Skip to content

ShiftLeftSecurity/skills

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits
skills
skills
 
 
README.md
README.md
 
 
VERSION
VERSION
 
 

Repository files navigation

Harness SAST and SCA Skills

Agent skills for Qwiet AI by Harness cloud security workflows.

Release

v0.0.51

Install this release:

npx skills add ShiftLeftSecurity/skills@v0.0.51 -g --skill '*'

Track master for the latest build:

npx skills add ShiftLeftSecurity/skills -g --skill '*'

Then run:

/setup-harness-code-security-mcp
/run-security-scan
/triage-vuln
/autofix-vuln

Included Skills

  • setup-harness-code-security-mcp - install and verify the harness-code-security-mcp MCP launcher.
  • run-security-scan - run sl analyze or package CVE lookup.
  • triage-vuln - list findings and fetch data flows.
  • autofix-vuln - request and apply Qwiet AutoFix recommendations.

MCP Runtime

These skills expect the harness-code-security-mcp MCP server. The recommended npm runtime for this skills release is:

npm install -g harness-code-security-mcp@0.1.0

The setup skill can run a doctor helper and print host-specific MCP config snippets. The harness-code-security-mcp launcher checks for updates at startup and falls back to the installed server if the registry or network is unavailable.

Credentials

Run sl auth before scanning so ~/.shiftleft/config.json contains orgId and accessToken.

Source

Published from the Harness SAST and SCA release pipeline. Do not hand-edit this repository; contribute skill changes upstream instead.

About

Harness Code Security Agent Skills

developer.harness.io/docs/sast-and-sca/

Resources

Readme
Activity
Custom properties

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

1 tags

Packages

 
 
 

Contributors

Languages