gadievron/raptor

A security skill that puts Claude on top of static-analysis tooling like Semgrep to scan codebases for vulnerabilities and triage the findings.

3.3k stars 533 forksLicense: OtherUpdated 2026-07-17
Securitysecuritysemgrepscanningvulnerabilities
View on GitHub

Why it matters

Static analyzers surface a lot of noise, and reading their output is its own skill. Raptor wires Claude into scanners such as Semgrep so it can run them and then reason about which findings actually matter, cutting the triage burden. For developers who want vulnerability scanning with an analyst attached, it combines automated detection with judgment.

Use cases

  • Scan a codebase for vulnerabilities using Semgrep
  • Triage static-analysis findings with an agent’s help
  • Prioritize real issues over scanner false positives
  • Add automated security review to a project

Quickstart

git clone https://github.com/gadievron/raptor.git

Related repositories

SimoneAvogadroSecurity

android-reverse-engineering-skill

A skill that walks Claude through reverse-engineering Android applications — unpacking APKs, reading decompiled code, and reasoning about app behavior.

6.4k 711
androidreverse-engineeringmobilesecurity
trailofbitsSecurity

skills

Security-focused skills from Trail of Bits, packaging the firm’s auditing and analysis practices for Claude Code as an installable marketplace.

6.2k 541
securityauditanalysistrusted

Maintain this repo? Submit an update.

Submit an update