Skip to content

alejandrosaenz117/bonfires-marketplace

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

34 Commits
.claude-plugin
.claude-plugin
 
 
plugins
plugins
 
 
.gitignore
.gitignore
 
 
CHANGELOG.md
CHANGELOG.md
 
 
CONTRIBUTING.md
CONTRIBUTING.md
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
SECURITY.md
SECURITY.md
 
 
banner.png
banner.png
 
 

Repository files navigation

Bonfires Marketplace Banner

Bonfires Marketplace

A marketplace of Claude Code plugins for security-focused development: adversarial code review, dependency vulnerability scanning, and reachability triage.

Installation

1) Register the marketplace:

/plugin marketplace add alejandrosaenz117/bonfires-marketplace

2) Install a plugin:

/plugin install devils-advocate@bonfires-marketplace
/plugin install osv-scanner@bonfires-marketplace

What's Inside

The Devil's Advocate

The tenth man. When consensus forms, it is a sign of danger. This plugin peers into the fog where failure waits. The collapse. The breach. The systems failing under weight they cannot see. It reveals where light fails and why the walls will break.

Invoke: Mention "adversarial review" or "challenge the plan" as a skill, or use /devils-advocate [file|description|recent] command.

See plugins/devils-advocate/README.md for full documentation.

OSV Scanner

Integrates OSV Scanner as an MCP server, giving Claude direct access to the OSV vulnerability database. Scans your dependencies for known CVEs, fetches full advisories, and uses grep-based reachability triage to estimate which vulnerabilities actually live in your code paths.

Invoke: Mention "check my dependencies for vulnerabilities" or "scan for CVEs" as a skill, or use /osv-scanner scan [path] and /osv-scanner triage [path] commands.

See plugins/osv-scanner/README.md for full documentation.

Eisenhower Prioritization

Before the collapse, there is choice. The manager who cannot distinguish the urgent from the important becomes a captive of the fire. This skill separates signal from noise: which battles matter, which are illusions, and which investments prevent the next disaster. It names the burnout, exposes the waste, and reveals the Q2 work that breaks the reactive cycle.

Invoke: Mention "help me prioritize", "what should I focus on", or "I'm overwhelmed" when drowning in tasks, or use /prioritize [task list] command.

See plugins/eisenhower-prioritization/README.md for full documentation.

Philosophy

See the darkness before it sees you. Challenge consensus. Find what will break before you go hollow.

License

MIT. See LICENSE.

See CONTRIBUTING.md for guidelines on adding plugins and contributing.

About

A marketplace of Claude Code plugins for adversarial security and architectural code review.

Topics

security architecture code-review threat-modeling security-review claude-code adversarial-testing plugin-marketplace

Resources

Readme

License

MIT license

Contributing

Contributing

Security policy

Security policy
Activity

Stars

4 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Contributors