Skills
.Work. You
Rest

cve-fix

Official

Automate CVE patching across repositories.

Software Engineering#automation#security#dependencies#go#vulnerability management#cve
Authorsubmariner-io
Version1.0.0
Installs0

System Documentation

What problem does it solve?

This Skill automates the process of identifying and fixing Common Vulnerabilities and Exposures (CVEs) in Go-based software projects, streamlining security updates.

Core Features & Use Cases

  • Automated CVE Scanning: Scans Go modules for known vulnerabilities using Grype.
  • Dependency Updates: Automatically updates vulnerable packages in go.mod and go.sum files.
  • Branch Management: Creates dedicated branches for fixes and handles commit creation.
  • Use Case: A development team needs to patch a critical vulnerability affecting multiple microservices. This Skill can be invoked on each service's repository to automatically update the vulnerable dependency, create a commit, and prepare a pull request, significantly reducing manual effort and time-to-patch.

Quick Start

Run the cve-fix skill to patch vulnerabilities in the current repository and branch.

Dependency Matrix

Required Modules

None required

Components

scriptsreferences

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: cve-fix
Download link: https://github.com/submariner-io/shipyard/archive/main.zip#cve-fix

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.