Hook

Security Scan Hook

Scan for secrets, vulnerabilities, and security issues before committing.

Install

Add to .claude/hooks/pre-commit-security.sh

About

Automatically scan code changes for security issues before they're committed. Detects hardcoded secrets (API keys, tokens, passwords), known vulnerability patterns, and insecure coding practices. Uses tools like gitleaks and semgrep under the hood. Prevents the most common security mistakes from entering your codebase.

Score Breakdown

CLI Score Breakdown8/11

✓Official SDK on npm/pip+2

✓Env var authentication (no browser OAuth)+2

✓Works in headless/CI environments+2

✗CLI tool available0

✓JSON response for piping/parsing+1

✓Docs have curl/CLI examples+1

✗Reasonable rate limits for scripted use0

✗Machine-readable pricing (md/JSON/static)0

Quality Score Breakdown

npm weekly downloads0

GitHub stars30k

Days since last release12d

Issue close ratio83%

TypeScript typesYes

Docs qualitygood

Breaking changesrare

Scores

CLI

Quality

AuthorCommunity

Weekly installs0

Last updated3/19/2026

View repository Report issue

HookVerified

0/wk

Pre-commit Lint Hook

Automatically lint and fix code before every commit.

CLI

Quality

Add to .claude/hooks/pre-commit.sh

HookVerified

0/wk

Test on Change Hook

Automatically run relevant tests when source files change.

CLI

Quality

Add to .claude/hooks/post-edit.sh

Hook

0/wk

Notification Hook

Send Slack or desktop notifications when long-running tasks complete.

CLI

Quality

Add to .claude/hooks/post-task.sh

Security Scan Hook

About

Tags

Score Breakdown

Scores

Related

Pre-commit Lint Hook

Test on Change Hook

Notification Hook