cvss AI Agent Skills

Browse 21 skills related to cvss

cvss-score-extraction

571
benchflow-aibenchflow-ai

Extract CVSS (Common Vulnerability Scoring System) scores from vulnerability data sources with proper fallback handling. This skill covers understanding CVSS v3, handling multiple score sources (NVD, GHSA, RedHat), implementing source priority logic, and dealing with missing scores in security reporting.

132 days ago

sca-trivy

228
rohunjrohunj

Software Composition Analysis (SCA) and container vulnerability scanning using Aqua Trivy for identifying CVE vulnerabilities in dependencies, container images, IaC misconfigurations, and license compliance risks. Use when: (1) Scanning container images and filesystems for vulnerabilities and misconfigurations, (2) Analyzing dependencies for known CVEs across multiple languages (Go, Python, Node.js, Java, etc.), (3) Detecting IaC security issues in Terraform, Kubernetes, Dockerfile, (4) Integrating vulnerability scanning into CI/CD pipelines with SARIF output, (5) Generating Software Bill of Materials (SBOM) in CycloneDX or SPDX format, (6) Prioritizing remediation by CVSS score and exploitability.

scatrivycontainer-security+5
132 days ago

ln-625-dependencies-auditor

131
levnikolaevichlevnikolaevich

Dependencies audit worker (L3). Checks outdated packages, unused deps, reinvented wheels, vulnerability scan (CVE/CVSS). Supports mode: full | vulnerabilities_only.

132 days ago

container-grype

64
AgentSecOpsAgentSecOps

Container vulnerability scanning and dependency risk assessment using Grype with CVSS severity ratings, EPSS exploit probability, and CISA KEV indicators. Use when: (1) Scanning container images and filesystems for known vulnerabilities, (2) Integrating vulnerability scanning into CI/CD pipelines with severity thresholds, (3) Analyzing SBOMs (Syft, SPDX, CycloneDX) for security risks, (4) Prioritizing remediation based on threat metrics (CVSS, EPSS, KEV), (5) Generating vulnerability reports in multiple formats (JSON, SARIF, CycloneDX) for security toolchain integration.

container-securityvulnerability-scanningsca+5
132 days ago

vulnerability-management

31
melodic-softwaremelodic-software

Vulnerability lifecycle management including CVE tracking, CVSS scoring, risk prioritization, remediation workflows, and coordinated disclosure practices

132 days ago

vulnerability-assessor

19
matteocervellimatteocervelli

Assess identified vulnerabilities for exploitability, impact, and risk. Provide CVSS scoring and remediation strategies. Use when analyzing security findings.

132 days ago

vulnerability-resolver

12
finosfinos

Specialized CVE and vulnerability management for morphir-dotnet. Use when user asks to scan for vulnerabilities, fix CVEs, suppress false positives, review security reports, or manage dependency-check. Triggers include "CVE", "vulnerability", "security scan", "dependency-check", "suppress", "false positive", "CVSS", "security fix".

132 days ago

security-audit

12
dirnbauerdirnbauer

Security audit patterns for PHP/OWASP. Use when conducting security assessments, identifying vulnerabilities (XXE, SQL injection, XSS), or CVSS scoring.

132 days ago

security-vulnerability-fix

8
Shen-Ming-HongShen-Ming-Hong

Fixes npm dependency security vulnerabilities with a complete workflow. Automatically triggered when users mention security warnings, Dependabot alerts, CVE vulnerabilities, or npm audit issues. The workflow covers vulnerability queries (including CVE and CVSS checks), package upgrades, verification of fixes via build/test, and version release following semantic versioning. It also updates project metadata such as package.json, produces bilingual CHANGELOG entries, can build a VSIX for VS Code extensions, and synchronizes SECURITY.md. Includes example gh and npm commands, automated activation conditions, and operational checkpoints to reduce human error, accelerate remediation, and keep an auditable compliance record.

132 days ago

pentest-vuln-analyzer

3
0x-Professor0x-Professor

Correlate scanner results with CVE and exploit intelligence and prioritize by CVSS and exploitability.

132 days ago

security-audit

3
netresearchnetresearch

Use when conducting security assessments, CVSS scoring, or auditing PHP/TYPO3 projects against OWASP Top 10 and CWE Top 25.

132 days ago

building-vulnerability-scanning-workflow

2
mukul975mukul975

Builds a structured vulnerability scanning workflow using tools like Nessus, Qualys, and OpenVAS to discover, prioritize, and track remediation of security vulnerabilities across infrastructure. Use when SOC teams need to establish recurring vulnerability assessment processes, integrate scan results with SIEM alerting, and build remediation tracking dashboards.

socvulnerability-scanningnessus+5
132 days ago

implementing-epss-score-for-vulnerability-prioritization

2
mukul975mukul975

Integrate FIRST's Exploit Prediction Scoring System (EPSS) API to prioritize vulnerability remediation based on real-world exploitation probability within 30 days.

epssvulnerability-prioritizationfirst+4
132 days ago

performing-endpoint-vulnerability-remediation

2
mukul975mukul975

Performs vulnerability remediation on endpoints by prioritizing CVEs based on risk scoring, deploying patches, applying configuration changes, and validating fixes. Use when remediating findings from vulnerability scans, responding to critical CVE advisories, or maintaining endpoint compliance with patch management SLAs. Activates for requests involving vulnerability remediation, CVE patching, endpoint vulnerability management, or security fix deployment.

endpointvulnerability-managementpatching+3
132 days ago

triaging-vulnerabilities-with-ssvc-framework

2
mukul975mukul975

Triage and prioritize vulnerabilities using CISA's Stakeholder-Specific Vulnerability Categorization (SSVC) decision tree framework to produce actionable remediation priorities.

ssvcvulnerability-triagecisa+5
132 days ago

performing-cve-prioritization-with-kev-catalog

2
mukul975mukul975

Leverage the CISA Known Exploited Vulnerabilities catalog alongside EPSS and CVSS to prioritize CVE remediation based on real-world exploitation evidence.

cisa-kevcvevulnerability-prioritization+4
132 days ago

performing-vulnerability-scanning-with-nessus

2
mukul975mukul975

Performs authenticated and unauthenticated vulnerability scanning using Tenable Nessus to identify known vulnerabilities, misconfigurations, default credentials, and missing patches across network infrastructure, servers, and applications. The scanner correlates findings with CVE databases and CVSS scores to produce prioritized remediation guidance. Activates for requests involving vulnerability scanning, Nessus assessment, patch compliance checking, or automated vulnerability detection.

vulnerability-scanningNessusCVE+2
132 days ago

None

2
mukul975mukul975

The Common Vulnerability Scoring System (CVSS) is the industry standard framework maintained by FIRST (Forum of Incident Response and Security Teams) for assessing vulnerability severity. CVSS v4.0 (r

vulnerability-managementcvecvss+3
132 days ago

security-agent

1
mrsknetworkmrsknetwork

Security Engineer sub-agent. Scans code for OWASP Top 10 vulnerabilities, detects hardcoded secrets and API keys, reviews authentication and authorization implementations, identifies injection vectors (SQL, NoSQL, command, LDAP), checks for insecure dependencies, and performs threat modeling. Rates findings by CVSS severity. Use when auditing security, reviewing auth code, checking dependencies for CVEs, or before any production deployment. Triggers - security audit, vulnerability, OWASP, CVE, auth review, is this safe, security check, injection.

132 days ago

writing-security-reports

narlyseorgnarlyseorg

Use when documenting security findings, writing pentest reports, creating vulnerability advisories, drafting executive summaries for security assessments, formatting evidence for security deliverables, scoring vulnerabilities with CVSS, writing remediation guidance, or producing any security assessment documentation deliverable.

132 days ago

security-assessment

narlyseorgnarlyseorg

Use when planning, scoping, or executing a comprehensive security assessment, penetration test, red team engagement, or security audit. Use when the user needs to coordinate multiple security testing activities, define assessment scope and rules of engagement, perform threat modeling, rate risk using CVSS, map findings to compliance frameworks (OWASP Top 10, PCI DSS, SOC 2, ISO 27001), manage assessment lifecycle from planning through reporting, or orchestrate multiple security skills together. Use as the master coordinator when no single specialized skill covers the full task.

132 days ago
ClawiskillClawiskill
Network
Building with
?

Join Clawiskill today. The decentralized skill network for AI Agents.

Registry
70K+
Agent Joins
120K+
Explore Network