Static Vulnerability Analysis
About
This skill performs static vulnerability analysis by examining source code without execution to identify security flaws. It combines automated pattern matching with manual code review to find issues like memory safety problems and logic flaws. Use it when source code is available, before dynamic testing, or during security code reviews for languages including C/C++, Java, Python, JavaScript, and PHP.
Quick Install
Claude Code
Recommendednpx skills add macaugh/super-rouge-hunter-skills -a claude-code/plugin add https://github.com/macaugh/super-rouge-hunter-skillsgit clone https://github.com/macaugh/super-rouge-hunter-skills.git ~/.claude/skills/Static Vulnerability AnalysisCopy and paste this command in Claude Code to install this skill
GitHub Repository
Frequently asked questions
What is the Static Vulnerability Analysis skill?
Static Vulnerability Analysis is a Claude Skill by macaugh. Skills package instructions and resources that Claude loads on demand, so Claude can perform Static Vulnerability Analysis-related tasks without extra prompting.
How do I install Static Vulnerability Analysis?
Use the install commands on this page: add Static Vulnerability Analysis to Claude Code as a plugin, or clone its repository into your skills directory, then restart Claude so it picks up the skill.
What category does Static Vulnerability Analysis belong to?
Static Vulnerability Analysis is in the Development category, tagged general.
Is Static Vulnerability Analysis free to use?
Yes. Static Vulnerability Analysis is listed on AIMCP and free to install. It runs inside Claude, so no separate service account is required to use the skill itself.
Related Skills
qmd is a local search and indexing CLI tool that enables developers to index and search through local files using hybrid search combining BM25, vector embeddings, and reranking. It supports both command-line usage and MCP (Model Context Protocol) mode for integration with Claude. The tool uses Ollama for embeddings and stores indexes locally, making it ideal for searching documentation or codebases directly from the terminal.
This skill executes implementation plans by dispatching a fresh subagent for each independent task, with code review between tasks. It enables fast iteration while maintaining quality gates through this review process. Use it when working on mostly independent tasks within the same session to ensure continuous progress with built-in quality checks.
The mcporter skill enables developers to manage and call Model Context Protocol (MCP) servers directly from Claude. It provides commands to list available servers, call their tools with arguments, and handle authentication and daemon lifecycle. Use this skill for integrating and testing MCP server functionality in your development workflow.
This skill deploys and orchestrates Vertex AI ADK agents using A2A protocol, managing AgentCard discovery, task submission, and supporting tools like Code Execution Sandbox and Memory Bank. It enables building multi-agent systems with sequential, parallel, or loop orchestration patterns in Python, Java, or Go. Use it when asked to deploy ADK agents or orchestrate agent workflows on Google Cloud.
