trail-of-bits
Security audits run by a real security firm. CodeQL + Semgrep + audit workflows.
Install
$ npx skills add trailofbits/skillsBest for
Pre-release vulnerability scans, ongoing security review.
About this skill
CodeQL + Semgrep static analysis, vulnerability detection, audit workflows from a top-tier security firm.
Score breakdown
Score breakdown
rubric 1.0Composite 0–100 score derived from 9 verifiable signals. See the rubric →
Related skills
Kubernetes hardening by the book. NetworkPolicies, RBAC, OPA, service mesh.
Real exploits, no false positives. 96.15% exploit success across 50+ vuln types.
Structured PR reviews with severity-tagged findings — bugs, security, perf, style.