-
Notifications
You must be signed in to change notification settings - Fork 0
Home
RORO edited this page Jul 2, 2026
·
2 revisions
A vulnerability harness for Claude Code. It is a set of security skills plus a Dockerized static-analysis backend that turn the agent into a security auditor.
- Security Audit: the six-phase multi-agent audit pipeline.
- Joern Skill: CPGQL queries over the Code Property Graph.
- Joern Gateway: the Dockerized Joern server and Python gateway.
-
security-auditskill runs a fleet of parallel sub-agents through a six-phase pipeline to find exploitable vulnerabilities with real impact. It is a from-scratch rebuild of Cloudflare's Build your own vulnerability harness and security-audit-skill. -
joernskill drives Joern for structural and data-flow queries (CPGQL): taint tracking and source-to-sink reachability. -
joern-gatewayis a standalone Joern server plus a Python WebSocket gateway in Docker, driven by thejoernctlCLI.


cd joern-gateway
docker compose up -d --build
./joernctl health
./joernctl import /work/target
./joernctl query 'cpg.call.name("system").reachableByFlows(cpg.parameter).p'