ghostonbutterbread/sync-reports
skills/sync-reports/SKILL.md
Use when syncing reports, importing vulnerabilities from source report directories into the Ghost pipeline, writing reports from memory, or running /sync-reports for a program.
testing
Updated Apr 23, 2026
$ install --global
skillsauthnpx skillsauth add ghostonbutterbread/bug-bounty-harness sync-reportsInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Apr 23, 2026, 3:42 AM200.9s1 file scanned
SKILL.md
- name:
- sync-reports
- description:
- Use when syncing reports, importing vulnerabilities from source report directories into the Ghost pipeline, writing reports from memory, or running /sync-reports for a program.
/sync-reports skill
Import vulnerabilities from Ryushe's working reports into the Ghost pipeline.
Usage
/sync-reports <program>
Example:
/sync-reports notion
Harness CLI:
python3 ~/projects/bug_bounty_harness/agents/sync_reports.py notion --verbose
What it does
- Scans
~/source/{program}/reports/, thenreport/, then any*reports*directory for markdown report files. - Parses each file for vulnerabilities.
- Deduplicates against the ledger.
- Imports new findings into the shared pipeline.
- If no reports exist and
--write-reports-from-memoryis set, asks Codex to write reports from memory first.
Options
--source-dir- Override the reports directory.--write-reports-from-memory- If no reports exist, use Codex to write them from memory first.--verbose- Show detailed output.
Harness
~/projects/bug_bounty_harness/agents/sync_reports.py
Related Skills
ghostonbutterbread/ato
testing
VerifiedTrustedCommunity
Route account takeover testing across password reset, recovery, SSO/OAuth, account linking, MFA, email change, session, invite, and identity-binding flows.
SKILL.mdUpdated Jun 5, 2026
ghostonbutterbread/url-ingest
testing
VerifiedTrustedCommunity
Use when importing, indexing, filtering, queueing, checking, or marking recon URLs in the SQLite-backed per-lane URL review tracker.
SKILL.mdUpdated Jun 4, 2026
ghostonbutterbread/payment-testing
testing
VerifiedTrustedCommunity
Route checkout, billing, subscriptions, coupons, credits, gift cards, invoices, refunds, payment authorization, and paid-entitlement testing into safe zero-dollar-first workflows.
SKILL.mdUpdated Jun 4, 2026
ghostonbutterbread/intercepted-proxy
data-ai
VerifiedTrustedCommunity
Launch scoped browsers through the correct Caido proxy, enable live intercept or Tamper one lane at a time, modify selected requests, forward them, then disable intercept.
SKILL.mdUpdated Jun 4, 2026