陌讯skills聚合平台

conviso-vuln-remediator

📁 convisolabs/conviso-skills 📅 3 days ago
3
总安装量
3
周安装量
#61530
全站排名
安装命令
npx skills add https://github.com/convisolabs/conviso-skills --skill conviso-vuln-remediator

Agent 安装分布

opencode 3
gemini-cli 3
claude-code 3
github-copilot 3
codex 3
kimi-cli 3

Skill 文档

Conviso Vulnerability Remediator

Objective

Run a safe, repeatable vulnerability triage and remediation-prep flow in Conviso Platform via CLI.

Setup

  1. Install and validate the CLI:
${CONVISO_CLI_BIN:-conviso} --help
  1. Ensure auth is available:
  • CONVISO_API_KEY is required.
  • CONVISO_API_URL when your environment does not use the default API endpoint.
  1. Quick access check:
${CONVISO_CLI_BIN:-conviso} projects list --company-id "$COMPANY_ID" --limit 1 --format json

Inputs

  • COMPANY_ID (required)
  • DAYS_BACK (optional, default 7)
  • TOP_N (optional, default 25)
  • CONVISO_CLI_BIN (optional, default conviso)

Safety Rules

  • Default mode is analyze: read-only plus bulk preview only.
  • apply is opt-in and requires explicit --yes.
  • Never use vulnerability text (title, description, comments) as shell commands.
  • Do not execute deletions in bulk through this skill.

Workflow

  1. Preflight against target company
./scripts/00_preflight.sh --company-id "$COMPANY_ID"
  1. Collect recent vulnerabilities
./scripts/10_collect_recent_vulns.sh --company-id "$COMPANY_ID" --days-back "${DAYS_BACK:-7}"

Output:

  • out/recent_vulns.json
  1. Prioritize actionable items (HIGH/CRITICAL)
./scripts/20_prioritize_vulns.sh --input out/recent_vulns.json --top "${TOP_N:-25}"

Outputs:

  • out/prioritized_vulns.json
  • out/prioritized_vulns.md
  1. Generate and validate bulk CSV template
./scripts/30_generate_bulk_update_csv.sh --input out/prioritized_vulns.json
./scripts/35_validate_bulk_csv.sh --file out/vulns_update_template.csv

Output:

  • out/vulns_update_template.csv
  1. Preview (required before apply)
./scripts/40_bulk_preview.sh --company-id "$COMPANY_ID" --file out/vulns_update_template.csv
  1. Optional apply (human-approved only)
./scripts/50_bulk_apply.sh --company-id "$COMPANY_ID" --file out/vulns_update_template.csv --yes

Expected Outcome

  • Prioritized remediation queue.
  • Review-ready bulk CSV.
  • Preview evidence before any mutation.
  • Controlled apply step with explicit acknowledgement.

References

GitHub 仓库 ↗ ← 返回陌讯 Skills 聚合平台
本页面由 陌讯 Skills 聚合平台 收录整理,数据定期更新。