MCPxelMCPxel
Co-Pilot
Updated 24 days ago

security-agent-skills

HhackIDLE
0.0k
ethanolivertroy/security-agent-skills
80
Agent Score

💡 Summary

This skill analyzes service mesh configurations for security vulnerabilities and compliance.

🎯 Target Audience

DevSecOps engineersCloud architectsCompliance officersSecurity analystsSoftware developers

🤖 AI Roast:Powerful, but the setup might scare off the impatient.

Security AnalysisMedium Risk

Risk: Medium. Review: shell/CLI command execution; outbound network access (SSRF, data egress); filesystem read/write scope and path traversal; dependency pinning and supply-chain risk. Run with least privilege and audit before enabling in production.

hackIDLE Skills

A collection of security-focused agent skills from hackIDLE, following the Agent Skills open standard. These skills enable AI agents to perform security analysis, compliance assessments, and remediation tasks.

Available Skills

| Skill | Description | |-------|-------------| | mesh-security | Analyze Istio, Consul, and Linkerd service mesh configurations for security vulnerabilities with NIST 800-53 control mappings |

Installation

Quick Install (Recommended)

# Install all skills
npx add-skill hackIDLE/skills

# Or install a specific skill
npx add-skill hackIDLE/skills --skill mesh-security

# List available skills first
npx add-skill hackIDLE/skills --list

Global vs Project Installation

# Global (available in all projects)
npx add-skill -g hackIDLE/skills

# Project-level (in current directory)
npx add-skill hackIDLE/skills

Supported Agents

add-skill automatically detects and installs to:

  • Claude Code (~/.claude/skills/)
  • Cursor (~/.cursor/skills/)
  • Codex (~/.codex/skills/)
  • OpenCode (~/.config/opencode/skill/)
  • Gemini CLI
  • VS Code
  • GitHub Copilot
  • And more...

These skills follow the Agent Skills specification and work with any compatible agent platform.

Manual Installation

If you prefer manual installation:

# Clone the repo
git clone https://github.com/hackIDLE/skills.git hackidle-skills

# Copy skills to Claude Code
cp -r hackidle-skills/skills/* ~/.claude/skills/

# Install dependencies
cd ~/.claude/skills/mesh-security && npm install

Skills Overview

mesh-security

Comprehensive security analysis for service mesh configurations:

  • Supported Meshes: Istio, Consul, Linkerd
  • Security Checks: mTLS, RBAC/ACL, TLS settings, certificate management, traffic policies
  • Compliance: NIST 800-53 Rev 5 control mappings, FedRAMP reports
  • Output: Findings with severity levels, remediation guidance, compliance reports

Sub-skills included:

  • mesh-remediation - Generate and apply security fixes
  • mesh-compliance-reporter - Generate FedRAMP/NIST compliance reports

Quick Start:

# Analyze a mesh config
node ~/.claude/skills/mesh-security/lib/analyzer-wrapper.js ./istio-config.yaml

# Generate remediation plan
node ~/.claude/skills/mesh-security/lib/remediation-engine.js ./consul-config.json

# Create FedRAMP compliance report
node ~/.claude/skills/mesh-security/lib/report-generator.js ./linkerd-config.yaml --fedramp

Contributing

Contributions welcome! To add a new security skill:

  1. Create a new directory under skills/
  2. Add a SKILL.md following the specification
  3. Include any supporting scripts in lib/
  4. Add reference documentation in references/
  5. Submit a pull request

License

MIT License - see LICENSE for details.

Related Projects

5-Dim Analysis
Clarity8/10
Novelty8/10
Utility9/10
Completeness8/10
Maintainability7/10
Pros & Cons

Pros

  • Comprehensive security checks for multiple service meshes.
  • Supports compliance reporting with NIST and FedRAMP.
  • Easy installation and integration with various agents.

Cons

  • Limited to specific service meshes.
  • May require additional configuration for optimal use.
  • Dependency on external libraries for functionality.

Related Skills

constant-time-analysis

A
toolCode Lib
88/ 100

“It's a Swiss Army knife for finding timing leaks, but you'll need a PhD in compiler toolchains to set up all the language backends.”

View Analysis

burpsuite-project-parser

A
toolCo-Pilot
82/ 100

“Powerful, but the setup might scare off the impatient.”

View Analysis

semgrep-rule-creator

B
toolCo-Pilot
76/ 100

“It's like a GPS for writing regex, but for abstract syntax trees—still easy to get lost if you don't know the territory.”

View Analysis

Disclaimer: This content is sourced from GitHub open source projects for display and rating purposes only.

Copyright belongs to the original author hackIDLE.