review-semgrep
CommunityTriages semgrep findings to true positives.
Authorchrismcmacken
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill helps security teams quickly identify real vulnerabilities in semgrep results by automating triage and reducing false positives, saving time during threat hunting.
Core Features & Use Cases
- Automated triage: Distinguish true positives from noise across multiple repositories and findings directories.
- Centralized review: Correlate semgrep results with reports and artifacts to enable efficient decision making.
- Use Case: A security engineer reviews hundreds of findings from jitsi and tronprotocol projects and focuses on high-severity issues that require remediation.
Quick Start
Use the skill to generate a concise summary of semgrep findings for an organization by running the extraction scripts and reviewing the resulting findings in findings/ and reports/.
Dependency Matrix
Required Modules
None requiredComponents
scripts
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: review-semgrep Download link: https://github.com/chrismcmacken/bounty-hunter/archive/main.zip#review-semgrep Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 223,000+ vetted skills library on demand.