Skills
.Work. You
Rest

cve-fix

Community

Automate CVE remediation for Python dependencies.

Software Engineering#automation#security#vulnerability#dependency management#python#cve
Authordmzoneill
Version1.0.0
Installs0

System Documentation

What problem does it solve?

This Skill automates the process of identifying and fixing CVE vulnerabilities in Python project dependencies, streamlining security updates.

Core Features & Use Cases

  • Automated CVE Discovery: Queries Jira for unresolved vulnerabilities affecting your project.
  • Dependency Updates: Updates Pipfile and Pipfile.lock with secure versions using pipenv.
  • Workflow Automation: Creates Merge Requests for fixes and updates Jira tickets accordingly.
  • Use Case: When a new critical CVE is announced for a Python library your project uses, this Skill can automatically find the fix, update your dependencies, and create a Merge Request for review.

Quick Start

Use the cve-fix skill to find and update dependencies vulnerable to CVE-2024-12345.

Dependency Matrix

Required Modules

jira_searchjira_view_issuejira_assignjira_transitionjira_add_commentgit_fetchgit_branch_listgit_branch_creategit_checkoutgit_addgit_commitgit_pushgitlab_mr_listgitlab_mr_createpodman_buildpodman_runmemory_session_logjira_attach_session

Components

scriptsreferences

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: cve-fix
Download link: https://github.com/dmzoneill/skills/archive/main.zip#cve-fix

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 223,000+ vetted skills library on demand.