auditing-tls-certificate-transparency-logs
Monitors Certificate Transparency logs to detect unauthorized certificate issuance and discover subdomains for enhanced cybersecurity.
Install this skill
or
87/100
Security score
The auditing-tls-certificate-transparency-logs skill was audited on Jun 5, 2026 and we found 5 security issues across 2 threat categories. Review the findings below before installing.
Categories Tested
Security Issues
medium line 53
Webhook reference - potential data exfiltration
SourceSKILL.md
| 53 | - SMTP credentials or webhook URL for alerting on new certificate discoveries |
medium line 98
Webhook reference - potential data exfiltration
SourceSKILL.md
| 98 | - **Alert delivery**: Send alerts via email (SMTP), Slack webhook, PagerDuty, or write to a SIEM-compatible JSON log format for integration with existing security monitoring. |
low line 63
External URL reference
SourceSKILL.md
| 63 | - **Query crt.sh for historical certificates**: Use the crt.sh JSON API to retrieve all known certificates for each domain. The API endpoint `https://crt.sh/?q=%.example.com&output=json` returns certi |
low line 77
External URL reference
SourceSKILL.md
| 77 | - **Atom/RSS feed alternative**: Subscribe to crt.sh's Atom feed for lighter-weight monitoring: `https://crt.sh/atom?q=%25.example.com` provides real-time notification of new log entries. |
low line 125
External URL reference
SourceSKILL.md
| 125 | - **crt.sh**: Primary CT log aggregator providing JSON API access at `https://crt.sh/?q=<query>&output=json` with support for wildcard queries, identity filtering, and certificate detail retrieval |
Scanned on Jun 5, 2026
View Security Dashboard