oss-forensics-agent
CommunityDetect supply-chain compromises in GitHub repos
Authorcamgrimsec
Version1.0.0
Installs0
System Documentation
What problem does it solve?
Organizations need an evidence‑backed method to investigate open‑source repositories for supply‑chain attacks, suspicious commits, and compromised maintainers.
Core Features & Use Cases
- Collects comprehensive data from GitHub APIs, GH Archive, Wayback Machine, and package registries.
- Extracts indicators of compromise, reconstructs event timelines, and forms hypothesis reports.
- Generates detailed forensic reports for executive escalation or further threat‑intel monitoring.
Quick Start
Ask the oss-forensics skill to investigate a repository URL for suspicious activity.
Dependency Matrix
Required Modules
None requiredComponents
scriptsreferencesassets
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: oss-forensics-agent Download link: https://github.com/camgrimsec/grimsec-suite/archive/main.zip#oss-forensics-agent Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.