ghsa-skill-builder
CommunityBuild Security Skills from Vulnerabilities
Software Engineering#security#vulnerability#penetration testing#skill builder#code auditing#GHSA#HackerOne
Authoryhy0
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill automates the process of transforming raw vulnerability data from sources like GitHub Security Advisories (GHSA) and HackerOne reports into structured, actionable security Skills for AI agents. It bridges the gap between raw vulnerability intelligence and practical code auditing or penetration testing knowledge.
Core Features & Use Cases
- Automated Skill Generation: Creates reusable security Skills from GHSA and HackerOne data, covering various vulnerability types (injection, path traversal, SSRF, etc.) and programming languages (Python, Go).
- Data Source Integration: Pulls data from GitHub Advisory Database (GHSA) and HackerOne Hacktivity reports.
- Structured Output: Generates Skills with distinct layers for detection strategies and real-world case examples, optimized for AI context loading.
- Use Case: Automatically generate a new 'SQL Injection' Skill for Python by analyzing recent GHSA entries, or update an existing 'SSRF' Skill with new exploitation techniques derived from HackerOne reports.
Quick Start
Use the ghsa skill to generate Python code auditing skills from recent GHSA data.
Dependency Matrix
Required Modules
None requiredComponents
scriptsreferences
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: ghsa-skill-builder Download link: https://github.com/yhy0/ghsa-skill-builder/archive/main.zip#ghsa-skill-builder Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 223,000+ vetted skills library on demand.