shannon
Shannon
Use Shannon only when the task is explicitly security-focused and the scan cost is justified by the scope of work.
Workflow
- Confirm the target before running anything.
- Collect the app URL, repo path, and intended environment.
- Treat production targets as high risk. Restate the URL and ask for confirmation before running against production or other sensitive environments.
- Do not run Shannon as part of ordinary repo exploration, routine code review, or every implementation task.
- Check local prerequisites.
- Verify Docker is available because Shannon pulls and runs a worker container.
- Expect network access for
npx, Docker image pulls, and live target interaction. - If the CLI may not already be configured, plan to run setup first.
- Configure Shannon when needed.
More from flohhhhh/skills
uploadthing-nextjs
Type-safe file upload integration for Next.js App Router using UploadThing. Use when implementing secure file uploads with client-to-storage direct uploads, authentication middleware, upload completion handlers, and automatic database metadata storage.
35uefn-verse-basics
Beginner-focused onboarding and developer workflow for using Verse in Unreal Editor for Fortnite (UEFN). Use when setting up UEFN/Fortnite prerequisites, creating a first Verse-enabled project, creating Verse devices from templates, compiling and playtesting with Launch Session and Push Verse Changes, troubleshooting common setup/build/runtime issues, and establishing basic project/revision-control habits.
12unreal-verse
Guidance for writing, reviewing, and debugging Unreal Editor for Fortnite (UEFN) Verse code using Epic's official language documentation. Use when implementing Verse devices, classes, functions, control flow, containers, failure contexts, specifiers/attributes, modules/imports, effects, concurrency, or translating logic into valid Verse.
4polar-sh-nextjs-convex
Minimal Polar.sh billing integration for Next.js App Router with Convex as the entitlement authority. Use when implementing subscriptions, one-time purchases, checkout, customer portal, webhooks, and billing-to-entitlement sync in a webhook-driven architecture.
1