Security Scan

1---2name: security-scan3description: Scan your Claude Code configuration (.claude/ directory) for security vulnerabilities, misconfigurations, and injection risks using AgentShield. Checks CLAUDE.md, settings.json, MCP servers, hooks, and agent definitions.4origin: ECC5---6 7# Security Scan Skill8 9Audit your Claude Code configuration for security issues using [AgentShield](https://github.com/affaan-m/agentshield).10 11## When to Activate12 13- Setting up a new Claude Code project14- After modifying `.claude/settings.json`, `CLAUDE.md`, or MCP configs15- Before committing configuration changes16- When onboarding to a new repository with existing Claude Code configs17- Periodic security hygiene checks18 19## What It Scans20 21| File | Checks |22|------|--------|23| `CLAUDE.md` | Hardcoded secrets, auto-run instructions, prompt injection patterns |24| `settings.json` | Overly permissive allow lists, missing deny lists, dangerous bypass flags |25| `mcp.json` | Risky MCP servers, hardcoded env secrets, npx supply chain risks |26| `hooks/` | Command injection via interpolation, data exfiltration, silent error suppression |27| `agents/*.md` | Unrestricted tool access, prompt injection surface, missing model specs |28 29## Prerequisites30 31AgentShield must be installed. Check and install if needed:32 33```bash34# Check if installed35npx ecc-agentshield --version36 37# Install globally (recommended)38npm install -g ecc-agentshield39 40# Or run directly via npx (no install needed)41npx ecc-agentshield scan .42```43 44## Usage45 46### Basic Scan47 48Run against the current project's `.claude/` directory:49 50```bash51# Scan current project52npx ecc-agentshield scan53 54# Scan a specific path55npx ecc-agentshield scan --path /path/to/.claude56 57# Scan with minimum severity filter58npx ecc-agentshield scan --min-severity medium59```60 61### Output Formats62 63```bash64# Terminal output (default) — colored report with grade65npx ecc-agentshield scan66 67# JSON — for CI/CD integration68npx ecc-agentshield scan --format json69 70# Markdown — for documentation71npx ecc-agentshield scan --format markdown72 73# HTML — self-contained dark-theme report74npx ecc-agentshield scan --format html > security-report.html75```76 77### Auto-Fix78 79Apply safe fixes automatically (only fixes marked as auto-fixable):80 81```bash82npx ecc-agentshield scan --fix83```84 85This will:86- Replace hardcoded secrets with environment variable references87- Tighten wildcard permissions to scoped alternatives88- Never modify manual-only suggestions89 90### Opus 4.6 Deep Analysis91 92Run the adversarial three-agent pipeline for deeper analysis:93 94```bash95# Requires ANTHROPIC_API_KEY96export ANTHROPIC_API_KEY=your-key97npx ecc-agentshield scan --opus --stream98```99 100This runs:1011. **Attacker (Red Team)** — finds attack vectors1022. **Defender (Blue Team)** — recommends hardening1033. **Auditor (Final Verdict)** — synthesizes both perspectives104 105### Initialize Secure Config106 107Scaffold a new secure `.claude/` configuration from scratch:108 109```bash110npx ecc-agentshield init111```112 113Creates:114- `settings.json` with scoped permissions and deny list115- `CLAUDE.md` with security best practices116- `mcp.json` placeholder117 118### GitHub Action119 120Add to your CI pipeline:121 122```yaml123- uses: affaan-m/agentshield@v1124  with:125    path: '.'126    min-severity: 'medium'127    fail-on-findings: true128```129 130## Severity Levels131 132| Grade | Score | Meaning |133|-------|-------|---------|134| A | 90-100 | Secure configuration |135| B | 75-89 | Minor issues |136| C | 60-74 | Needs attention |137| D | 40-59 | Significant risks |138| F | 0-39 | Critical vulnerabilities |139 140## Interpreting Results141 142### Critical Findings (fix immediately)143- Hardcoded API keys or tokens in config files144- `Bash(*)` in the allow list (unrestricted shell access)145- Command injection in hooks via `${file}` interpolation146- Shell-running MCP servers147 148### High Findings (fix before production)149- Auto-run instructions in CLAUDE.md (prompt injection vector)150- Missing deny lists in permissions151- Agents with unnecessary Bash access152 153### Medium Findings (recommended)154- Silent error suppression in hooks (`2>/dev/null`, `|| true`)155- Missing PreToolUse security hooks156- `npx -y` auto-install in MCP server configs157 158### Info Findings (awareness)159- Missing descriptions on MCP servers160- Prohibitive instructions correctly flagged as good practice161 162## Links163 164- **GitHub**: [github.com/affaan-m/agentshield](https://github.com/affaan-m/agentshield)165- **npm**: [npmjs.com/package/ecc-agentshield](https://www.npmjs.com/package/ecc-agentshield)