AgentReadyHomeAgent Listing

โ† Agent Listing

sast-configuration

Agent SkillsFreeOpen Source

Configure Semgrep, SonarQube, and CodeQL SAST scanning and custom rules in CI/CD.

๐Ÿ›ก๏ธ AgentReady threat assessment

MAESTRO 7-layer threat model + OWASP AIVSS risk score for sast-configuration, derived from its capabilities.

AIVSS 8.4 ยท High
View MAESTRO 7-layer threat model โ†’

Overview

An Agent Skill that guides the agent to set up static application security testing: Semgrep, SonarQube, and CodeQL configuration, custom rule authoring, quality gates, and false-positive tuning. It injects DevSecOps pipeline patterns and can compose multiple SAST tools for defense-in-depth.

Key features

Use cases