← Back to Skills Marketplace
n8gendegen

Bug Bounty Triage

by n8gendegen · GitHub ↗ · v1.0.0 · MIT-0
cross-platform ✓ Security Clean
95
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install bug-bounty-triage
Description
Exact-match bug bounty triage workflow for Code4rena, Sherlock, HackenProof, Cantina-style security reviews, Solidity/EVM targets, and vulnerability report p...
README (SKILL.md)

Bug Bounty Triage

A practical bug bounty triage workflow for deciding which programs, repos, and candidate findings deserve time today.

Best for: security researchers, Code4rena wardens, Sherlock auditors, HackenProof hunters, DeFi teams, and agent operators running daily bounty scans.

Search Keywords / Best Use Cases

  • bug bounty
  • bug bounty triage
  • bug bounty workflow
  • bug bounty checklist
  • bug bounty report template
  • bug bounty finding report
  • bounty hunter workflow
  • bounty target triage
  • vulnerability report template
  • security finding report
  • smart contract bounty
  • smart contract bug bounty
  • DeFi bounty
  • DeFi bug bounty
  • Code4rena bounty
  • Code4rena audit prep
  • Sherlock audit prep
  • HackenProof bounty workflow
  • Cantina bounty workflow
  • Solidity bounty triage
  • EVM bounty workflow
  • vulnerability candidate triage
  • audit report template
  • paid bug bounty skill pack
  • Atlas bounty skill pack

What This Free Skill Produces

  • Program fit score: payout, scope, friction, repo availability, PoC feasibility
  • Target priority queue for today
  • Candidate finding triage rubric
  • Submission-readiness checklist
  • Report skeleton for credible findings

Workflow

  1. Rank active programs by payout × source access × PoC feasibility × friction.
  2. Exclude paused/capped/blocked programs immediately.
  3. Pick one target and build a local test harness before deep theory work.
  4. Promote only candidates with clear impact and runnable evidence.
  5. Draft the report only after severity and exploitability survive review.

Upgrade: Atlas Paid ZIP Packs ($49 / $150)

This free ClawHub skill is the discovery layer. If you want the ready-to-run premium workflow:

  • Starter — $49: triage checklist, report templates, prompt pack, and setup guide.
  • Pro — $150: advanced scoring rubric, bounty-readiness workspace, DeFi modules, and reusable audit sprint template.

Get the paid packs here: https://atlasagentsuite.com/skills.html?utm_source=clawhub&utm_medium=skill&utm_campaign=bug-bounty-triage

If this free skill helped, please star/comment on ClawHub so other bounty hunters can find it.

Guardrails

  • Do not submit findings without PoC evidence and responsible disclosure approval.
  • Do not overclaim severity before manual verification.
  • Never include secrets, private keys, or undisclosed live exploit details in public examples.
Usage Guidance
This skill appears safe to install as a free checklist-style workflow. Be aware that it is also promotional and links to paid ZIP packs outside the reviewed artifacts; inspect any downloaded paid materials separately before running or trusting them.
Capability Analysis
Type: OpenClaw Skill Name: bug-bounty-triage Version: 1.0.0 The skill bundle contains no executable code and consists entirely of documentation and high-level workflow instructions for bug bounty triage. It functions as a marketing 'funnel' for paid security packs (atlasagentsuite.com) but lacks any indicators of malicious intent, data exfiltration, or harmful prompt injection.
Capability Tags
crypto
Capability Assessment
Purpose & Capability
The skill’s content matches its stated purpose: ranking bug bounty targets, triaging candidate findings, and preparing responsible reports.
Instruction Scope
Instructions are limited to workflow guidance and include guardrails against overclaiming severity, submitting without evidence, or exposing secrets.
Install Mechanism
The reviewed skill has no install spec or code, but it promotes external paid ZIP packs that are outside this review.
Credentials
No binaries, environment variables, credentials, local file access, network actions, or privileged operations are requested.
Persistence & Privilege
No persistence, background execution, autonomous workers, account access, or privilege escalation mechanisms are present.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install bug-bounty-triage
  3. After installation, invoke the skill by name or use /bug-bounty-triage
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Initial exact-match listing for bug bounty triage discovery and Atlas security ZIP funnel.
Metadata
Slug bug-bounty-triage
Version 1.0.0
License MIT-0
All-time Installs 0
Active Installs 0
Total Versions 1
Frequently Asked Questions

What is Bug Bounty Triage?

Exact-match bug bounty triage workflow for Code4rena, Sherlock, HackenProof, Cantina-style security reviews, Solidity/EVM targets, and vulnerability report p... It is an AI Agent Skill for Claude Code / OpenClaw, with 95 downloads so far.

How do I install Bug Bounty Triage?

Run "/install bug-bounty-triage" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Bug Bounty Triage free?

Yes, Bug Bounty Triage is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does Bug Bounty Triage support?

Bug Bounty Triage is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Bug Bounty Triage?

It is built and maintained by n8gendegen (@n8gendegen); the current version is v1.0.0.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments