تشغيل أي مهارة في Manus بنقرة واحدة

ابدأ الآن

fix

النجوم٩

التفرعات٢

آخر تحديث١٣ مايو ٢٠٢٦ في ٠٧:٠٩

Fix or guide remediation for a specific security finding from the latest scan report

التثبيت

التثبيت باستخدام Codex أو Claude انسخ هذا Prompt والصقه في Codex أو Claude أو مساعد آخر ليراجع صفحة Skill ويثبّتها لك.

تشغيل في Manus

المصدر

Zate

Zate/cc-plugins

فتح مستودع GitHub عرض مستودعات المنشئ

تنزيل

تشغيل في Manus

المهن ذات الصلةSOC

استنادا إلى تصنيف SOC المهني

محللو أمن المعلوماتمهن الحاسوب والرياضيات·SOC 15-1212

SKILL.md

readonly

name	fix
description	Fix or guide remediation for a specific security finding from the latest scan report
argument-hint	<finding-id\|CWE/file:line> [--dry-run]
disable-model-invocation	true
allowed-tools	["Read","Edit","Grep","Glob","Bash","AskUserQuestion","Skill"]

Security Fix

Remediate one finding from .security/triaged.json or .security/report.md.

Step 1: Load Finding

Read .security/triaged.json. If it does not exist, tell the user to run /security:scan first.

Resolve $ARGUMENTS as:

exact finding ID, e.g. finding-003
CWE plus file/line, e.g. CWE-89 src/db.py:42
if omitted, ask the user to select from CRITICAL/HIGH TRUE_POSITIVE findings.

If the finding verdict is FALSE_POSITIVE, stop and suggest suppressing it with /security:scan --suppress <id>.

Step 2: Load Remediation Skill

Route by CWE/category:

CWE/category	Skill
CWE-78, CWE-79, CWE-89, injection, XSS	`remediation-injection`
CWE-798, CWE-287, CWE-502, auth, authorization, deserialization	`remediation-auth`
CWE-327, CWE-330, TLS, crypto, randomness	`remediation-crypto`
CWE-22, CWE-489, headers, deployment, config	`remediation-config`
Other	`remediation-library`

Use the selected remediation skill for the fix pattern.

Step 3: Inspect Minimal Context

Read the affected file around the finding and only nearby helper code needed to make a safe edit. Do not broaden into unrelated security work.

Step 4: Fix or Dry Run

If --dry-run is present, report the proposed change without editing.

Otherwise:

Apply the minimal secure change.
Preserve existing behavior.
Add or adjust focused tests only when the project already has a clear test pattern.
Run the narrowest relevant verification command available.

Step 5: Update User

Report:

Finding fixed.
File changed.
Verification run.
Recommended follow-up: /security:scan --diff.

المزيد من هذا المستودع

نفس المستودع

baseline

Zate/cc-plugins

Create or update the project security baseline, profile, suppressions file, and gitignore entries for security scans

2026-05-139

scan

Zate/cc-plugins

Run a security assessment using deterministic static analysis tools with LLM-powered triage

2026-05-139

setup

Zate/cc-plugins

Inspect and optionally install security scanning tools for the security plugin

2026-05-139

recall

Zate/cc-plugins

Query ctx memory and inject results into context

2026-05-119

status

Zate/cc-plugins

Show ctx memory status (node counts, types, tiers, tokens)

2026-05-119

using-ctx

Zate/cc-plugins

MANDATORY persistent memory system for decisions, facts, patterns, and observations.

2026-05-119

name	fix
description	Fix or guide remediation for a specific security finding from the latest scan report
argument-hint	<finding-id\|CWE/file:line> [--dry-run]
disable-model-invocation	true
allowed-tools	["Read","Edit","Grep","Glob","Bash","AskUserQuestion","Skill"]

Security Fix

Remediate one finding from .security/triaged.json or .security/report.md.

Step 1: Load Finding

Read .security/triaged.json. If it does not exist, tell the user to run /security:scan first.

Resolve $ARGUMENTS as:

exact finding ID, e.g. finding-003
CWE plus file/line, e.g. CWE-89 src/db.py:42
if omitted, ask the user to select from CRITICAL/HIGH TRUE_POSITIVE findings.

If the finding verdict is FALSE_POSITIVE, stop and suggest suppressing it with /security:scan --suppress <id>.

Step 2: Load Remediation Skill

Route by CWE/category:

CWE/category	Skill
CWE-78, CWE-79, CWE-89, injection, XSS	`remediation-injection`
CWE-798, CWE-287, CWE-502, auth, authorization, deserialization	`remediation-auth`
CWE-327, CWE-330, TLS, crypto, randomness	`remediation-crypto`
CWE-22, CWE-489, headers, deployment, config	`remediation-config`
Other	`remediation-library`

Use the selected remediation skill for the fix pattern.

Step 3: Inspect Minimal Context

Read the affected file around the finding and only nearby helper code needed to make a safe edit. Do not broaden into unrelated security work.

Step 4: Fix or Dry Run

If --dry-run is present, report the proposed change without editing.

Otherwise:

Apply the minimal secure change.
Preserve existing behavior.
Add or adjust focused tests only when the project already has a clear test pattern.
Run the narrowest relevant verification command available.

Step 5: Update User

Report:

Finding fixed.
File changed.
Verification run.
Recommended follow-up: /security:scan --diff.