lmiranda
32bbca73ba
Debug Report (/debug-report): - Add Step 1.5: Sprint context detection based on branch and milestone - Add Step 5: Smart labeling via suggest_labels MCP tool - Update issue creation to support milestone association Debug Review (/debug-review): - Add Step 9.5: Search lessons learned before proposing fixes - Add Step 15: Verify, close issue, and optionally capture lesson Hooks: - Simplify doc-guardian hook to be truly non-blocking (15 words max) - Update code-sentinel to skip docs/config files entirely Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
code-sentinel
Security scanning and code refactoring tools for Claude Code projects.
Features
Security Scanning
- PreToolUse Hook: Catches vulnerabilities BEFORE code is written
- Full Audit:
/security-scanfor comprehensive project review - Pattern Detection: SQL injection, XSS, command injection, secrets, and more
Refactoring
- Pattern Library: Extract method, simplify conditionals, modernize syntax
- Safe Transforms: Preview changes before applying
- Reference Updates: Automatically updates all call sites
Commands
| Command | Description |
|---|---|
/security-scan |
Full project security audit |
/refactor <target> |
Apply refactoring with pattern |
/refactor-dry <target> |
Preview opportunities without changes |
Hooks
- PreToolUse (Write|Edit): Scans code for security patterns before writing
Security Patterns Detected
| Category | Examples |
|---|---|
| Injection | SQL, Command, Code (eval), XSS |
| Secrets | Hardcoded API keys, passwords |
| Deserialization | Pickle, unsafe YAML |
| Path Traversal | Unsanitized file paths |
Installation
/plugin marketplace add https://gitea.hotserv.cloud/personal-projects/leo-claude-mktplace.git
/plugin install code-sentinel
Integration
See claude-md-integration.md for CLAUDE.md additions.