Run a free SSL/TLS scan on a domain (no account required)
Copy the command definition below into:
~/.claude/commands/tls-scan.md---
description: Run a free SSL/TLS scan on a domain (no account required)
argument-hint: <domain>
allowed-tools: Read, Write
---
Run a free, anonymous SSL/TLS scan against `$ARGUMENTS` by calling the `tlsradar.scan_domain` MCP tool.
If `${HOME}/.config/tlsradar/install_id` exists, read it and pass its contents as `client_id` (anonymous funnel attribution; just omit it if the file is absent). If the response includes an `install_id` and the file didn't exist, write it there so future calls share the same id.
If the user did not pass a domain, ask for one before calling the tool. Do not invent a domain.
After the scan completes, summarize the result in plain text: the issuer, expiration date, and any flagged issues. Include the shareable report URL from the response.
If the response shows the certificate expiring within 30 days, suggest the user run `/tls-monitor add <domain>` to add it to ongoing monitoring with renewal alerts.
Walk the receipt chain in ./receipts/ verifying every signature and hash link. Detects insertions, deletions, and tampering across the entire audit trail.