variant-analysis

Identifies vulnerability variants in codebases using CodeQL and Semgrep, enhancing security through pattern matching.

Install this skill

79/100

Security score

The variant-analysis skill was audited on May 12, 2026 and we found 3 security issues across 3 threat categories, including 1 high-severity. Review the findings below before installing.

Categories Tested

Security Issues

medium line 177

Template literal with variable interpolation in command context

SourceSKILL.md

177	$DB.query(`...${$USERINPUT}...`)

high line 321

Prompting for password/secret input

SourceSKILL.md

321	\| Weak comparison \| `password == input (not timing-safe)` \|

low line 171

External URL reference

SourceSKILL.md

171	- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-XXXX

Scanned on May 12, 2026

View Security Dashboard

Installation guide →

GitHub Stars 18

Rate this skill

Categorydevelopment

UpdatedMay 21, 2026

claude frontend docx git api database testing devops backend security-engineer data-scientist qa-engineer development data analytics

oimiragieo/agent-studio