OSV Scanner

## IMPORTANT !!!! change ScanResult file extension from txt -> xlsx located in template ## 🔍 NPM & Node.js Vulnerability Scanner (OSV API) A lightweight tool that scans your Node.js/NPM dependencies and Linux Packages for known vulnerabilities by using the **Google OSV API**. It reads your project packages and instantly returns any related CVEs. ### 🧠 How It Works 1. Reads `packages/package.json` / `packages/package.txt` 2. Collects all dependency names and versions 3. Sends them to the **OSV API** 4. Receives and displays any vulnerabilities (CVEs) affecting those packages **Linux** - python3 -m venv .venv - pip install requests openpyxl - source .venv/bin/activate - copy packages.json to /packages folder and name it exactly like this 'packages.json' for nodejs otherwise for python use this command: - pip freeze > packages.txt - python3 scanner.py npm **Windows** - python3 -m venv .venv - pip install requests openpyxl - ./.venv/Script/Activate.ps1 - copy packages.json to /packages folder and name it exactly like this 'packages.json' for nodejs otherwise for python use this command: - pip freeze > packages.txt - python3 scanner.py npm

Safety Notice

This listing is from the official public ClawHub registry. Review SKILL.md and referenced scripts before running.

Copy this and send it to your AI assistant to learn

Install skill "OSV Scanner" with this command: npx skills add moenassi/osv-scanner

IMPORTANT !!!!

change ScanResult file extension from txt -> xlsx located in template

🔍 NPM & Node.js Vulnerability Scanner (OSV API)

A lightweight tool that scans your Node.js/NPM dependencies and Linux Packages for known vulnerabilities by using the Google OSV API. It reads your project packages and instantly returns any related CVEs.

🧠 How It Works

  1. Reads packages/package.json / packages/package.txt
  2. Collects all dependency names and versions
  3. Sends them to the OSV API
  4. Receives and displays any vulnerabilities (CVEs) affecting those packages

Linux

- python3 -m venv .venv
- pip install requests openpyxl
- source .venv/bin/activate
- copy packages.json to /packages folder and name it exactly like this 'packages.json' for nodejs otherwise for python use this command:
    - pip freeze > packages.txt
- python3 scanner.py npm

Windows

- python3 -m venv .venv
- pip install requests openpyxl
- ./.venv/Script/Activate.ps1
- copy packages.json to /packages folder and name it exactly like this 'packages.json' for nodejs otherwise for python use this command:
    - pip freeze > packages.txt
- python3 scanner.py npm

Source Transparency

This detail page is rendered from real SKILL.md content. Trust labels are metadata-based hints, not a safety guarantee.

Open Registry RecordOpen in ClawHub

Related Skills

Related by shared tags or category signals.

General

AIWolfPK - AI狼人杀

四个AI互相猜疑,你坐着看戏。每局30秒,到底谁是狼? Four AIs play Werewolf while you watch. 30s per round. Spot the wolf before they do.

Registry SourceRecently Updated
00huangjihua007-rgb
General

Project Analyzer

Analyze any project directory and produce a detailed report covering what the project does, its tech stack, folder structure, entry points, how to run it, an...

Registry SourceRecently Updated
00g30tr1x
General

Thought-Retriever

提炼对话回答中的核心洞察为高置信度知识晶体,存储于本体驱动记忆系统的自我进化与复用。

Registry SourceRecently Updated
00as1113435
General

Miaoji Bid Guard Pro

亚马逊广告护城河Pro版,90天ROI预测+多活动协同+季节性出价+关键词攻防矩阵。 从单次调价建议升级为完整的广告战役规划。基础功能可使用 miaoji-bid-guard 免费版。

Registry SourceRecently Updated
00wangm-a3