--- id: manual-trail-of-bits-security name: "Trail of Bits Security" nameZh: "Trail of Bits 安全审查" sourceCategory: "Security Skill" sourceCategoryZh: "Security Skill" url: "https://github.com/majiayu000/claude-skill-registry/tree/main/skills/data/claude-tob-review" sourceUrl: "https://github.com/majiayu000/claude-skill-registry" tags: ["CodeQL","Semgrep","Security"] tagsZh: ["CodeQL","Semgrep","安全"] categorySlugs: ["security","dev","testing"] --- # Trail of Bits Security 中文名称:Trail of Bits 安全审查 ## Description Runs CodeQL and Semgrep analysis for vulnerability detection. 运行 CodeQL 和 Semgrep 分析,用于漏洞检测。 ## 中文说明 运行 CodeQL 和 Semgrep 分析,用于漏洞检测。 - 打开或安装 Skill:https://github.com/majiayu000/claude-skill-registry/tree/main/skills/data/claude-tob-review - 查看原始来源:https://github.com/majiayu000/claude-skill-registry - 分类:security, dev, testing - 标签:CodeQL、Semgrep、安全 ## Use This Skill - Open or install the skill from: https://github.com/majiayu000/claude-skill-registry/tree/main/skills/data/claude-tob-review - Review the original source: https://github.com/majiayu000/claude-skill-registry - Categories: security, dev, testing - Tags: CodeQL, Semgrep, Security - 中文标签:CodeQL、Semgrep、安全 ## README SEO Report ### Detailed Overview Use this skill for deep Solidity smart contract security analysis using Trail of Bits methodologies. ### Installation No explicit installation section was found in the archived README. Open the original source for the official setup path; the download button provides the local Markdown copy saved by EasyGlobe. ### Usage - Reviewing new or modified Solidity contracts - Before deploying contract upgrades - Security audit preparation - Finding vulnerability variants ### Capabilities Primary workflow coverage: security, dev, testing. ### Source Archive - Archive source type: github - Primary README/SKILL doc: github/skills/data/claude-tob-review/SKILL.md - Archived docs: github/skills/data/claude-tob-review/SKILL.md, github/skills/data/claude-tob-review/metadata.json ## 3W FAQ ### What is this skill? Runs CodeQL and Semgrep analysis for vulnerability detection. ### Who is this skill for? This skill is for teams or AI agents working on security, dev, testing workflows. ### When should you use it? Use it when the task matches these tags: CodeQL, Semgrep, Security. ## 中文 3W FAQ ### What:这个 skill 是什么? 运行 CodeQL 和 Semgrep 分析,用于漏洞检测。 ### Who:适合谁使用? 适合处理 security、dev、testing 工作流的团队、运营人员、开发者或 AI Agent。 ### When:什么时候使用? 当任务涉及 CodeQL、Semgrep、安全,或需要沉淀为 Claude Skills、Codex Skills、Gemini Skills、Kimi Skills、GLM Skills 或团队 SOP 时使用。