SEAL Security Plugin

A Claude Code plugin based on the SEAL (Security Alliance) Frameworks that provides real-time security guidance, platform-specific hardening checklists, and hooks that block dangerous commands and secret exposure during development.

Skills:

• security-guidance — Comprehensive security advisor covering every SEAL domain: operational security, infrastructure, wallets, DevSecOps, monitoring, incident response, supply chain, and AI security
• security-checklist — 20+ platform-specific hardening checklists for Discord, GitHub, Telegram, Twitter/X, Signal, Slack, Vercel, GoDaddy, Notion, and more

Real-Time Hooks:

• security-guard — Intercepts every Bash command against 15 rules: blocks pipe-to-shell installs, chmod 777, force push to main, secret exposure, docker privileged mode, SSL verification disable
• secret-scanner — Scans every Write/Edit operation against 11 patterns detecting credentials, wallet keys, API tokens, webhook URLs, and database connection strings

Hook behavior is context-aware — .env files are warned but never blocked, warnings shown only once per session per file to avoid nagging.

Coverage Based on SEAL Frameworks: Operational security for 15+ platforms, DNS/DNSSEC and email hardening, hardware wallet and multisig best practices, CI/CD pipeline hardening and code signing, smart contract testing (fuzz, formal verification), incident response playbooks, and supply chain dependency pinning.