Trail of Bits Skills Marketplace is a specialized Claude Code skills marketplace built by the security research firm Trail of Bits that focuses on enhancing AI-assisted workflows for vulnerability discovery, testing, and secure development. The repository groups a set of plug-in skills tailored toward static analysis, code auditing, secure defaults detection, and other practices that matter in software security. Users can easily add the marketplace to a Claude Code environment, browse available plugins, and install specific skills for tasks like automatic Semgrep rule creation, entry-point analysis in smart contracts, or insecure defaults detection. This project leverages the agent skills architecture to let AI assistants take on detailed, repeatable security procedures that are typically manual, such as parsing Burp Suite projects or conducting variant analysis across codebases.
Features
- Security-focused skill plugins for Claude Code
- Smart contract vulnerability scanners for multiple blockchains
- Code auditing and differential review utilities
- Semgrep rule generation and customization tools
- Tools for analyzing insecure defaults and error-prone APIs
- Marketplace structure with installation and browsing
Project Samples
