finding-triage
CommunityTurn any finding into a defensible decision.
Legal & Compliance#vulnerability management#mitigation planning#false positive#security triage#risk acceptance#audit-ready documentation
Authorbriiirussell
Version1.0.0
Installs0
System Documentation
What problem does it solve?
Finding-triage helps you determine whether a single security finding is real and, if so, document an auditable disposition (Fixed, Deferred, Accepted Risk, or False Positive) with a mitigation plan or justification that fits your environment.
Core Features & Use Cases
- Single-Finding Disposition Writeup: Produces a ticket-ready record using the appropriate template (Fixed, Defer, Accept Risk, or False Positive).
- Evidence-Based False-Positive Evaluation: Checks reachability, preconditions, environment mismatch, existing controls, and scanner artifacts so you can justify suppression or re-evaluation.
- Contextual Severity Adjustment: Refines scanner-provided severity using factors like exploitability, exposure, data sensitivity, and compensating controls.
Quick Start
Use the finding-triage skill to triage the security finding you paste in by generating an actionable disposition and mitigation or justification document.
Dependency Matrix
Required Modules
None requiredComponents
Standard package💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: finding-triage Download link: https://github.com/briiirussell/cybersecurity-skills/archive/main.zip#finding-triage Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.