medusa-security
About
medusa-security is an AI-first security scanner that wraps the Medusa CLI to detect 3,000+ vulnerability patterns, including AI/ML, RAG, and prompt injection risks. It provides structured findings with OWASP mapping and remediation guidance. Use it for comprehensive pre-release scans, rapid AI-focused checks, or targeted scans of changed files during development.
Quick Install
Claude Code
Recommendednpx skills add oimiragieo/agent-studio -a claude-code/plugin add https://github.com/oimiragieo/agent-studiogit clone https://github.com/oimiragieo/agent-studio.git ~/.claude/skills/medusa-securityCopy and paste this command in Claude Code to install this skill
GitHub Repository
Frequently asked questions
What is the medusa-security skill?
medusa-security is a Claude Skill by oimiragieo. Skills package instructions and resources that Claude loads on demand, so Claude can perform medusa-security-related tasks without extra prompting.
How do I install medusa-security?
Use the install commands on this page: add medusa-security to Claude Code as a plugin, or clone its repository into your skills directory, then restart Claude so it picks up the skill.
What category does medusa-security belong to?
medusa-security is in the security category, tagged security, sast, ai-security, mcp-security, prompt-injection and vulnerability-scanning.
Is medusa-security free to use?
Yes. medusa-security is listed on AIMCP and free to install. It runs inside Claude, so no separate service account is required to use the skill itself.
Related Skills
This skill provides centralized JSON validation for the AGENT_SUCCESS_CRITERIA environment variable. It prevents injection attacks (CVSS 8.2) through defensive parsing and ensures consistent error handling across all agents. Use it when you need secure, validated parsing of success criteria in your Claude Code agents.
The `audit-expert` skill provides expert-level security auditing and compliance guidance for developers, specializing in code reviews, vulnerability assessments, and regulatory frameworks like SOC 2 and GDPR. It helps conduct security audits, analyze code for vulnerabilities, and ensure infrastructure compliance. Use this skill when you need to review code security, prepare for compliance audits, or assess your application against established security standards.
The audit-expert skill provides expert-level security auditing and compliance assessment for codebases and systems. It performs vulnerability assessments, code reviews, and checks against standards like SOC 2, GDPR, and OWASP ASVS. Use this skill for security analysis, regulatory compliance verification, and infrastructure configuration reviews during development.
The codeql-expert skill provides expert-level guidance for CodeQL static analysis, specializing in vulnerability detection, custom query development, and security code scanning. It helps developers integrate CodeQL into CI/CD pipelines and write custom QL queries for security, quality, and compliance analysis. Use this skill when you need to perform deep static analysis, identify security vulnerabilities in multiple languages, or set up automated security scanning in your development workflow.
