一键导入
vulnerability-management
Systematic vulnerability lifecycle management with SLAs aligned with OWASP, NIST, and CIS Controls
用 Codex 或 Claude 帮你安装 复制这段 Prompt,粘贴到 Codex、Claude 或其他助手里,让它检查 Skill 页面并帮你完成安装。
菜单
Systematic vulnerability lifecycle management with SLAs aligned with OWASP, NIST, and CIS Controls
用 Codex 或 Claude 帮你安装 复制这段 Prompt,粘贴到 Codex、Claude 或其他助手里,让它检查 Skill 页面并帮你完成安装。
基于 SOC 职业分类
GitHub Agentic Workflows (gh-aw) - markdown-based AI automation with 5-layer security, safe outputs, and Continuous AI patterns
gh-aw CLI usage, compilation, testing, debugging, add-wizard, and CI/CD practices for GitHub Agentic Workflows
Multi-agent coordination, orchestrator-worker patterns, /plan decomposition, and project coordination for GitHub Agentic Workflows
5-layer defense-in-depth security for GitHub Agentic Workflows - safe outputs, threat detection, AWF firewall, and zero-trust patterns
Continuous AI patterns from Agent Factory - issue triage, documentation sync, code quality, security scanning, and project coordination
GDPR compliance including privacy by design, data protection requirements, consent management, right to be forgotten, and data breach response
| name | vulnerability-management |
| description | Systematic vulnerability lifecycle management with SLAs aligned with OWASP, NIST, and CIS Controls |
| license | Apache-2.0 |
Provide systematic procedures for proactive vulnerability discovery, intelligent remediation, and transparent security communication across all Hack23 projects, with measurable SLAs aligned with business impact.
| Severity | CVSS Score | SLA | Escalation |
|---|---|---|---|
| Critical | 9.0-10.0 | 7 days | CEO immediate |
| High | 7.0-8.9 | 30 days | CEO within 1 day |
| Medium | 4.0-6.9 | 90 days | Weekly review |
| Low | 0.1-3.9 | 180 days | Monthly review |
MUST enable on all repositories:
Phase 1: Discovery
Phase 2: Assessment
Phase 3: Remediation
security/CVE-YYYY-XXXXXPhase 4: Verification
Phase 5: Closure
Risk acceptance MUST: