From e6f4700969c0e79895a0ed6e23e232f2092cf873 Mon Sep 17 00:00:00 2001 From: Zhongwei Li Date: Sun, 30 Nov 2025 08:22:04 +0800 Subject: [PATCH] Initial commit --- .claude-plugin/plugin.json | 15 +++++ README.md | 3 + commands/scan-privacy.md | 8 +++ plugin.lock.json | 61 +++++++++++++++++++ skills/data-privacy-scanner/SKILL.md | 52 ++++++++++++++++ skills/data-privacy-scanner/assets/README.md | 7 +++ .../data-privacy-scanner/references/README.md | 7 +++ skills/data-privacy-scanner/scripts/README.md | 7 +++ 8 files changed, 160 insertions(+) create mode 100644 .claude-plugin/plugin.json create mode 100644 README.md create mode 100644 commands/scan-privacy.md create mode 100644 plugin.lock.json create mode 100644 skills/data-privacy-scanner/SKILL.md create mode 100644 skills/data-privacy-scanner/assets/README.md create mode 100644 skills/data-privacy-scanner/references/README.md create mode 100644 skills/data-privacy-scanner/scripts/README.md diff --git a/.claude-plugin/plugin.json b/.claude-plugin/plugin.json new file mode 100644 index 0000000..a2682fe --- /dev/null +++ b/.claude-plugin/plugin.json @@ -0,0 +1,15 @@ +{ + "name": "data-privacy-scanner", + "description": "Scan for data privacy issues", + "version": "1.0.0", + "author": { + "name": "Jeremy Longshore", + "email": "[email protected]" + }, + "skills": [ + "./skills" + ], + "commands": [ + "./commands" + ] +} \ No newline at end of file diff --git a/README.md b/README.md new file mode 100644 index 0000000..3d09a97 --- /dev/null +++ b/README.md @@ -0,0 +1,3 @@ +# data-privacy-scanner + +Scan for data privacy issues diff --git a/commands/scan-privacy.md b/commands/scan-privacy.md new file mode 100644 index 0000000..205880e --- /dev/null +++ b/commands/scan-privacy.md @@ -0,0 +1,8 @@ +--- +description: DESCRIPTION_PLACEHOLDER +shortcut: SHORTCUT_PLACEHOLDER +--- + +# TITLE_PLACEHOLDER + +CONTENT_PLACEHOLDER diff --git a/plugin.lock.json b/plugin.lock.json new file mode 100644 index 0000000..fad8d7a --- /dev/null +++ b/plugin.lock.json @@ -0,0 +1,61 @@ +{ + "$schema": "internal://schemas/plugin.lock.v1.json", + "pluginId": "gh:jeremylongshore/claude-code-plugins-plus:plugins/security/data-privacy-scanner", + "normalized": { + "repo": null, + "ref": "refs/tags/v20251128.0", + "commit": "146740ccf69273dfb849680a78ec68ccc747824c", + "treeHash": "352385952c11914677bc98e66faceacbd00011f85bbe38de9435c2317bf0a326", + "generatedAt": "2025-11-28T10:18:17.408380Z", + "toolVersion": "publish_plugins.py@0.2.0" + }, + "origin": { + "remote": "git@github.com:zhongweili/42plugin-data.git", + "branch": "master", + "commit": "aa1497ed0949fd50e99e70d6324a29c5b34f9390", + "repoRoot": "/Users/zhongweili/projects/openmind/42plugin-data" + }, + "manifest": { + "name": "data-privacy-scanner", + "description": "Scan for data privacy issues", + "version": "1.0.0" + }, + "content": { + "files": [ + { + "path": "README.md", + "sha256": "83e9d459fcd35ffcc4277b9ae337512bf904f65551860ce6f55aec5b753e948d" + }, + { + "path": ".claude-plugin/plugin.json", + "sha256": "4e5c3b046dd433e5b63ea0842a10c8f343a87ef7919b60c2af39ccd10c257145" + }, + { + "path": "commands/scan-privacy.md", + "sha256": "26981dafecd0bda9d89082c091325c9fdc3ac197318243e952dde0b1a38f4088" + }, + { + "path": "skills/data-privacy-scanner/SKILL.md", + "sha256": "48368c88fde4b46edd248c2ae66913c452cd989ee345b718c68bad54fa3866cb" + }, + { + "path": "skills/data-privacy-scanner/references/README.md", + "sha256": "f270a399cfa727368fb46834c07322536b09b0e0bcb2ef4ced68d35e7085f380" + }, + { + "path": "skills/data-privacy-scanner/scripts/README.md", + "sha256": "66e11d59702c4df57fa16a33b51e098f37fc3d5f01a1d305026942a61c5a526a" + }, + { + "path": "skills/data-privacy-scanner/assets/README.md", + "sha256": "28b3999555fe214bb165d74210b0e1dbf523125ba4556712794e618b6e66db34" + } + ], + "dirSha256": "352385952c11914677bc98e66faceacbd00011f85bbe38de9435c2317bf0a326" + }, + "security": { + "scannedAt": null, + "scannerVersion": null, + "flags": [] + } +} \ No newline at end of file diff --git a/skills/data-privacy-scanner/SKILL.md b/skills/data-privacy-scanner/SKILL.md new file mode 100644 index 0000000..fbf4be5 --- /dev/null +++ b/skills/data-privacy-scanner/SKILL.md @@ -0,0 +1,52 @@ +--- +name: scanning-for-data-privacy-issues +description: | + This skill enables Claude to automatically scan code and configuration files for potential data privacy vulnerabilities using the data-privacy-scanner plugin. It identifies sensitive data exposure, compliance violations, and other privacy-related risks. Use this skill when the user requests to "scan for data privacy issues", "check privacy compliance", "find PII leaks", "identify GDPR violations", or needs a "privacy audit" of their codebase. The skill is most effective when used on projects involving personal data, financial information, or health records. +allowed-tools: Read, Write, Edit, Grep, Glob, Bash +version: 1.0.0 +--- + +## Overview + +This skill automates the process of identifying data privacy risks within a codebase. By leveraging the data-privacy-scanner plugin, Claude can quickly pinpoint potential vulnerabilities, helping developers proactively address compliance requirements and protect sensitive user data. + +## How It Works + +1. **Initiate Scan**: Upon detecting a privacy-related trigger phrase, Claude activates the data-privacy-scanner plugin. +2. **Analyze Codebase**: The plugin analyzes the specified files or the entire project for potential data privacy violations. +3. **Report Findings**: The plugin generates a detailed report outlining identified risks, including the location of the vulnerability and a description of the potential impact. + +## When to Use This Skill + +This skill activates when you need to: +- Identify potential data privacy vulnerabilities in a codebase. +- Ensure compliance with data privacy regulations such as GDPR, CCPA, or HIPAA. +- Perform a privacy audit of a project involving sensitive user data. + +## Examples + +### Example 1: Identifying PII Leaks + +User request: "Scan this project for PII leaks." + +The skill will: +1. Activate the data-privacy-scanner plugin to analyze the project. +2. Generate a report highlighting potential Personally Identifiable Information (PII) leaks, such as exposed email addresses or phone numbers. + +### Example 2: Checking GDPR Compliance + +User request: "Check this configuration file for GDPR compliance issues." + +The skill will: +1. Activate the data-privacy-scanner plugin to analyze the specified configuration file. +2. Generate a report identifying potential GDPR violations, such as insufficient data anonymization or improper consent management. + +## Best Practices + +- **Scope**: Specify the relevant files or directories to narrow the scope of the scan and improve performance. +- **Context**: Provide context about the type of data being processed to help the plugin identify relevant privacy risks. +- **Review**: Carefully review the generated report to understand the identified vulnerabilities and implement appropriate remediation measures. + +## Integration + +This skill can be integrated with other security and compliance tools to provide a comprehensive approach to data privacy. For example, it can be combined with vulnerability scanning tools to identify related security risks or with reporting tools to track progress on remediation efforts. \ No newline at end of file diff --git a/skills/data-privacy-scanner/assets/README.md b/skills/data-privacy-scanner/assets/README.md new file mode 100644 index 0000000..268adb9 --- /dev/null +++ b/skills/data-privacy-scanner/assets/README.md @@ -0,0 +1,7 @@ +# Assets + +Bundled resources for data-privacy-scanner skill + +- [ ] report_template.md: A Markdown template for generating data privacy scan reports. +- [ ] example_config.yaml: Example configuration file for the data-privacy-scanner tool. +- [ ] sample_code_with_pii.py: A code sample containing PII (Personally Identifiable Information) to demonstrate the scanner's capabilities. diff --git a/skills/data-privacy-scanner/references/README.md b/skills/data-privacy-scanner/references/README.md new file mode 100644 index 0000000..8ac702a --- /dev/null +++ b/skills/data-privacy-scanner/references/README.md @@ -0,0 +1,7 @@ +# References + +Bundled resources for data-privacy-scanner skill + +- [ ] data_privacy_scanner_api.md: Detailed API documentation for the data-privacy-scanner tool, including parameters, response formats, and error codes. +- [ ] gdpr_compliance_guide.md: A guide to GDPR compliance, outlining key requirements and how the data privacy scanner can help meet them. +- [ ] sensitive_data_patterns.md: A list of common sensitive data patterns (e.g., credit card numbers, social security numbers) used by the scanner. diff --git a/skills/data-privacy-scanner/scripts/README.md b/skills/data-privacy-scanner/scripts/README.md new file mode 100644 index 0000000..4cc1f46 --- /dev/null +++ b/skills/data-privacy-scanner/scripts/README.md @@ -0,0 +1,7 @@ +# Scripts + +Bundled resources for data-privacy-scanner skill + +- [ ] data_privacy_scan.py: Script to execute the data privacy scan with configurable parameters and output formatting. +- [ ] report_formatter.py: Script to format the scan results into a user-friendly report (e.g., Markdown, JSON). +- [ ] config_validator.py: Script to validate the configuration files used by the data privacy scanner tool.