vulnerability-scanner
Advanced vulnerability analysis for OWASP 2025, supply chain security, attack surface mapping, and risk prioritization.
Best use case
vulnerability-scanner is best used when you need a repeatable AI agent workflow instead of a one-off prompt.
Advanced vulnerability analysis for OWASP 2025, supply chain security, attack surface mapping, and risk prioritization.
Teams using vulnerability-scanner should expect a more consistent output, faster repeated execution, less prompt rewriting.
When to use this skill
- You want a reusable workflow that can be run more than once with consistent structure.
When not to use this skill
- You only need a quick one-off answer and do not need a reusable workflow.
- You cannot install or maintain the underlying files, dependencies, or repository context.
Installation
Claude Code / Cursor / Codex
Manual Installation
- Download SKILL.md from GitHub
- Place it in
.claude/skills/vulnerability-scanner/SKILL.mdinside your project - Restart your AI agent — it will auto-discover the skill
How vulnerability-scanner Compares
| Feature / Agent | vulnerability-scanner | Standard Approach |
|---|---|---|
| Platform Support | Not specified | Limited / Varies |
| Context Awareness | High | Baseline |
| Installation Complexity | Unknown | N/A |
Frequently Asked Questions
What does this skill do?
Advanced vulnerability analysis for OWASP 2025, supply chain security, attack surface mapping, and risk prioritization.
Where can I find the source code?
You can find the source code on GitHub using the link provided at the top of the page.
SKILL.md Source
# vulnerability-scanner Advanced vulnerability analysis for OWASP 2025, supply chain security, attack surface mapping, and risk prioritization. ## Install ``` npx clawhub@latest install vulnerability-scanner ```
Related Skills
go-security-vulnerability
Identify, assess, and fix security vulnerabilities in Go modules using govulncheck. Handle common vulnerabilities like JWT issues and ensure application stability during fixes.
skill-scanner
Scan OpenBot/Clawdbot skills for security vulnerabilities, malicious code, and suspicious patterns before installing them. Use when a user wants to audit a skill, check if a ClawHub skill is safe, scan for credential exfiltration, detect prompt injection, or review skill security. Triggers on security audit, skill safety check, malware scan, or trust verification.
Heimdall - Security Scanner for AI Agent Skills
Scan OpenClaw skills for malicious patterns before installation. Context-aware scanning with AI-powered narrative analysis.
ultimate-fork-and-skill-scanner
Scan GitHub forks and ClawHub skills for valuable changes, innovations, and enhancements.
fork-and-skill-scanner-ultimate
Scan 1,000 GitHub forks per run.
network-scanner
Scan networks to discover devices, gather MAC addresses, vendors, and hostnames. Includes safety checks to prevent accidental scanning of public networks.
security-scanner
Automated security scanning and vulnerability detection for web applications, APIs, and infrastructure.
security-skill-scanner
Security scanner for ClawdHub skills - detects suspicious patterns, manages whitelists, and monitors Moltbook for security threats.
heartbeat-scanner
Validate your agent nature through SHACL-based heartbeat analysis.
skill-threat-scanner
Scan OpenClaw skills for malware, prompt injection, reverse shells, wallet theft, supply chain attacks, and data.
securevibes-scanner
Run AI-powered application security scans on codebases.
permission-creep-scanner
Helps detect permission creep in AI agent skills — flags when a skill's actual code accesses resources far.