Adoption

Agent Skills are supported by leading AI development tools.

VS Code Gemini CLI GitHub Goose Amp Cursor Claude Code Letta OpenCode Claude OpenAI Codex Factory VS Code Gemini CLI GitHub Goose Amp Cursor Claude Code Letta OpenCode Claude OpenAI Codex Factory

baekenough/cve-triage

Name: cve-triage
Author: baekenough

.claude/skills/cve-triage/SKILL.md

npx skillsauth add baekenough/oh-my-customcode cve-triage

Clean

TrivyContainer and dependency vulnerability scanner

Clean

SemgrepStatic code analysis for vulnerabilities

Clean

mcp-scan (Snyk)Model Context Protocol security validation

Skipped

Snyk (dep)Open source security scanning

Skipped

Socket.devSupply chain security analysis

Skipped

VirusTotalMulti-engine malware detection

Skipped

CrowdStrikeAdvanced threat intelligence

Skipped

OSV-ScannerOpen Source Vulnerability database check

Skipped

OWASP Dep-Check

CVE Triage Skill

A structured workflow for triaging CVE reports against a codebase. Coordinates security analysis, reproduction assessment, and patch verification.

Triage Phases

Phase 1: CVE Intake

Parse CVE identifier and advisory details
Identify affected component, version range, and CWE classification
Determine if codebase uses the affected component

Phase 2: Impact Assessment

Locate affected code paths via grep/CodeQL
Assess exploitability in the project's specific context
Determine severity (CRITICAL/HIGH/MEDIUM/LOW/NONE)
Check if existing mitigations reduce impact

Phase 3: Reproduction Analysis

Design minimal reproduction scenario
Identify prerequisites (configuration, network access, authentication)
Assess if reproduction is feasible in test environment

Phase 4: Remediation

Identify available patches or versions
Assess upgrade compatibility and breaking changes
Propose mitigation if patch unavailable
Generate remediation plan with effort estimate

Output Format

## CVE Triage Report: {CVE-ID}

### Summary
| Field | Value |
|-------|-------|
| CVE | {CVE-ID} |
| CWE | {CWE-ID}: {description} |
| CVSS | {score} ({severity}) |
| Affected | {component} {version range} |
| Project Impact | {CRITICAL/HIGH/MEDIUM/LOW/NONE} |

### Analysis
{Detailed analysis of how CVE affects this codebase}

### Remediation
| Option | Effort | Risk |
|--------|--------|------|
| {option 1} | {effort} | {risk} |

### Action Items
- [ ] {item 1}
- [ ] {item 2}

Integration

Uses sec-codeql-expert for code analysis when available
Results feed into security documentation
Can be triggered as part of /research security analysis

Agent Selection

| Phase | Agent | Model | |-------|-------|-------| | CVE Intake | Explore | haiku | | Impact Assessment | sec-codeql-expert | sonnet | | Reproduction | sec-codeql-expert | sonnet | | Remediation | appropriate-expert | sonnet |

Workflow

1. Receive CVE identifier or advisory
2. Phase 1: Parse and classify the vulnerability
3. Phase 2: Search codebase for affected components
4. Phase 3: Evaluate reproduction feasibility
5. Phase 4: Propose remediation with effort/risk tradeoffs
6. Generate triage report in standard format

baekenough/cve-triage

.claude/skills/cve-triage/SKILL.md

CVE triage workflow for vulnerability analysis, reproduction assessment, and patch verification

11 stars

testing

Updated Apr 3, 2026

$ install --global

skillsauth

npx skillsauth add baekenough/oh-my-customcode cve-triage

Install this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.

Security Scan Results

3 of 9 scanners reported clean

Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.

Scanners Passed

Scanners in report

Clean

TrivyContainer and dependency vulnerability scanner

95%

Clean

SemgrepStatic code analysis for vulnerabilities

95%

Clean

mcp-scan (Snyk)Model Context Protocol security validation

95%

Skipped

Snyk (dep)Open source security scanning

50%

Skipped

Socket.devSupply chain security analysis

50%

Skipped

VirusTotalMulti-engine malware detection

50%

Skipped

CrowdStrikeAdvanced threat intelligence

50%

Skipped

OSV-ScannerOpen Source Vulnerability database check

50%

Skipped

OWASP Dep-Check

50%

Last scanned: Apr 3, 2026, 8:17 PM6.5s1 file scanned

SKILL.md

name:: cve-triage
description:: CVE triage workflow for vulnerability analysis, reproduction assessment, and patch verification
scope:: core
user-invocable:: false

CVE Triage Skill

A structured workflow for triaging CVE reports against a codebase. Coordinates security analysis, reproduction assessment, and patch verification.

Triage Phases

Phase 1: CVE Intake

Parse CVE identifier and advisory details
Identify affected component, version range, and CWE classification
Determine if codebase uses the affected component

Phase 2: Impact Assessment

Locate affected code paths via grep/CodeQL
Assess exploitability in the project's specific context
Determine severity (CRITICAL/HIGH/MEDIUM/LOW/NONE)
Check if existing mitigations reduce impact

Phase 3: Reproduction Analysis

Design minimal reproduction scenario
Identify prerequisites (configuration, network access, authentication)
Assess if reproduction is feasible in test environment

Phase 4: Remediation

Identify available patches or versions
Assess upgrade compatibility and breaking changes
Propose mitigation if patch unavailable
Generate remediation plan with effort estimate

Output Format

## CVE Triage Report: {CVE-ID}

### Summary
| Field | Value |
|-------|-------|
| CVE | {CVE-ID} |
| CWE | {CWE-ID}: {description} |
| CVSS | {score} ({severity}) |
| Affected | {component} {version range} |
| Project Impact | {CRITICAL/HIGH/MEDIUM/LOW/NONE} |

### Analysis
{Detailed analysis of how CVE affects this codebase}

### Remediation
| Option | Effort | Risk |
|--------|--------|------|
| {option 1} | {effort} | {risk} |

### Action Items
- [ ] {item 1}
- [ ] {item 2}

Integration

Uses sec-codeql-expert for code analysis when available
Results feed into security documentation
Can be triggered as part of /research security analysis

Agent Selection

Workflow

1. Receive CVE identifier or advisory
2. Phase 1: Parse and classify the vulnerability
3. Phase 2: Search codebase for affected components
4. Phase 3: Evaluate reproduction feasibility
5. Phase 4: Propose remediation with effort/risk tradeoffs
6. Generate triage report in standard format

Related Skills

baekenough/wiki

development

VerifiedTrustedCommunity

Generate and maintain a persistent codebase wiki — LLM-built interlinked markdown knowledge base (Karpathy LLM Wiki pattern)

15SKILL.mdUpdated Apr 16, 2026

baekenough/wiki-rag

development

VerifiedTrustedCommunity

Use the project wiki as RAG knowledge source — search wiki pages to answer codebase questions before exploring raw files

15SKILL.mdUpdated Apr 16, 2026

baekenough/skill-extractor

tools

VerifiedTrustedCommunity

Analyze task trajectories to propose reusable SKILL.md candidates from successful patterns

15SKILL.mdUpdated Apr 16, 2026

baekenough/skill-extractor

baekenough/hada-scout

data-ai

VerifiedTrustedCommunity

hada.io RSS feed monitoring for AI agent/harness articles with automated /scout analysis

15SKILL.mdUpdated Apr 16, 2026

baekenough/hada-scout

Download

For Claude Desktop. Download once, then upload the file in the app — no terminal needed.

Need help? View full Cowork setup guide →

Install manually

Choose your platform

# Clone the repo
git clone https://github.com/baekenough/oh-my-customcode.git

# Copy into Claude Code skills folder (global)
cp -r oh-my-customcode/.claude/skills/cve-triage ~/.claude/skills/

Claude Code Skills — official skills path docs.

Repository

baekenough/oh-my-customcode

11 stars

Compatible with

Claude Code

OpenAI Codex CLI

ChatGPT