triaging-findings
OfficialStreamline security findings: verify, deduplicate, rank, and route.
Software Engineering#workflow#security#verification#deduplication#vulnerability-management#triage#findings
AuthorSocketDev
Version1.0.0
Installs0
System Documentation
What problem does it solve?
Adversarial triage of raw security-scanner output. It verifies each finding, collapses duplicates, re-ranks by derived exploitability, and tags with an owner, producing a concise, actionable triage view.
Core Features & Use Cases
- Verification: validate that each finding is real, actionable, and worth remediation.
- Deduplication: collapse duplicates across scanners to a single canonical finding.
- Ranking by exploitability: prioritize survivors using derived exploitability rather than scanner severity.
- Routing: assign each finding to an appropriate owner for remediation and follow-up.
- Input/output flexibility: accepts VULN-FINDINGS.json, scanner results, or markdown reports and emits TRIAGE.json + TRIAGE.md for downstream workflow.
- Use cases include triaging vulnerability backlog, preparing engineering backlogs, and coordinating across security and development teams.
Quick Start
Feed a findings file or directory to triaging-findings to normalize, deduplicate, verify, and triage the results into TRIAGE.json and TRIAGE.md.
Dependency Matrix
Required Modules
None requiredComponents
scripts
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: triaging-findings Download link: https://github.com/SocketDev/socket-mcp/archive/main.zip#triaging-findings Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 510,000+ vetted skills library on demand.