Does this skill support automated fuzzing?

Yes, it includes detailed patterns for setting up cargo-fuzz, creating fuzz targets for public APIs, and integrating continuous fuzzing into your development environment to catch panics and crashes.

Can I use this for CI/CD automation?

Absolutely. The skill provides configurations and commands specifically designed to fail CI builds when security vulnerabilities, advisories, or banned licenses are detected.

What is the recommended CVE disclosure policy?

The skill advocates for a 90-day private disclosure window to maintainers before public announcement, with all mitigations documented in a SECURITY.md file.

How does this skill help with Rust dependency security?

It provides specific workflows for using cargo-audit and cargo-deny to detect and block vulnerable, unmaintained, or unlicensed dependencies within your Rust project's dependency tree.

What are the documentation requirements for unsafe code?

Every unsafe block must include a mandatory // SAFETY: comment explaining the invariants relied upon, why the calling code maintains them, and the consequences of violation.

Security & Vulnerability Management

Name: Security & Vulnerability Management
Author: kreuzberg-dev

bykreuzberg-dev

•

480

•

安全与测试

Implements rigorous security standards for Rust projects through vulnerability auditing, automated fuzzing, and strict unsafe code reviews.

This Claude Code skill provides a comprehensive framework for maintaining secure Rust codebases by integrating industry-standard tools and safety practices. It guides developers through automated dependency auditing with cargo-audit and cargo-deny, establishes continuous fuzzing protocols to prevent crashes on untrusted input, and enforces strict documentation requirements for unsafe code blocks. By standardizing security checklists and CVE disclosure policies, this skill ensures that security is a core component of the development lifecycle, from initial implementation to CI/CD and final release.

主要功能

01480 GitHub stars

02Strict safety documentation standards for unsafe code blocks

03Continuous fuzzing implementation with cargo-fuzz for public API surfaces

04Automated vulnerability auditing using cargo-audit and cargo-deny

05Comprehensive security checklists for production release readiness

06Proactive CVE disclosure and mitigation policy management

使用场景

01Standardizing unsafe code reviews and safety invariants across a development team

02Hardening a Rust library against malicious or malformed inputs via fuzz testing

03Implementing security-focused CI/CD pipelines for dependency and license monitoring

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add kreuzberg-dev/html-to-markdown security-and-vulnerability-management

For use in Claude.ai and ChatGPT

Download Skill