Adoption

Agent Skills are supported by leading AI development tools.

VS Code Gemini CLI GitHub Goose Amp Cursor Claude Code Letta OpenCode Claude OpenAI Codex Factory VS Code Gemini CLI GitHub Goose Amp Cursor Claude Code Letta OpenCode Claude OpenAI Codex Factory

aeondave/schemathesis

Name: schemathesis
Author: aeondave

offensive-tools/fuzzing/schemathesis/SKILL.md

npx skillsauth add aeondave/malskill schemathesis

Clean

TrivyContainer and dependency vulnerability scanner

Clean

SemgrepStatic code analysis for vulnerabilities

Clean

mcp-scan (Snyk)Model Context Protocol security validation

Skipped

Snyk (dep)Open source security scanning

Skipped

Socket.devSupply chain security analysis

Skipped

VirusTotalMulti-engine malware detection

Skipped

CrowdStrikeAdvanced threat intelligence

Skipped

OSV-ScannerOpen Source Vulnerability database check

Skipped

OWASP Dep-Check

schemathesis

Schema-driven API fuzzing for developer and AppSec workflows.

Quick Start

# CLI
uvx schemathesis run https://example.schemathesis.io/openapi.json

# Installed CLI
schemathesis run https://your-api/openapi.json

import schemathesis
schema = schemathesis.openapi.from_url("https://your-api/openapi.json")

@schema.parametrize()
def test_api(case):
    case.call_and_validate()

Operator Flow

First run with defaults to map baseline failure landscape.
Triage in this order: undocumented status codes -> schema conformance -> server errors.
Narrow scope by tag/path to fix incrementally.
Run longer optimization profile for release/security gates.
Keep CI smoke + nightly deep profiles separated.

Strengths

Generates large input space from API schema automatically.
Detects 500s, contract/schema drift, validation bypasses.
Supports stateful API workflows (operation sequences).

Optimization Profile (Deep Runs)

schemathesis run <schema_url> \
  --max-examples 1000 \
  --continue-on-failure

Often paired with targeted generation and health-check suppression on complex schemas.

Practical Tricks

Use include-path/include-tag scope to eliminate triage noise.
Keep one strict schema-conformance pass and one exploratory bug-hunting pass.
Export machine-readable artifacts (JUnit/Allure) for team triage.
Re-run minimal reproducer from failing example before opening defect ticket.

Common Pitfalls

Trying to fix every first-run failure globally at once.
Ignoring repetitive undocumented status patterns that should be schema-level fixes.
Treating long-run health-check warnings as always ignorable.

CI Pattern

Run fast smoke profile on PRs.
Run longer stateful/negative campaigns nightly.
Publish JUnit/Allure artifacts for triage.

Resources

https://github.com/schemathesis/schemathesis
https://schemathesis.readthedocs.io/
https://schemathesis.readthedocs.io/en/stable/guides/triage/
https://schemathesis.readthedocs.io/en/stable/guides/config-optimization/

aeondave/schemathesis

offensive-tools/fuzzing/schemathesis/SKILL.md

Auth/lab ref: OpenAPI/GraphQL property-based API fuzzer. Use to auto-generate API tests, catch schema violations, triage failures systematically, and run high-coverage stateful campaigns in REST/GraphQL services.

4 stars

development

Updated Jun 8, 2026

$ install --global

skillsauth

npx skillsauth add aeondave/malskill schemathesis

Install this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.

Security Scan Results

3 of 9 scanners reported clean

Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.

Scanners Passed

Scanners in report

Clean

TrivyContainer and dependency vulnerability scanner

95%

Clean

SemgrepStatic code analysis for vulnerabilities

95%

Clean

mcp-scan (Snyk)Model Context Protocol security validation

95%

Skipped

Snyk (dep)Open source security scanning

50%

Skipped

Socket.devSupply chain security analysis

50%

Skipped

VirusTotalMulti-engine malware detection

50%

Skipped

CrowdStrikeAdvanced threat intelligence

50%

Skipped

OSV-ScannerOpen Source Vulnerability database check

50%

Skipped

OWASP Dep-Check

50%

Last scanned: Jun 8, 2026, 3:53 AM199.6s1 file scanned

SKILL.md

name:: schemathesis
description:: Auth/lab ref: OpenAPI/GraphQL property-based API fuzzer. Use to auto-generate API tests, catch schema violations, triage failures systematically, and run high-coverage stateful campaigns in REST/GraphQL services.
license:: MIT
compatibility:: Python CLI/library; CI-friendly.
author:: GitHub Copilot
version:: 1.1

schemathesis

Schema-driven API fuzzing for developer and AppSec workflows.

Quick Start

# CLI
uvx schemathesis run https://example.schemathesis.io/openapi.json

# Installed CLI
schemathesis run https://your-api/openapi.json

import schemathesis
schema = schemathesis.openapi.from_url("https://your-api/openapi.json")

@schema.parametrize()
def test_api(case):
    case.call_and_validate()

Operator Flow

First run with defaults to map baseline failure landscape.
Triage in this order: undocumented status codes -> schema conformance -> server errors.
Narrow scope by tag/path to fix incrementally.
Run longer optimization profile for release/security gates.
Keep CI smoke + nightly deep profiles separated.

Strengths

Generates large input space from API schema automatically.
Detects 500s, contract/schema drift, validation bypasses.
Supports stateful API workflows (operation sequences).

Optimization Profile (Deep Runs)

schemathesis run <schema_url> \
  --max-examples 1000 \
  --continue-on-failure

Often paired with targeted generation and health-check suppression on complex schemas.

Practical Tricks

Use include-path/include-tag scope to eliminate triage noise.
Keep one strict schema-conformance pass and one exploratory bug-hunting pass.
Export machine-readable artifacts (JUnit/Allure) for team triage.
Re-run minimal reproducer from failing example before opening defect ticket.

Common Pitfalls

Trying to fix every first-run failure globally at once.
Ignoring repetitive undocumented status patterns that should be schema-level fixes.
Treating long-run health-check warnings as always ignorable.

CI Pattern

Run fast smoke profile on PRs.
Run longer stateful/negative campaigns nightly.
Publish JUnit/Allure artifacts for triage.

Resources

https://github.com/schemathesis/schemathesis
https://schemathesis.readthedocs.io/
https://schemathesis.readthedocs.io/en/stable/guides/triage/
https://schemathesis.readthedocs.io/en/stable/guides/config-optimization/

Related Skills

aeondave/vibe-audit-technique

development

VerifiedTrustedCommunity

White-box auditing methodology for AI-generated ('vibe-coded') applications. Focuses on modern stack misconfigurations (Supabase, Next.js, Vercel).

4SKILL.mdUpdated Jun 12, 2026

aeondave/vibe-audit-technique

aeondave/source-review-technique

development

VerifiedTrustedCommunity

Hybrid AI/Deterministic SAST methodology for discovering zero-day vulnerabilities in source code. Orchestrates structural search with AI-driven data flow and sink validation.

4SKILL.mdUpdated Jun 12, 2026

aeondave/source-review-technique

aeondave/hardware-technique

development

VerifiedTrustedCommunity

Auth assessment: hardware/embedded methodology; UART/JTAG/SWD/SPI/I2C, firmware extraction, boot/debug paths, embedded OS evidence.

4SKILL.mdUpdated Jun 12, 2026

aeondave/hardware-technique

aeondave/container-technique

devops

VerifiedTrustedCommunity

Container methodology: Identifying containerization limits, Docker/K8s misconfigurations, and executing escapes to the host node.

4SKILL.mdUpdated Jun 12, 2026

aeondave/container-technique

Download

For Claude Desktop. Download once, then upload the file in the app — no terminal needed.

Need help? View full Cowork setup guide →

Install manually

Choose your platform

# Clone the repo
git clone https://github.com/aeondave/malskill.git

# Copy into Claude Code skills folder (global)
cp -r malskill/offensive-tools/fuzzing/schemathesis ~/.claude/skills/

Claude Code Skills — official skills path docs.

Repository

aeondave/malskill

4 stars

Compatible with

Claude Code

OpenAI Codex CLI

ChatGPT