Stats
Actions
Tags
From paladin
Configure Paladin for a repository by creating or updating PALADIN.md. Use when the user asks to set up Paladin, initialize Paladin config, configure review actions, choose One Horizon/Linear/Jira/email/custom destinations, or prepare a repo for Paladin security review.
How this skill is triggered — by the user, by Claude, or both
Slash command
/paladin:paladin-setupThe summary Claude sees in its skill listing — used to decide when to auto-load this skill
Create or update `PALADIN.md` in the current repository.
Create or update PALADIN.md in the current repository.
Collect only the slots required for the selected action.
| Slot | Required when | Allowed values or format |
|---|---|---|
target_repo | Always | Current working directory, unless the user names another repo |
existing_config | When PALADIN.md exists | Preserve unless the user asks to replace it |
paladin_conversion | Always | create_review_task, ask_first, report_only |
paladin_action_destination | When conversion is not report_only | one_horizon, linear, jira, email, custom |
paladin_custom_action | For linear, jira, email, or custom | One sentence with the exact handoff rule |
one_horizon_workspace_id | For One Horizon create or ask flows | Workspace ID from MCP or user input |
one_horizon_initiative_id | Optional | Initiative ID to link findings under |
one_horizon_team_ids | Optional | YAML array of team IDs |
one_horizon_assignee_ids | Optional | YAML array of user IDs |
paladin_source_list | Always | Default references/security-sources.md |
target_repo.PALADIN.md if it exists.paladin_conversion when it is missing or the user wants to change it.report_only, set paladin_action_destination: custom and paladin_custom_action: "", then skip destination setup.create_review_task or ask_first, ask for paladin_action_destination.one_horizon, run the One Horizon MCP check.linear, jira, email, or custom, ask for paladin_custom_action.Still needed.PALADIN.md.PALADIN.md and validate the frontmatter.Ask one question at a time. Do not ask for slots that are not needed for the selected action.
Use these questions when the answer is not already known from the request or existing config:
Which repo should I configure? I am currently in {cwd}.
After Paladin finds security work, should it create an item automatically, ask first, or only report?
Where should the item go: One Horizon, Linear, Jira, email, or a custom workflow?
What exact handoff should Paladin prepare for {destination}?
paladin_conversion to create_review_task only when the user wants setup and does not choose another action.paladin_action_destination to one_horizon only when conversion is create_review_task or ask_first.paladin_source_list to references/security-sources.md.[].When the selected destination is One Horizon:
mcp__onehorizon__ and mcp__codex_apps__one_horizon__.who_am_i or list_workspaces.one_horizon_workspace_id when presentOne Horizon is not configured in this session. Do you want to configure it now, choose another destination, or use report_only?
If the user wants to configure One Horizon now, explain that the One Horizon MCP/app connector must be enabled in the current agent environment. Do not fabricate MCP settings.
If the user does not want to configure One Horizon now, do not block setup. Write PALADIN.md with the destination and action they choose.
Keep frontmatter keys in this order:
---
paladin_conversion: {paladin_conversion}
paladin_action_destination: {paladin_action_destination}
paladin_custom_action: "{paladin_custom_action}"
paladin_source_list: {paladin_source_list}
one_horizon_workspace_id: "{one_horizon_workspace_id}"
one_horizon_initiative_id: "{one_horizon_initiative_id}"
one_horizon_team_ids: []
one_horizon_assignee_ids: []
---
For report_only, use:
paladin_conversion: report_only
paladin_action_destination: custom
paladin_custom_action: ""
PALADIN.md unless the user asks to replace it.PALADIN.md has YAML frontmatter, update only the Paladin keys unless the user asks for a rewrite.PALADIN.md has no YAML frontmatter, add the Paladin frontmatter at the top and preserve the body below it.# Paladin configuration
This file controls what Paladin does after it finds security work in this repo.
references/security-sources.md as the canonical source list.references/security-sources.md is missing in the target repo, locate the bundled Paladin source list by walking up from the current skill folder until both plugin.json and references/security-sources.md exist, then copy that file into the target repo. This is the only extra file setup should create..agents, .claude, and plugin installs.PALADIN.md and include the missing source list in Still needed.PALADIN.md and state what remains to configure.After writing, re-read PALADIN.md and verify:
paladin_conversion is one of create_review_task, ask_first, or report_onlypaladin_action_destination is one of one_horizon, linear, jira, email, or custompaladin_custom_action is present for linear, jira, email, and custom when conversion is not report_onlyone_horizon_workspace_id is present for One Horizon create or ask flows, or listed under Still neededStill neededKeep the final response short:
Configured Paladin for this repo.
- Action:
- Destination:
- Config file:
- Still needed:
Provides CDSS development patterns for drug interaction checking, dose validation, clinical scoring (NEWS2, qSOFA), and alert classification integrated into EMR workflows.
npx claudepluginhub onehorizonai/paladin --plugin paladin