/sentinel:scan

Full Security Scan

Combines Semgrep static analysis and dependency audit. Writes findings to tasks-plans/tasks.md with severity mapping.

What it does

OWASP Top 10 coverage

Framework-specific checks (React Server Components, Supabase service_role misuse)

Severity: Critical → High → Moderate mapping

Other Sentinel skills

/sentinel:assessSecurity AssessmentAssesses your project's security surface — detects stack, package managers, security tooling, and integrations. Generates config for ongoing scanning.

/sentinel:audit-depsDependency CVE AuditFocused vulnerability audit. Reports CVEs with installed/fixed versions and exact upgrade commands.

/sentinel:headersHTTP Security HeadersAnalyzes security headers for a given URL. Context-aware grading based on exploitable risk, not checkbox compliance.

/sentinel:package-riskPackage Risk AnalysisAnalyzes an installed package's source code for suspicious behavior patterns — eval calls, network requests, environment access, and obfuscation.

Get Started Back to Sentinel