aeon-vuln-scanner
Audit trending repos for real exploitable vulnerabilities and disclose responsibly — Private Vulnerability Reporting for code flaws and verified secrets, public PRs only for already-disclosed dependency CVEs. Semgrep + TruffleHog + osv-scanner + Slither with reachability triage. Skips targets that have no safe disclosure channel. Triggers: "vuln scan owner/repo", "audit this repo", "responsible-disclosure scan", "check for secret leaks", "scan dependencies for CVEs".
适合你,如果需要扫描开源仓库漏洞并安全披露
/ 通过 npx 安装 校验哈希
npx oh-my-skill add bankrbot/skills/aeon-vuln-scanner/ 通过 bash 安装
curl -fsSL https://oh-my-skill.com/install.sh | bash -s -- bankrbot/skills/aeon-vuln-scanner/ 已经装过?验证本机副本,不用重装
npx oh-my-skill verify bankrbot/skills/aeon-vuln-scanner安装目标可用 --agent / --scope 或 --to 明确指定;省略时只会在唯一已存在的 agent 目录上自动选择,零命中或多命中会停止并提示。content_hash 缺失或不一致均拒装。
1166GitHub stars
~737最小装载
~737含声明引用
~928文本包总量
索引托管
评论
登录即可评论;带「已验证安装」的,是发布者名下有本店的安装或持有记录。
…