Skills cyber-kev-triage

Prioritize vulnerability remediation using KEV-style exploitation context plus asset criticality. Use for CVE triage, patch order decisions, and remediation reporting.

install

source · Clone the upstream repo

git clone https://github.com/openclaw/skills

Claude Code · Install into ~/.claude/skills/

T=$(mktemp -d) && git clone --depth=1 https://github.com/openclaw/skills "$T" && mkdir -p ~/.claude/skills && cp -r "$T/skills/0x-professor/cyber-kev-triage" ~/.claude/skills/clawdbot-skills-cyber-kev-triage && rm -rf "$T"

manifest: skills/0x-professor/cyber-kev-triage/SKILL.md

source content

Cyber KEV Triage

Overview

Create a patch-priority plan by combining vulnerability severity, exploitation status, and business criticality of affected assets.

Workflow

Collect vulnerabilities with CVE, CVSS, exploitation indicator, and affected asset.
Map each vulnerability to asset criticality.
Score and rank vulnerabilities into patch priority tiers.
Produce concise remediation summary and due-window guidance.

Use Bundled Resources

Run
```
scripts/kev_triage.py
```
for deterministic triage output.
Read
```
references/triage-method.md
```
for scoring rationale and review checks.

Guardrails

Keep output defensive and remediation-focused.
Do not generate exploit payloads or offensive execution steps.