install
source · Clone the upstream repo
git clone https://github.com/ngapngap/AI-Agent-Toolkit
Claude Code · Install into ~/.claude/skills/
T=$(mktemp -d) && git clone --depth=1 https://github.com/ngapngap/AI-Agent-Toolkit "$T" && mkdir -p ~/.claude/skills && cp -r "$T/.agent/skills/debug-security" ~/.claude/skills/ngapngap-ai-agent-toolkit-debug-security && rm -rf "$T"
manifest:
.agent/skills/debug-security/SKILL.mdsource content
Debug-Security Skill
Overview
Debug root cause analysis and security review skill.
Modes
Debug Mode
- Triggered when QA Gate fails
- Performs root cause analysis
- Creates fix plan
Security Mode
- Triggered by user request or security issues
- Runs security scans
- Reviews dependencies
Usage
# Debug mode - analyze QA failures node .agent/skills/debug-security/scripts/debug.js --report report.json # Security mode - run security review node .agent/skills/debug-security/scripts/security.js --path ./src # Combined analysis node .agent/skills/debug-security/scripts/analyze.js --mode all
Debug Inputs
- QA report with failures60_verification/report.json- Test output logs
- Build error logs
Security Inputs
- Source code paths
- Dependency manifests (package.json, requirements.txt)
- Configuration files
Debug Outputs
60_verification/debug_report.md
Security Outputs
60_verification/security_review.md
Security Checks
| Check | Tool | Description |
|---|---|---|
| Secret Scan | gitleaks | Find committed secrets |
| Dependency Audit | npm audit / pip-audit | CVE detection |
| SAST | (optional) | Static analysis |
| License Check | license-checker | License compliance |
Commands
Run Secret Scan
node .agent/skills/debug-security/scripts/security.js secret-scan
Run Dependency Audit
node .agent/skills/debug-security/scripts/security.js dep-audit
Generate Security Review
node .agent/skills/debug-security/scripts/security.js review --output security_review.md
Integration
Used by
Debug/Security