blue-spec

Name: blue-spec
Author: wellwelwel

Pending

🌊 Blue Spec is a toolkit for Security-Driven Hardening, a defensive workflow to help AI agents detect what a system does and harden the defenses that matter.

56stars

0forks

TypeScript

Installation

# Add to your Claude Code skills
git clone https://github.com/wellwelwel/blue-spec

Getting Started

Guides for using ai agents skills like blue-spec.

Caveman: Cut Claude Token Use by 65%
How agent-side prompt compression works, when to use it, and when not to.
What is an AI Skills Marketplace?
Definitions, how marketplaces work, and how to choose between them in 2026.
Getting Started with AI Skills

README.md

Frequently Asked Questions

What is blue-spec?

blue-spec is an open-source ai agents skill for AI coding assistants such as Claude Code, Codex CLI, and ChatGPT, built by wellwelwel. 🌊 Blue Spec is a toolkit for Security-Driven Hardening, a defensive workflow to help AI agents detect what a system does and harden the defenses that matter. It has 56 GitHub stars.

Is blue-spec safe to use?

blue-spec's catalog security scan is still queued. You can run an instant dependency and prompt-injection check now with the "Scan for vulnerabilities" button above.

How do I install blue-spec?

Clone the repository with "git clone https://github.com/wellwelwel/blue-spec" and add it to your Claude Code skills directory (see the Installation section above).

What programming language is blue-spec written in?

blue-spec is primarily written in TypeScript. It is open-source under wellwelwel on GitHub, so you can review or fork the full source.

Are there alternatives to blue-spec?

Yes. SkillsLLM lists many other AI Agents skills you can browse and compare side by side. Open the AI Agents category from the badge at the top of this page, or use the Related Skills and comparison links further down to weigh blue-spec against similar tools.

Agentic AI for Beginners

Build your first AI agent from scratch - tool use, ReAct pattern, memory, deployment

41 minBeginner

Comments (0)

to leave a comment.

No comments yet. Be the first to share your thoughts!

Related Skills

superpowers

by obra

An agentic skills framework & software development methodology that works.

234,966

simulacra lazyskills

🌊 Blue Spec: Security-Driven Hardening

Blue Spec helps your AI agent make a project more secure. You point it at your code, and the agent figures out what your system actually does, then guides you through the security work that matters for it.

Blue Spec works with projects in any programming language and supports 37 agents ✨

🌱 Get Started
- Install
- Commands
📦 Requirements
🖖 Acknowledgements
🧑‍⚖️ License

Get Started

Install

Blue Spec adapts to your environment, whether it is a new project or an existing one.

npx -y blue-spec@latest init

Blue Spec runs on Node.js under the hood, you use whatever language you want 🃏

Commands

Once Blue Spec is set up in your project, your AI agent unlocks a set of slash commands:

#	Command	What it does for you
1	/bluespec.charter	Sets your project's security rules, proposed for you or shaped by what you say
2	/bluespec.detect	Reads your code and maps what your system does and where the risks are
3	/bluespec.plan	Turns what detect found into a defense plan, with a fix for each finding
4	/bluespec.harden	Applies the plan's fixes to your code, safely and one at a time
5	/bluespec.verify	Proves each applied fix holds and closes out the ones that do

Each command builds on the previous, so following the list top to bottom is all it takes.

Special commands

Command	What it does
/bluespec.specialize	Specializes Blue Spec in a new security sub-skill from articles, exploits, or topics
/bluespec.skills	Loads an on-demand security sub-skill
/bluespec.repair	Repairs Blue Spec's internal tracking
/bluespec.list	Lists all finding Blue Spec is tracking, by name

[!TIP]

Security is not a cost, it is an investment: what you put in upfront, you save many times over in the incidents you never have 🙋🏻‍♂️

[!IMPORTANT]

See the full documentation for usage examples and more.

Requirements

You will need these tools installed on your system:

Node.js (LTS)
At least one of the Supported Agents

Security Policy

Please check the SECURITY.md.

Contributing

🚧 Coming Soon.