write-hackerone-report

Generates concise and effective HackerOne reports for bug bounty hunters, detailing vulnerabilities and reproduction steps.

Install this skill

96/100

Security score

The write-hackerone-report skill was audited on Jun 6, 2026 and we found 4 security issues across 1 threat category. Review the findings below before installing.

Categories Tested

Security Issues

low line 114

External URL reference

SourceSKILL.md

114	It is possible for an attacker to exploit a Reflected XSS vulnerability at `https://site.com/renderHTML` to execute arbitrary JavaScript code in the victims browser and compromise the Access Token sto

low line 118

External URL reference

SourceSKILL.md

118	`https://site.com/renderHTML?HTMLCode=<script>alert(document.domain)</script>`.

low line 126

External URL reference

SourceSKILL.md

126	`https://site.com/renderHTML?HTMLCode=<script>alert(localStorage.getItem("access_token")</script>`

low line 132

External URL reference

SourceSKILL.md

132	2. Visit `https://site.com/renderHTML?HTMLCode=<script>alert(localStorage.getItem("access_token")</script>` and note your `access_token` has been stolen.

Scanned on Jun 6, 2026

View Security Dashboard

Installation guide →

GitHub Stars 5

Rate this skill

Categorydevelopment

UpdatedJune 15, 2026

openclaw security-engineer qa-engineer technical-writer development content media

bdmorin/the-no-shop