Security scanning skill for AI coding agents automatically checks deployments

A developer has published a security scanning skill file for AI coding agents that automatically checks deployments for common security issues. The tool was created after repeatedly finding exposed .env files and open ports in applications after deployment by AI agents.

What the skill does

The skill file enables AI coding agents to run an automated security scan after every deployment. According to the source, it specifically looks for:

• Exposed secrets (like .env files)
• Open database ports
• Missing security headers
• Leaked source code

The scan completes in approximately 30 seconds. The developer mentions this addresses a practical problem: "I kept finding exposed .env files and open ports in apps after my agent deployed them."

Technical implementation

The skill is available on ClawHub at https://clawhub.ai/doureios39/preflyt. The developer identifies as /u/doureios39 on Reddit and is actively seeking feedback on the implementation.

For context, skills in AI coding agent ecosystems like OpenClaw typically consist of configuration files or scripts that extend an agent's capabilities. This particular skill appears to integrate security scanning directly into the deployment workflow, allowing agents to self-audit their work automatically.

Security scanning tools for deployments typically work by checking exposed endpoints, analyzing response headers, and scanning for sensitive files that shouldn't be publicly accessible. Integrating this as a post-deployment step helps catch configuration errors before they become security incidents.