← 返回 Skills 市场
Cyber Kev Triage
作者
Muhammad Mazhar Saeed
· GitHub ↗
· v0.1.0
498
总下载
0
收藏
2
当前安装
1
版本数
在 OpenClaw 中安装
/install cyber-kev-triage
功能描述
Prioritize vulnerability remediation using KEV-style exploitation context plus asset criticality. Use for CVE triage, patch order decisions, and remediation...
使用说明 (SKILL.md)
Cyber KEV Triage
Overview
Create a patch-priority plan by combining vulnerability severity, exploitation status, and business criticality of affected assets.
Workflow
- Collect vulnerabilities with CVE, CVSS, exploitation indicator, and affected asset.
- Map each vulnerability to asset criticality.
- Score and rank vulnerabilities into patch priority tiers.
- Produce concise remediation summary and due-window guidance.
Use Bundled Resources
- Run
scripts/kev_triage.pyfor deterministic triage output. - Read
references/triage-method.mdfor scoring rationale and review checks.
Guardrails
- Keep output defensive and remediation-focused.
- Do not generate exploit payloads or offensive execution steps.
安全使用建议
This skill looks coherent and runs locally on a provided JSON payload; it does not request keys or make network calls. Before use: (1) review the script yourself (it's short and readable) and run it in a controlled environment, (2) ensure input JSON is from a trusted source (it may contain sensitive asset data), (3) choose safe output paths to avoid overwriting important files, and (4) confirm the scoring thresholds and criticality mappings match your organization's policy. The code has some basic input assumptions (e.g., CVSS parsed as a float); malformed fields may raise errors, so validate inputs first.
功能分析
Type: OpenClaw Skill
Name: cyber-kev-triage
Version: 0.1.0
The `scripts/kev_triage.py` file exhibits potential Local File Inclusion (LFI) and Local File Write (LFW) vulnerabilities. It directly uses user-supplied paths for `--input` and `--output` arguments without explicit sanitization or restriction, allowing the script to read arbitrary files (which it then attempts to parse as JSON) and write processed data to arbitrary locations on the filesystem. While the script's core functionality is benign and there's no evidence of intentional data exfiltration, command execution, or persistence, these vulnerabilities could be exploited by an attacker who can control the arguments passed to the script (e.g., via prompt injection against the OpenClaw agent) to access or modify files beyond the intended scope.
能力评估
Purpose & Capability
Name/description (KEV-style triage) matches the provided artifacts: a scoring method, guidance doc, and a Python script that ingests vulnerabilities/assets and produces prioritized output. No unrelated credentials, binaries, or resources are requested.
Instruction Scope
SKILL.md instructs the agent to run the bundled script and read the included triage-method. The script only reads the provided input file, maps assets, computes scores, and writes an output artifact; it does not access other system paths, environment variables, or external endpoints. Guardrails in SKILL.md (no exploit payload generation) align with the code.
Install Mechanism
Instruction-only skill with no install spec. The only executable is a bundled Python script; there are no downloads or external packages installed by the skill.
Credentials
No required environment variables, credentials, or config paths are declared or used. The script accepts an input file path and an output path only, which is proportionate to the triage function.
Persistence & Privilege
The skill is not marked always:true and does not modify other skills or system-wide settings. It runs on demand and does not request elevated persistence.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install cyber-kev-triage - 安装完成后,直接呼叫该 Skill 的名称或使用
/cyber-kev-triage触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v0.1.0
- Initial release of cyber-kev-triage skill.
- Enables vulnerability triage by combining KEV exploitation context with asset criticality.
- Supports automated CVE patch-priority planning and remediation reporting.
- Includes scoring workflow, bundled triage script, and scoring rationale documentation.
- Restricts outputs to defensive, remediation-focused information only.
元数据
常见问题
Cyber Kev Triage 是什么?
Prioritize vulnerability remediation using KEV-style exploitation context plus asset criticality. Use for CVE triage, patch order decisions, and remediation... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 498 次。
如何安装 Cyber Kev Triage?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install cyber-kev-triage」即可一键安装,无需额外配置。
Cyber Kev Triage 是免费的吗?
是的,Cyber Kev Triage 完全免费(开源免费),可自由下载、安装和使用。
Cyber Kev Triage 支持哪些平台?
Cyber Kev Triage 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Cyber Kev Triage?
由 Muhammad Mazhar Saeed(@0x-professor)开发并维护,当前版本 v0.1.0。
推荐 Skills