vulnerability-scanner

# Vulnerability Scanner Skill Performs comprehensive security vulnerability scanning for dependencies and code, integrating with CVE databases and security platforms to identify, assess, and prioritize security risks for migration planning. ## Purpose Enable comprehensive security vulnerability detection for: - CVE database checking for known vulnerabilities - Severity assessment and prioritization - Exploitability analysis - Patch availability checking - Transitive vulnerability chain mapping - Risk scoring and remediation guidance ## Capabilities ### 1. CVE Database Checking - Query NVD (National Vulnerability Database) - Check GitHub Advisory Database - Query vendor-specific advisory databases - Cross-reference multiple CVE sources - Track CVE publication dates and updates ### 2. Severity Assessment - CVSS (Common Vulnerability Scoring System) scoring - Severity categorization (Critical, High, Medium, Low) - Environmental score adjustments - Temporal score analysis - Impact assessment ### 3. Exploitability Analysis - Check for known exploits in the wild - Assess attack vector complexity - Evaluate privileges required - Analyze user interaction requirements - Track exploit maturity level ### 4. Patch Availability Checking - Identify available patches and fixes - Check for security advisories - Find upgrade paths to secure versions - Track vendor patch timelines - Monitor backport availability ### 5. Transitive Vulnerability Chain Mapping - Map vulnerability paths t...