OSV Scanner

## IMPORTANT !!!! change ScanResult file extension from txt -> xlsx located in template ## 🔍 NPM & Node.js Vulnerability Scanner (OSV API) A lightweight tool that scans your Node.js/NPM dependencies and Linux Packages for known vulnerabilities by using the **Google OSV API**. It reads your project packages and instantly returns any related CVEs. ### 🧠 How It Works 1. Reads `packages/package.json` / `packages/package.txt` 2. Collects all dependency names and versions 3. Sends them to the **OSV API** 4. Receives and displays any vulnerabilities (CVEs) affecting those packages **Linux** - python3 -m venv .venv - pip install requests openpyxl - source .venv/bin/activate - copy packages.json to /packages folder and name it exactly like this 'packages.json' for nodejs otherwise for python use this command: - pip freeze > packages.txt - python3 scanner.py npm **Windows** - python3 -m venv .venv - pip install requests openpyxl - ./.venv/Script/Activate.ps1 - copy packages.json to /packages folder and name it exactly like this 'packages.json' for nodejs otherwise for python use this command: - pip freeze > packages.txt - python3 scanner.py npm

Safety Notice

This listing is from the official public ClawHub registry. Review SKILL.md and referenced scripts before running.

Copy this and send it to your AI assistant to learn

Install skill "OSV Scanner" with this command: npx skills add MoeNassi/osv-scanner

IMPORTANT !!!!

change ScanResult file extension from txt -> xlsx located in template

🔍 NPM & Node.js Vulnerability Scanner (OSV API)

A lightweight tool that scans your Node.js/NPM dependencies and Linux Packages for known vulnerabilities by using the Google OSV API. It reads your project packages and instantly returns any related CVEs.

🧠 How It Works

  1. Reads packages/package.json / packages/package.txt
  2. Collects all dependency names and versions
  3. Sends them to the OSV API
  4. Receives and displays any vulnerabilities (CVEs) affecting those packages

Linux

- python3 -m venv .venv
- pip install requests openpyxl
- source .venv/bin/activate
- copy packages.json to /packages folder and name it exactly like this 'packages.json' for nodejs otherwise for python use this command:
    - pip freeze > packages.txt
- python3 scanner.py npm

Windows

- python3 -m venv .venv
- pip install requests openpyxl
- ./.venv/Script/Activate.ps1
- copy packages.json to /packages folder and name it exactly like this 'packages.json' for nodejs otherwise for python use this command:
    - pip freeze > packages.txt
- python3 scanner.py npm

Source Transparency

This detail page is rendered from real SKILL.md content. Trust labels are metadata-based hints, not a safety guarantee.

Open Registry RecordOpen in ClawHub

Related Skills

Related by shared tags or category signals.

General

Sendflare

通过 Sendflare SDK 发送带附件的电子邮件,管理联系人列表,支持 CC/BCC 和安全 API 认证。

Registry SourceRecently Updated
00
keepchen
General

Playtomic - Book courts using padel-tui

This skill should be used when the user asks to "book a padel court", "find available padel courts", "search padel courts near me", "reserve a Playtomic cour...

Registry SourceRecently Updated
10
philipp-eisen
General

Fund Keeper

国内场外基金智能顾问 + 股票行情查询。实时估值、买卖建议、收益统计、定投计划、OCR 识图、股票 - 基金联动。支持离线模式、多数据源缓存。

Registry SourceRecently Updated
01
tangepier-crypto