Initial commit
This commit is contained in:
Zhongwei Li
52
skills/data-privacy-scanner/SKILL.md
Normal file
52
skills/data-privacy-scanner/SKILL.md
Normal file
@@ -0,0 +1,52 @@
|
||||
---
|
||||
name: scanning-for-data-privacy-issues
|
||||
description: |
|
||||
This skill enables Claude to automatically scan code and configuration files for potential data privacy vulnerabilities using the data-privacy-scanner plugin. It identifies sensitive data exposure, compliance violations, and other privacy-related risks. Use this skill when the user requests to "scan for data privacy issues", "check privacy compliance", "find PII leaks", "identify GDPR violations", or needs a "privacy audit" of their codebase. The skill is most effective when used on projects involving personal data, financial information, or health records.
|
||||
allowed-tools: Read, Write, Edit, Grep, Glob, Bash
|
||||
version: 1.0.0
|
||||
---
|
||||
|
||||
## Overview
|
||||
|
||||
This skill automates the process of identifying data privacy risks within a codebase. By leveraging the data-privacy-scanner plugin, Claude can quickly pinpoint potential vulnerabilities, helping developers proactively address compliance requirements and protect sensitive user data.
|
||||
|
||||
## How It Works
|
||||
|
||||
1. **Initiate Scan**: Upon detecting a privacy-related trigger phrase, Claude activates the data-privacy-scanner plugin.
|
||||
2. **Analyze Codebase**: The plugin analyzes the specified files or the entire project for potential data privacy violations.
|
||||
3. **Report Findings**: The plugin generates a detailed report outlining identified risks, including the location of the vulnerability and a description of the potential impact.
|
||||
|
||||
## When to Use This Skill
|
||||
|
||||
This skill activates when you need to:
|
||||
- Identify potential data privacy vulnerabilities in a codebase.
|
||||
- Ensure compliance with data privacy regulations such as GDPR, CCPA, or HIPAA.
|
||||
- Perform a privacy audit of a project involving sensitive user data.
|
||||
|
||||
## Examples
|
||||
|
||||
### Example 1: Identifying PII Leaks
|
||||
|
||||
User request: "Scan this project for PII leaks."
|
||||
|
||||
The skill will:
|
||||
1. Activate the data-privacy-scanner plugin to analyze the project.
|
||||
2. Generate a report highlighting potential Personally Identifiable Information (PII) leaks, such as exposed email addresses or phone numbers.
|
||||
|
||||
### Example 2: Checking GDPR Compliance
|
||||
|
||||
User request: "Check this configuration file for GDPR compliance issues."
|
||||
|
||||
The skill will:
|
||||
1. Activate the data-privacy-scanner plugin to analyze the specified configuration file.
|
||||
2. Generate a report identifying potential GDPR violations, such as insufficient data anonymization or improper consent management.
|
||||
|
||||
## Best Practices
|
||||
|
||||
- **Scope**: Specify the relevant files or directories to narrow the scope of the scan and improve performance.
|
||||
- **Context**: Provide context about the type of data being processed to help the plugin identify relevant privacy risks.
|
||||
- **Review**: Carefully review the generated report to understand the identified vulnerabilities and implement appropriate remediation measures.
|
||||
|
||||
## Integration
|
||||
|
||||
This skill can be integrated with other security and compliance tools to provide a comprehensive approach to data privacy. For example, it can be combined with vulnerability scanning tools to identify related security risks or with reporting tools to track progress on remediation efforts.
|
||||
7
skills/data-privacy-scanner/assets/README.md
Normal file
7
skills/data-privacy-scanner/assets/README.md
Normal file
@@ -0,0 +1,7 @@
|
||||
# Assets
|
||||
|
||||
Bundled resources for data-privacy-scanner skill
|
||||
|
||||
- [ ] report_template.md: A Markdown template for generating data privacy scan reports.
|
||||
- [ ] example_config.yaml: Example configuration file for the data-privacy-scanner tool.
|
||||
- [ ] sample_code_with_pii.py: A code sample containing PII (Personally Identifiable Information) to demonstrate the scanner's capabilities.
|
||||
7
skills/data-privacy-scanner/references/README.md
Normal file
7
skills/data-privacy-scanner/references/README.md
Normal file
@@ -0,0 +1,7 @@
|
||||
# References
|
||||
|
||||
Bundled resources for data-privacy-scanner skill
|
||||
|
||||
- [ ] data_privacy_scanner_api.md: Detailed API documentation for the data-privacy-scanner tool, including parameters, response formats, and error codes.
|
||||
- [ ] gdpr_compliance_guide.md: A guide to GDPR compliance, outlining key requirements and how the data privacy scanner can help meet them.
|
||||
- [ ] sensitive_data_patterns.md: A list of common sensitive data patterns (e.g., credit card numbers, social security numbers) used by the scanner.
|
||||
7
skills/data-privacy-scanner/scripts/README.md
Normal file
7
skills/data-privacy-scanner/scripts/README.md
Normal file
@@ -0,0 +1,7 @@
|
||||
# Scripts
|
||||
|
||||
Bundled resources for data-privacy-scanner skill
|
||||
|
||||
- [ ] data_privacy_scan.py: Script to execute the data privacy scan with configurable parameters and output formatting.
|
||||
- [ ] report_formatter.py: Script to format the scan results into a user-friendly report (e.g., Markdown, JSON).
|
||||
- [ ] config_validator.py: Script to validate the configuration files used by the data privacy scanner tool.
|
||||
Reference in New Issue
Block a user