行を特定
- 修正方法を提案
使用例
- "セキュリティチェックを実行"
- "gitleaksスキャン"
- "pre-commitを実行"
- "秘密情報がないか確認"
- "セキュリティ設定を確認"
設定されているpre-commitフック
| フック | 内容 |
|---|---|
trailing-whitespace |
行末空白チェック |
end-of-file-fixer |
ファイル末尾改行 |
check-yaml |
YAML構文チェック |
check-added-large-files |
大きなファイル検出(500KB超) |
detect-private-key |
秘密鍵検出 |
check-merge-conflict |
マージコンフリクトマーカー検出 |
gitleaks |
秘密情報スキャン |
注意事項
- gitleaksで検出された場合はコミット前に修正が必要
- 秘密情報は
~/.secrets.envに移動(gitignore済み) .gitleaks.tomlで許可リスト設定可能
Recommended Agent Skills
Expand your agent's capabilities with these related and highly-rated skills.
majiayu000/claude-skill-registry
agent-ops-spec
Manage specification documents in .agent/specs/. Use when user provides requirements, acceptance criteria, or feature descriptions that need to be tracked and validated against implementation.
majiayu000/claude-skill-registry
agent-ops-state
Maintain .agent state files. Use at session start, after meaningful steps, and before concluding: read/update constitution/memory/focus/issues/baseline consistently.
majiayu000/claude-skill-registry
agent-ops-spec
Manage specification documents in .agent/specs/. Use when user provides requirements, acceptance criteria, or feature descriptions that need to be tracked and validated against implementation.
majiayu000/claude-skill-registry
agent-ops-testing
Test strategy, execution, and coverage analysis. Use when designing tests, running test suites, or analyzing test results beyond baseline checks.
majiayu000/claude-skill-registry
agent-ops-testing
Test strategy, execution, and coverage analysis. Use when designing tests, running test suites, or analyzing test results beyond baseline checks.
majiayu000/claude-skill-registry
agent-ops-state
Maintain .agent state files. Use at session start, after meaningful steps, and before concluding: read/update constitution/memory/focus/issues/baseline consistently.
Didn't find tool you were looking for?