Anssol
Back to Skills
Security & Testing

Trail of Bits Security

Static-analysis skills with CodeQL/Semgrep, variant analysis, and fix verification.

securitystatic-analysisaudit

Trail of Bits Skills Marketplace

A Claude Code plugin marketplace from Trail of Bits providing skills to enhance AI-assisted security analysis, testing, and development workflows. Codex can load this marketplace through its Claude marketplace compatibility.

Also see: claude-code-config · skills-curated · claude-code-devcontainer · dropkit

Installation

Claude Code Marketplace

/plugin marketplace add trailofbits/skills

Browse and Install Plugins

/plugin menu

Codex

Codex supports Claude plugin marketplaces directly, so this repository does not need Codex-specific sidecar metadata.

Install the marketplace with:

codex plugin marketplace add trailofbits/skills
codex plugin list
codex plugin add <plugin-name>@trailofbits

Local Development

To add the marketplace locally (e.g., for testing or development), navigate to the parent directory of this repository:

cd /path/to/parent  # e.g., if repo is at ~/projects/skills, be in ~/projects
/plugins marketplace add ./skills

Available Plugins

Smart Contract Security

PluginDescription
building-secure-contractsSmart contract security toolkit with vulnerability scanners for 6 blockchains
entry-point-analyzerIdentify state-changing entry points in smart contracts for security auditing

Code Auditing

PluginDescription
agentic-actions-auditorAudit GitHub Actions workflows for AI agent security vulnerabilities
audit-context-buildingBuild deep architectural context through ultra-granular code analysis
burpsuite-project-parserSearch and extract data from Burp Suite project files
c-reviewComprehensive C/C++ security review with clustered parallel workers and SARIF output
differential-reviewSecurity-focused differential review of code changes with git history analysis
dimensional-analysisAnnotate codebases with dimensional analysis comments to detect unit mismatches and formula bugs
fp-checkSystematic false positive verification for security bug analysis with mandatory gate reviews
insecure-defaultsDetect insecure default configurations, hardcoded credentials, and fail-open security patterns
rust-reviewComprehensive Rust security review covering safe/unsafe boundary, memory safety, concurrency, panic-DoS, FFI, and async runtime with SARIF output
semgrep-rule-creatorCreate and refine Semgrep rules for custom vulnerability detection
semgrep-rule-variant-creatorPort existing Semgrep rules to new target languages with test-driven validation
sharp-edgesIdentify error-prone APIs, dangerous configurations, and footgun designs
static-analysisStatic analysis toolkit with CodeQL, Semgrep, and SARIF parsing
supply-chain-risk-auditorAudit supply-chain threat landscape of project dependencies
testing-handbook-skillsSkills from the Testing Handbook: fuzzers, static analysis, sanitizers, coverage
trailmarkCode graph analysis, Mermaid diagrams, mutation testing triage, and protocol verification
variant-analysisFind similar vulnerabilities across codebases using pattern-based analysis

Malware Analysis

PluginDescription
yara-authoringYARA detection rule authoring with linting, atom analysis, and best practices

Verification

PluginDescription
constant-time-analysisDetect compiler-induced timing side-channels in cryptographic code
mutation-testingConfigure mewt/muton mutation testing campaigns — scope targets, tune timeouts, optimize long runs
property-based-testingProperty-based testing guidance for multiple languages and smart contracts
spec-to-code-complianceSpecification-to-code compliance checker for blockchain audits
zeroize-auditDetect missing or compiler-eliminated zeroization of secrets in C/C++ and Rust

Reverse Engineering

PluginDescription
dwarf-expertInteract with and understand the DWARF debugging format

Mobile Security

PluginDescription
firebase-apk-scannerScan Android APKs for Firebase security misconfigurations

Development

PluginDescription
ask-questions-if-underspecifiedClarify requirements before implementing
devcontainer-setupCreate pre-configured devcontainers with Claude Code and language-specific tooling
gh-cliIntercept GitHub URL fetches and redirect to the authenticated gh CLI
git-cleanupSafely clean up git worktrees and local branches with gated confirmation workflow
let-fate-decideDraw Tarot cards using cryptographic randomness to add entropy to vague planning
modern-pythonModern Python tooling and best practices with uv, ruff, and pytest
seatbelt-sandboxerGenerate minimal macOS Seatbelt sandbox configurations
second-opinionRun code reviews using external LLM CLIs (OpenAI Codex, Google Gemini) on changes, diffs, or commits. Bundles Codex's built-in MCP server.
skill-improverIterative skill refinement loop using automated fix-review cycles
workflow-skill-designDesign patterns for workflow-based Claude Code skills with review agent

Team Management

PluginDescription
culture-indexInterpret Culture Index survey results for individuals and teams

Tooling

PluginDescription
claude-in-chrome-troubleshootingDiagnose and fix Claude in Chrome MCP extension connectivity issues

Infrastructure

PluginDescription
debug-buttercupDebug Buttercup Kubernetes deployments

Trophy Case

Bugs discovered using Trail of Bits Skills. Found something? Let us know!

When reporting bugs you've found, feel free to mention:

Found using Trail of Bits Skills

SkillBug
constant-time-analysisTiming side-channel in ML-DSA signing

Contributing

We welcome contributions! Please see CLAUDE.md for skill authoring guidelines.

License

This work is licensed under a Creative Commons Attribution-ShareAlike 4.0 International License. Made by Trail of Bits.

Want something like this for your team?

We build custom MCPs and Claude skills tailored to private workflows. Get in touch.

Start a Conversation

Ready to Ship Something?

Tell us about your project. We respond within one business day with honest scoping — not a sales pitch.

Get Started