cve-reachability-analyzer
CommunityAssess CVE exploitability in your code.
AuthorArabelaTso
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill helps you understand if a reported security vulnerability (CVE) in a software dependency is actually reachable and exploitable within your project's codebase, preventing wasted effort on non-issues and prioritizing real risks.
Core Features & Use Cases
- CVE Reachability Analysis: Determines if vulnerable code in dependencies can be reached from your project's code.
- Evidence-Based Classification: Classifies CVEs as Likely Reachable, Possibly Reachable, or Likely Unreachable with supporting evidence.
- Use Case: When a new CVE is disclosed for a library your project uses, this Skill can quickly tell you if your specific usage patterns make the vulnerability a real threat, or if it's mitigated by your code's structure or configuration.
Quick Start
Use the cve-reachability-analyzer skill to analyze CVE-2023-12345 in the 'my-app' repository.
Dependency Matrix
Required Modules
None requiredComponents
scriptsreferences
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: cve-reachability-analyzer Download link: https://github.com/ArabelaTso/Skills-4-SE/archive/main.zip#cve-reachability-analyzer Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 223,000+ vetted skills library on demand.