Skip to main content

/

/

Stats

Actions

Tags

Stats

Actions

Tags

ClaudePluginHub

Community directory for discovering and installing Claude Code plugins.

Find plugins for your project

AI-powered recommendations based on your stack.

Product

Browse Plugins
Marketplaces
Pricing
About
Contact

Resources

Learning Center
Blog
Weekly Digest
Claude Code Docs
Plugin Guide
Plugin Reference
Plugin Marketplaces

Community

Browse on GitHub
Get Support

Legal

Terms of Service
Privacy Policy

Browse · Plugins · Top Plugins · Marketplaces · Components · Technologies · Skills · Agents · Commands · Hooks · MCP Servers · LSP Servers · Output Styles · Themes · Monitors

Categories · Productivity · Development · Testing · Deployment · Security · Documentation · Data · Utilities

© 2025 ClaudePluginHub

Community Maintained · Not affiliated with Anthropic

ClaudePluginHub

ClaudePluginHub

Tools Learn Pricing

Search everything...

forerunner-audit | codeforerunner

Home
Skills
codeforerunner
forerunner-audit

Skill

forerunner-audit

From codeforerunner

Run a security and dependency audit against a repository. Use when the user wants a security review, dependency vulnerability check, or supply-chain audit.

Invocation

How this skill is triggered — by the user, by Claude, or both

Slash command

/codeforerunner:forerunner-audit

User invocable

Model invocable

Inline context

Default effort

Context Preview

The summary Claude sees in its skill listing — used to decide when to auto-load this skill

Produces a structured security and dependency audit report. Covers known vulnerability patterns, dependency hygiene, secret exposure risks, and supply-chain concerns.

SKILL.md

33 lines · ~365 tokens

Stats

LanguagePython

Stars0

MaintenanceExcellent

Last CommitJun 9, 2026

Actions

View Source View Plugin View on GitHub View README

Stats

LanguagePython

Stars0

MaintenanceExcellent

Last CommitJun 9, 2026

Actions

View Source View Plugin View on GitHub View README

forerunner-audit

Produces a structured security and dependency audit report. Covers known vulnerability patterns, dependency hygiene, secret exposure risks, and supply-chain concerns.

Activate when

User asks to: audit the repo, run a security check, check for vulnerabilities, review dependencies for security issues.

Collect this context

Scan result (run /forerunner-scan first)
All manifest and lockfiles: package.json, package-lock.json, yarn.lock, pyproject.toml, poetry.lock, requirements*.txt, go.mod, go.sum, Cargo.toml, Cargo.lock, Gemfile.lock
CI/CD workflow files
Dockerfile and compose files
.env.example or similar (never actual secret files)

Execute

Run forerunner generate --prompt-only audit — outputs the assembled prompt bundle to stdout. Read this output and execute the documentation task it describes.

Without CLI, get the prompt from:

src/codeforerunner/prompts/tasks/audit.md
src/codeforerunner/prompts/system/base.md

Output

Structured audit report covering: outdated/vulnerable dependencies, hardcoded secrets risk surface, CI security posture, supply-chain exposure. Severity-tagged findings (HIGH / MEDIUM / LOW). Write to docs/audit.md or return as Markdown.

$

npx claudepluginhub derek-palmer/codeforerunner --plugin codeforerunner

Similar Skills

context7-mcp

55.5k

Fetches up-to-date documentation from Context7 for libraries and frameworks like React, Next.js, Prisma. Use for setup questions, API references, and code examples.

context7-plugin

View context7-mcp

kyc-rules

27.8k

Applies a firm's KYC/AML rules grid to parsed onboarding records: assigns risk rating, checks required documents, outputs rule outcomes with citations, and routes for escalation.

digest

20.5k

Generates daily or weekly digests of activity from connected sources (chat, email, docs, tasks, CRM), highlighting action items, decisions, mentions, and project updates.

enterprise-search