How does it help with remediation?

For every True Positive finding, the skill generates a 'How to Fix' section with concrete code examples and links to relevant security documentation.

How does the skill calculate vulnerability risk?

Risk is calculated using a formula: (Impact × Exploitability) / Detection Time. It factors in severity, ease of attack, and how long the code has been exposed.

Can I manually override the AI's triage decisions?

Yes, the skill includes an optional interactive mode that allows you to accept, override, or skip classifications with a built-in feedback loop.

Does this skill send my code to external security APIs?

No, all security reasoning and classification logic are executed natively by Claude Code using the provided local context and knowledge base.

Which security scanner formats are supported?

The skill natively supports SARIF format, Unified Finding Format (UFFormat), and custom JSON findings from tools like Semgrep and CodeQL.

Security Triage Specialist

Name: Security Triage Specialist
Author: jpoley

byjpoley

•

Seguridad y Pruebas

Automates the classification, risk scoring, and remediation guidance for security vulnerabilities identified by static analysis scanners.

The Security Triage Specialist skill empowers Claude Code to perform high-fidelity analysis on security findings from tools like Semgrep and CodeQL. By reading local code context and analyzing git history, it automatically classifies findings as True Positives or False Positives, calculates prioritized risk scores, and generates plain-English explanations. This skill streamlines the security review process by clustering related vulnerabilities and providing actionable remediation steps, allowing developers to focus on the most critical threats first.

Características Principales

01Dynamic risk calculation based on impact, exploitability, and detection time

02Automated TP/FP classification with AI-driven confidence scoring

03Deep code context analysis including surrounding lines and git blame history

04Vulnerability clustering by CWE, file, or architectural patterns

05Plain-English remediation guides with specific code fix examples

065 GitHub stars

Casos de Uso

01Processing large volumes of scanner output from Semgrep, CodeQL, or SARIF files

02Generating developer-friendly vulnerability explanations and patch strategies

03Prioritizing security backlogs based on empirical risk and exploitability metrics

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add jpoley/flowspec security-triage

For use in Claude.ai and ChatGPT

Download Skill