Adoption

Agent Skills are supported by leading AI development tools.

VS Code Gemini CLI GitHub Goose Amp Cursor Claude Code Letta OpenCode Claude OpenAI Codex Factory VS Code Gemini CLI GitHub Goose Amp Cursor Claude Code Letta OpenCode Claude OpenAI Codex Factory

ghostonbutterbread/agent-proxy

Name: agent-proxy
Author: ghostonbutterbread

skills/agent-proxy/SKILL.md

npx skillsauth add ghostonbutterbread/bug-bounty-harness agent-proxy

Clean

TrivyContainer and dependency vulnerability scanner

Clean

SemgrepStatic code analysis for vulnerabilities

Clean

mcp-scan (Snyk)Model Context Protocol security validation

Skipped

Snyk (dep)Open source security scanning

Skipped

Socket.devSupply chain security analysis

Skipped

VirusTotalMulti-engine malware detection

Skipped

CrowdStrikeAdvanced threat intelligence

Skipped

OSV-ScannerOpen Source Vulnerability database check

Skipped

OWASP Dep-Check

Agent Proxy

Use this when a bug bounty agent needs the normal agent-lane Caido MCP endpoint or proxy-observed traffic.

This is the default proxy lane. It should not inspect Ryushe's personal PC traffic. Use ryushe-proxy only when the task explicitly asks to view or compare Ryushe's traffic.

Phrase mapping: "your proxy", "agent proxy", "Ghost proxy", "OpenClaw proxy", or "local proxy" from the agent's point of view means this agent lane. "My proxy", "Ryushe's proxy", "my Caido", or "Ryushe's Caido" means the Ryushe lane instead; load ryushe-proxy.

If Ryushe says "look at the request <request>", the request lookup/source defaults to Ryushe's proxy unless he specifies another source. After that lookup, active agent testing still uses this agent lane by default. The only exception is when the agent is on the same host as Ryushe's proxy and my proxy resolves to localhost from that runtime. Rebuild the request with agent-owned browser/session state rather than replaying with Ryushe's cookies, tokens, or auth headers.

Replay transport policy: direct HTTP replay with curl, httpx, or a focused script is preferred for known request shapes. Use the agent-lane MCP/proxy replay only as a fallback when direct replay fails for browser/proxy/client-fingerprint reasons such as Cloudflare or browser-only flow state. Live browser exploration still uses Chromium/Playwright attached to the agent's local browser proxy.

Runtime Resolution

Resolve in this order:

Explicit task-provided MCP URL.
GHOST_AGENT_RUNTIME.
Hostname.
IP/interface fallback.
If ambiguous, stop and report the ambiguity.

Defaults

OpenClaw/Ghost machine: http://hoster:3333/mcp
Hoster: http://localhost:3333/mcp
Ryushe PC: http://localhost:3333/mcp
AITestVM: use task-specific desktop/dynamic proxy when configured; otherwise use http://hoster:3333/mcp.

For browsers launched from the OpenClaw machine, load openclaw-browser-proxy; browser traffic should go through http://hoster:8080, while MCP remains http://hoster:3333/mcp.

Guardrails

Do not use http://ryushespc:3333/mcp from this skill.
Do not treat an MCP URL as a browser proxy listener.
Keep traffic lane labels in notes: agent lane, Ryushe lane, or desktop lane.
Never print or store raw cookies, tokens, or auth headers from proxy traffic.

ghostonbutterbread/agent-proxy

skills/agent-proxy/SKILL.md

Resolve the default agent-lane Caido MCP endpoint for the current agent host.

tools

Updated Jun 11, 2026

$ install --global

skillsauth

npx skillsauth add ghostonbutterbread/bug-bounty-harness agent-proxy

Install this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.

Security Scan Results

3 of 9 scanners reported clean

Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.

Scanners Passed

Scanners in report

Clean

TrivyContainer and dependency vulnerability scanner

95%

Clean

SemgrepStatic code analysis for vulnerabilities

95%

Clean

mcp-scan (Snyk)Model Context Protocol security validation

95%

Skipped

Snyk (dep)Open source security scanning

50%

Skipped

Socket.devSupply chain security analysis

50%

Skipped

VirusTotalMulti-engine malware detection

50%

Skipped

CrowdStrikeAdvanced threat intelligence

50%

Skipped

OSV-ScannerOpen Source Vulnerability database check

50%

Skipped

OWASP Dep-Check

50%

Last scanned: Jun 11, 2026, 2:49 AM115.9s1 file scanned

SKILL.md

name:: agent-proxy
description:: Resolve the default agent-lane Caido MCP endpoint for the current agent host.

Agent Proxy

Use this when a bug bounty agent needs the normal agent-lane Caido MCP endpoint or proxy-observed traffic.

This is the default proxy lane. It should not inspect Ryushe's personal PC traffic. Use ryushe-proxy only when the task explicitly asks to view or compare Ryushe's traffic.

Runtime Resolution

Resolve in this order:

Explicit task-provided MCP URL.
GHOST_AGENT_RUNTIME.
Hostname.
IP/interface fallback.
If ambiguous, stop and report the ambiguity.

Defaults

OpenClaw/Ghost machine: http://hoster:3333/mcp
Hoster: http://localhost:3333/mcp
Ryushe PC: http://localhost:3333/mcp
AITestVM: use task-specific desktop/dynamic proxy when configured; otherwise use http://hoster:3333/mcp.

For browsers launched from the OpenClaw machine, load openclaw-browser-proxy; browser traffic should go through http://hoster:8080, while MCP remains http://hoster:3333/mcp.

Guardrails

Do not use http://ryushespc:3333/mcp from this skill.
Do not treat an MCP URL as a browser proxy listener.
Keep traffic lane labels in notes: agent lane, Ryushe lane, or desktop lane.
Never print or store raw cookies, tokens, or auth headers from proxy traffic.

Related Skills

ghostonbutterbread/request-exploration

testing

VerifiedTrustedCommunity

Systematic live request mutation: flip booleans, field ops, headers, content-type, parser differentials, replay vs intercept, null/empty testing. Inherits live-testing-policy scope/rate/ownership rules.

SKILL.mdUpdated Jun 13, 2026

ghostonbutterbread/request-exploration

ghostonbutterbread/password-reset

development

VerifiedTrustedCommunity

Test password reset, forgot-password, reset-token, email reset, and account recovery flows for account takeover risks.

SKILL.mdUpdated Jun 13, 2026

ghostonbutterbread/password-reset

ghostonbutterbread/intelligent-fuzzing

tools

VerifiedTrustedCommunity

Targeted param/field discovery using tech stack clues, naming conventions, and controlled-rate ffuf — then feeds findings into request-exploration for mutation. Not brute-force; informed and scoped.

SKILL.mdUpdated Jun 13, 2026

ghostonbutterbread/intelligent-fuzzing

ghostonbutterbread/create-account

testing

VerifiedTrustedCommunity

Ghost-only workflow for creating approved bug bounty test accounts and saving credential references.

SKILL.mdUpdated Jun 13, 2026

ghostonbutterbread/create-account

Download

For Claude Desktop. Download once, then upload the file in the app — no terminal needed.

Need help? View full Cowork setup guide →

Install manually

Choose your platform

# Clone the repo
git clone https://github.com/ghostonbutterbread/bug-bounty-harness.git

# Copy into Claude Code skills folder (global)
cp -r bug-bounty-harness/skills/agent-proxy ~/.claude/skills/

Claude Code Skills — official skills path docs.

Repository

ghostonbutterbread/bug-bounty-harness

Compatible with

Claude Code

OpenAI Codex CLI

ChatGPT