Skills
.Work. You
Rest

java-vuln-scanner

Community

Identify and report Java dependency vulnerabilities

Software Engineering#vulnerability#dependencies#java#CVE#report#scan
AuthorRuoJi6
Version1.0.0
Installs0

System Documentation

What problem does it solve?

Detect known Java component vulnerabilities in Maven, Gradle, and JAR dependencies to prevent insecure software from shipping.

Core Features & Use Cases

  • Module-scoped scanning: Analyzes pom.xml, build.gradle, and JAR metadata to enumerate dependencies by module.
  • CVE-based risk detection: Applies a ruleset of CVE patterns to flag vulnerable components and generate a detailed report.
  • Output formats: Produces Markdown and JSON scan reports suitable for auditing, remediation tracking, and integration.

Quick Start

  • Run the vulnerability scan on a Java project by pointing to the root directory containing pom.xml/build.gradle and JARs, using the rules file at references/java-vulnerability.yaml.
  • Example command: python3 scripts/scan_dependencies.py /path/to/java-project --rules references/java-vulnerability.yaml --no-deps

Dependency Matrix

Required Modules

pyyaml

Components

Standard package

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: java-vuln-scanner
Download link: https://github.com/RuoJi6/java-audit-skills/archive/main.zip#java-vuln-scanner

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 223,000+ vetted skills library on demand.