Agent Skillslarlarua/AutoCVE › code-audit-finding

code-audit-finding

GitHub

为DeepAudit的Finding代理提供源码审计支持,聚焦授权、逻辑缺陷等风险。强制遵循证据驱动原则,按固定顺序及项目特征加载参考文件,严格区分案例与代码证据,确保审计结论准确可靠。

skill_library/code-audit-finding/SKILL.md larlarua/AutoCVE

Trigger Scenarios

进行源代码安全审计 分析授权控制或业务逻辑漏洞 执行IDOR或路径处理问题排查 需要生成基于证据的审计发现

Install

npx skills add larlarua/AutoCVE --skill code-audit-finding -g -y
More Options

Non-standard path

npx skills add https://github.com/larlarua/AutoCVE/tree/main/skill_library/code-audit-finding -g -y

Use without installing

npx skills use larlarua/AutoCVE@code-audit-finding

指定 Agent (Claude Code)

npx skills add larlarua/AutoCVE --skill code-audit-finding -a claude-code -g -y

安装 repo 全部 skill

npx skills add larlarua/AutoCVE --all -g -y

预览 repo 内 skill

npx skills add larlarua/AutoCVE --list

SKILL.md

Frontmatter
{
    "name": "code-audit-finding",
    "tags": [
        "finding",
        "code-audit",
        "source-audit",
        "auth",
        "idor",
        "business-logic"
    ],
    "description": "DeepAudit Finding overlay for source-code auditing with code-audit-main references, mandatory reading routes, and progressive WooYun disclosure."
}

Code Audit Finding Overlay

This skill adapts the code-audit-main knowledge base for DeepAudit's Finding agent.

Use this skill to strengthen source-code auditing for:

  • authorization and access-control flaws
  • IDOR and tenant-isolation issues
  • business-logic and state-machine flaws
  • file operations and path handling
  • input-validation gaps
  • attack-chain driven source-to-sink review

This skill keeps DeepAudit's current role split intact:

  • recon provides project navigation and scope
  • finding produces source-audit conclusions
  • verification performs follow-up validation

Required Startup Protocol

  1. Read this SKILL.md first with load_skill_body.
  2. Use skill_resource_lookup(mode="list") before opening a new reference directory family.
  3. Use skill_resource_lookup(mode="read") for every required file you rely on.
  4. Do not claim a checklist, framework rule, control requirement, or case pattern unless you have actually read the corresponding file.

Fixed-First Reading Order

After reading this SKILL.md, always read these files first:

  • references/core/anti_hallucination.md
  • references/core/false_positive_filter.md
  • references/checklists/coverage_matrix.md
  • references/core/comprehensive_audit_methodology.md
  • references/core/data_flow_methodology.md
  • references/core/taint_analysis.md

Conditional Mandatory Reading

After the fixed-first set, route by project signals:

  • Languages:
    • references/checklists/<language>.md
    • references/languages/<language>.md
  • Frameworks:
    • references/frameworks/<framework>.md
  • Security domains:
    • references/security/authentication_authorization.md
    • references/security/business_logic.md
    • references/security/file_operations.md
    • references/security/input_validation.md
    • references/security/api_security.md
    • references/security/race_conditions.md
    • plus other matching files under references/security/
  • Control verification:
    • references/adapters/<language>.yaml

Finding-Specific Constraints

  • Audit must stay evidence-driven.
  • Cases and historical vulns can guide search direction, but they never count as evidence.
  • If you have not read the relevant reference file, do not say that topic is fully audited.
  • If you want to claim a missing control at high confidence, read the matching adapter first.
  • Use the references to guide code reading, not to replace code reading.

Progressive Disclosure for WooYun and Cases

Use four levels of disclosure:

  1. Default:
    • do not preload WooYun case bodies
  2. Index first:
    • read references/wooyun/INDEX.md
  3. Evidence-gated expansion:
    • only after you already have project-specific code evidence may you read one or two related case files
  4. Strict evidence boundary:
    • WooYun and real-world cases only expand search directions, bypass ideas, and missed-check hints
    • they do not justify a finding on their own

Relevant case sources:

  • references/wooyun/
  • references/cases/real_world_vulns.md

Intentionally Excluded From Required Runtime Flow

agent.md is preserved in this skill root for reference, but its deep multi-agent orchestration is not part of Finding's required runtime reading path.

The original upstream SKILL.md is preserved at:

  • references/core/original_skill_reference.md

Version History

  • 97ce141 Current 2026-07-05 09:22

Same Skill Collection

backend/skill_library/code-audit-finding/SKILL.md
skill_library/cve-report-writer/SKILL.md
skill_library/code-security/SKILL.md
skill_library/secknowledge-skill/SKILL.md

Metadata

Files
0
Version
97ce141
Hash
5044f185
Indexed
2026-07-05 09:22

Accueil - Wiki
Copyright © 2011-2026 iteam. Current version is 2.155.2. UTC+08:00, 2026-07-08 20:56
浙ICP备14020137号-1 $Carte des visiteurs$