vulnerability-scanner

Quick Review

Excellent security skill with comprehensive 2025 OWASP coverage, supply chain security focus, and structured methodology. The description clearly conveys vulnerability analysis capabilities. Strong task knowledge with phase-based scanning approach, risk prioritization frameworks (CVSS+EPSS), and concrete code patterns. Well-organized with clean separation (checklists in separate file, validation script provided). High novelty as it encodes expert security thinking, threat modeling, and the new A03/A10 categories that would require significant token expenditure for a CLI agent to reconstruct. Minor improvement possible: description could explicitly mention 'automated scanning' or 'code analysis' for maximum clarity on invocation context.