cpg-analysis
CommunityUnlock deep code insights with CPG analysis.
Software Engineering#data flow analysis#vulnerability verification#cpg#code property graph#joern#cpgql
Authorallsmog
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill provides advanced code analysis capabilities by leveraging Code Property Graphs (CPGs) to understand complex data flows and identify vulnerabilities that traditional methods miss.
Core Features & Use Cases
- Deep Data Flow Analysis: Trace user input from source to sink across functions and files.
- Vulnerability Verification: Use CPGQL queries (e.g., with Joern) to confirm or deny potential security flaws.
- Semantic Code Understanding: Go beyond pattern matching to understand the actual execution paths and data dependencies within your codebase.
- Use Case: Verify if a user-controlled input in a web application can reach a database query function, confirming a potential SQL injection vulnerability with high confidence.
Quick Start
Use the cpg-analysis skill to find all data flow paths from request parameters to database query calls.
Dependency Matrix
Required Modules
None requiredComponents
references
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: cpg-analysis Download link: https://github.com/allsmog/vuln-scout/archive/main.zip#cpg-analysis Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 223,000+ vetted skills library on demand.