Thanks to visit codestin.com
Credit goes to github.com

Skip to content

toasti1973/code-guardian

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

1 Commit
.eslint.code-guardian.json
.eslint.code-guardian.json
 
 
README.md
README.md
 
 
SKILL.md
SKILL.md
 
 

Repository files navigation

Code Guardian - OhMyOpenCode Skill

Performs quality control. Checks for security vulnerabilities, errors, and code quality using ESLint. Detects buffer overflow errors and validates input for validity and size.

Features

  • ESLint Analysis - Static code analysis for errors and best practices
  • Security Scanning - Detection of security vulnerabilities (SQL Injection, XSS, etc.)
  • Buffer Overflow Detection - Validate input sizes
  • Input Validation - Checks for missing length, type, and range validations

Installation

Automatic Installation (once published to OhMyOpenCode Skill Registry)

opencode skill install code-guardian

Manual Installation

  1. Clone this repository or copy the code-guardian folder to:

    • Project: .opencode/skills/code-guardian/
    • Global: ~/.config/opencode/skills/code-guardian/

  2. Install the required npm packages:

npm install --save-dev eslint @typescript-eslint/eslint-plugin @typescript-eslint/parser eslint-plugin-security

Usage

Load as Skill

task(
  load_skills=["code-guardian"],
  ...
)

Run ESLint Directly

# With config file
npx eslint --config .eslint.code-guardian.json --ext .ts,.js,.tsx,.jsx .

# With auto-fix
npx eslint --config .eslint.code-guardian.json --fix .

# TypeScript check
npx tsc --noEmit

ESLint Configuration

This skill includes a pre-configured .eslint.code-guardian.json file that you can use in your project.

Or create your own .eslint.code-guardian.json:

{
  "root": true,
  "env": {
    "browser": true,
    "es2021": true,
    "node": true
  },
  "extends": [
    "eslint:recommended",
    "plugin:@typescript-eslint/recommended",
    "plugin:security/recommended"
  ],
  "parser": "@typescript-eslint/parser",
  "parserOptions": {
    "ecmaVersion": "latest",
    "sourceType": "module"
  },
  "plugins": ["@typescript-eslint", "security"],
  "rules": {
    "no-console": "warn",
    "no-debugger": "warn",
    "security/detect-object-injection": "off"
  }
}

Detected Security Issues

Issue Severity
eval() with dynamic expressions High
File system access without path validation High
Regex from user input Medium
Object injection vulnerabilities Medium
Timing attacks Medium
Weak random number generators Medium

Buffer Overflow Detection

Issue Severity
Unsafe Buffer constructors High
Unsafe Buffer creation High

Exit Codes

Code Meaning
0 No problems found
1 ESLint errors present
2 Configuration error

License

MIT

About

OhMyOpenCode Skill for security scanning, buffer overflow detection and input validation using ESLint

Topics

ai opencode opencode-plugin oh-my-opencode ai-skill ai-eslint

Resources

Readme
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors