npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@intentsolutionsio/security-pro-pack

v1.0.0

Published

Professional security tools for Claude Code: vulnerability scanning, compliance, cryptography audit, container & API security

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

intentsolutionsiointentsolutionsio

Keywords

securityvulnerability-scanningcompliancehipaapci-dssgdprsoc2cryptographycrypto-auditowasppenetration-testingcontainer-securitydocker-securityapi-securitythreat-modelingstridedevsecopsagent-skillsclaude-codeclaude-plugin

Readme

Security Pro Pack for Claude Code

Professional security tools for Claude Code developers

Version 1.0.0 | 10 Plugins | Security & Compliance Focus

Overview

The Security Pro Pack is a comprehensive collection of security-focused plugins for Claude Code, providing automated vulnerability scanning, compliance checking, cryptography review, and infrastructure security analysis.

Perfect for:

  • Security engineers and DevSecOps teams
  • Developers building secure applications
  • Companies preparing for compliance audits (HIPAA, PCI DSS, GDPR, SOC 2)
  • Organizations requiring security-first development practices

What's Included

Core Security (3 plugins)

  • Security Auditor Expert (Agent) - OWASP Top 10 vulnerability detection specialist
  • Penetration Tester (Agent) - Ethical hacking and offensive security expert
  • Security Scan Quick (Command, /ss) - Fast automated security scanning (2-5 min)

Compliance (2 plugins)

  • Compliance Checker (Agent) - Multi-framework regulatory compliance (HIPAA, PCI DSS, GDPR, SOC 2)
  • Compliance Docs Generate (Command, /cdg) - Automated compliance documentation generation

Cryptography (2 plugins)

  • Crypto Expert (Agent) - Cryptographic implementation specialist (AES, RSA, bcrypt, Argon2)
  • Crypto Audit (Command, /ca) - Automated cryptographic code review

Infrastructure Security (3 plugins)

  • Threat Modeler (Agent) - STRIDE threat modeling and architectural security
  • Docker Security Scan (Command, /dss) - Container vulnerability scanning
  • API Security Audit (Command, /asa) - REST/GraphQL API security testing

Total: 5 AI agents + 5 commands = 10 professional security tools

Quick Start

# Install the pack
claude plugin install security-pro-pack

# Run your first security scan
/ss

# Scan a Docker container
/dss nginx:latest

# Audit an API
/asa https://api.example.com

# Get OWASP Top 10 analysis
# In Claude Code session:
"Please use Security Auditor Expert to review this authentication code"

See QUICK_START.md for detailed walkthrough

Key Features

Automated Security Scanning

  • Detects hardcoded secrets (API keys, passwords, tokens)
  • Identifies known CVEs in dependencies
  • Finds security misconfigurations
  • Reports severity-rated findings (Critical → Low)
  • Provides actionable remediation steps

Compliance Made Easy

  • Generate audit-ready documentation in minutes
  • Multi-framework support (HIPAA, PCI DSS, GDPR, SOC 2)
  • Gap analysis against compliance requirements
  • Policy and procedure templates
  • Risk assessment frameworks

Cryptography Security

  • Reviews encryption implementations (AES, RSA, ECC)
  • Validates password hashing (Argon2, bcrypt)
  • Detects weak algorithms (MD5, SHA-1, DES)
  • Checks for hardcoded keys and IV reuse
  • TLS/SSL configuration analysis

Infrastructure Protection

  • STRIDE threat modeling for architectural security
  • Container security scanning (vulnerabilities, misconfigurations)
  • Docker image hardening recommendations
  • API security testing (OWASP API Top 10)
  • Kubernetes pod security analysis

Real-World Value

Time Savings

  • Quick Security Scan: 2-5 minutes (vs. 2-4 hours manual review)
  • Compliance Documentation: 15-30 minutes (vs. 40-80 hours)
  • Container Security: 5-10 minutes per image (vs. 1-2 hours)
  • API Security Audit: 15-30 minutes (vs. 4-8 hours)

Total time saved: 40-80 hours per month

Cost Savings

  • Replaces external security audit: $3,000-$5,000 per assessment
  • Compliance consultant savings: $15,000-$25,000 per framework
  • Prevents data breaches: Millions in potential losses
  • Avoids regulatory fines: $50,000+ per HIPAA violation, €20M GDPR fine

Risk Reduction

  • Identify vulnerabilities before attackers do
  • Achieve compliance before audits
  • Prevent data breaches and security incidents
  • Protect customer data and company reputation

Who Should Use This

Security Engineers

  • Automate security reviews
  • Scale security across teams
  • Implement security gates in CI/CD
  • Perform threat modeling efficiently

Development Teams

  • Shift security left (find issues early)
  • Learn security best practices
  • Meet compliance requirements
  • Ship secure code faster

Compliance Officers

  • Generate audit-ready documentation
  • Track compliance gaps
  • Prepare for regulatory audits
  • Maintain compliance posture

DevOps Teams

  • Secure container deployments
  • Harden Kubernetes configurations
  • Automate security scanning in pipelines
  • Monitor infrastructure security

Documentation

  • INSTALLATION.md - Complete installation guide
  • QUICK_START.md - Get started in 10 minutes
  • USE_CASES.md - 7 real-world scenarios
  • TROUBLESHOOTING.md - Common issues and solutions
  • README.md - This file

Requirements

  • Claude Code (latest version)
  • Optional: Docker (for container scanning)
  • Optional: Python 3.8+ (for advanced crypto features)
  • Optional: Node.js 16+ (for API testing)

Support

  • Email: [email protected]
  • GitHub Issues: https://github.com/jeremylongshore/claude-code-plugins/issues
  • Documentation: https://docs.claude-code-plugins.com/security-pro-pack
  • Discord: https://discord.gg/claude-code-plugins

License

Security Pro Pack is licensed for personal and commercial use. See LICENSE file for details.

Version History

v1.0.0 (October 10, 2025)

  • Initial release
  • 10 plugins (5 agents, 5 commands)
  • Full OWASP Top 10 coverage
  • Multi-framework compliance support
  • Complete documentation

Built with security in mind. Ship secure code with confidence.

Security Pro Pack Team