Hve-core security-reviewer-formats
Format specifications and data contracts for the security reviewer orchestrator and its subagents - Brought to you by microsoft/hve-core.
install
source · Clone the upstream repo
git clone https://github.com/microsoft/hve-core
Claude Code · Install into ~/.claude/skills/
T=$(mktemp -d) && git clone --depth=1 https://github.com/microsoft/hve-core "$T" && mkdir -p ~/.claude/skills && cp -r "$T/.github/skills/security/security-reviewer-formats" ~/.claude/skills/microsoft-hve-core-security-reviewer-formats && rm -rf "$T"
manifest:
.github/skills/security/security-reviewer-formats/SKILL.mdsource content
Security Reviewer Formats — Skill Entry
This
SKILL.mdThe skill provides shared format templates and data contracts used by the security reviewer orchestrator and its subagents during vulnerability assessments. Each reference file covers a focused area of the reporting pipeline.
Normative references
- Report Formats — VULN_REPORT_V1 template, diff mode qualifiers, and PLAN_REPORT_V1 template.
- Finding Formats — Finding Serialization Format and Verified Findings Collection Format.
- Completion Formats — Scan Status Format, Scan Completion Format, and Minimal Profile Stub Format.
- Severity Definitions — Standard severity level definitions for all OWASP skill assessments.
Skill layout
— this file (skill entrypoint).SKILL.md
— format specification documents.references/
— full report templates for audit, diff, and plan modes.report-formats.md
— serialization and collection formats for findings exchange between subagents.finding-formats.md
— status updates, completion summaries, and the minimal profile stub.completion-formats.md
— severity level table shared across all assessments.severity-definitions.md
🤖 Crafted with precision by ✨Copilot following brilliant human instruction, then carefully refined by our team of discerning human reviewers.