Skip to content

Add vuln-report-writing skill for professional penetration testing and bug bounty hunting#33

Open
CristiVlad25 wants to merge 1 commit into
openai:mainfrom
CristiVlad25:add-vuln-report-writing
Open

Add vuln-report-writing skill for professional penetration testing and bug bounty hunting#33
CristiVlad25 wants to merge 1 commit into
openai:mainfrom
CristiVlad25:add-vuln-report-writing

Conversation

@CristiVlad25
Copy link
Copy Markdown

@CristiVlad25 CristiVlad25 commented Dec 29, 2025

This skill is useful for cybersecurity professionals as it helps with report writing in 2 ways:

  1. Writes reports for individual findings (vulnerabilities/bugs) that can be used on bug bounty platforms.
  2. Writes penetration testing reports, based on all the findings.

In short:

  • Adds new skill skills/.experimental/vuln-report-writing
  • Provides a strict, triage-friendly format for bug bounty findings and pentest reports
  • Includes templates and OWASP reference list to keep reports consistent and reproducible

Contents

  • skills/.experimental/vuln-report-writing/SKILL.md
  • skills/.experimental/vuln-report-writing/references/bugbounty-finding.md
  • skills/.experimental/vuln-report-writing/references/pentest-report.md
  • skills/.experimental/vuln-report-writing/references/owasp-refs.md
  • skills/.experimental/vuln-report-writing/LICENSE.txt

Testing

  • Not applicable (documentation/skill content only)

@CristiVlad25 CristiVlad25 requested a review from a team December 29, 2025 14:11
@ignatremizov
Copy link
Copy Markdown

ignatremizov commented Jan 8, 2026

Why "mention Burp when possible"? skills should be generic

@CristiVlad25
Copy link
Copy Markdown
Author

CristiVlad25 commented Jan 12, 2026

it's "Mention Burp explicitly when used".

sohrabafard added a commit to sohrabafard/skills that referenced this pull request May 7, 2026
@sohrabafard
Squashed 'vendor/cc-skills-golang/' changes from 6a55473..e9761db
d20b347 
e9761db chore: bump plugin version to 1.4.0
446c026 docs: add AI-driven code review CI guide
b29281d chore(golang-graphql): format markdown and remove AI review file
236020f feat(golang-google-wire): add compile-time DI skill (openai#34)
16d6eec feat(cobra,viper): add golang-spf13-cobra and golang-spf13-viper skills (openai#33)
969bd82 feat(golang-graphql): write full skill body with references and evals (openai#32)
556f241 feat: add golang-swagger skill (swaggo/swag v2) (openai#31)
2e80a54 docs(uber-dig,uber-fx): add fx vs dig comparison section (openai#30)
bee9d04 fix(lint): apply prettier formatting across skill files
6ae8ff8 fix(lint): wrap bare URLs in uber-dig and uber-fx skills
f8564ff chore: bump plugin version to 1.3.0
5ab41df feat: add AI-driven code review workflow with skill plugin (openai#23)
85156e7 feat: add golang-uber-dig and golang-uber-fx skills (openai#25)

git-subtree-dir: vendor/cc-skills-golang
git-subtree-split: e9761db859c6969b77a8fd0e8a243f4f28240211
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@CristiVlad25 @ignatremizov