alibabacloud-security-vuln-coverage-check
Installation
SKILL.md
alibabacloud-security-vuln-coverage-check
Quickly answer "Does Alibaba Cloud security product X cover vulnerability Y?" by looking up a local CSV snapshot of AVD coverage data.
When to Use
- Customer asks whether a specific CVE / vulnerability is protected by Security Center (SAS), WAF, Cloud Firewall (CFW), or RASP.
- SA / pre-sales needs a fast, citation-friendly answer without manually browsing avd.aliyun.com.
- Bulk check a list of CVEs against the security product matrix (e.g., quarterly review, customer audit response).
When NOT to Use
- The user wants live verification (rule actually blocks an attack payload) — use
alibabacloud-waf-bas-verifyinstead. - The user asks about products outside the four covered here (e.g., DDoS, Bastion Host, KMS/encryption services).
- The vulnerability is brand-new and may not yet be in the snapshot — see Pitfall #1.
Data Source
References file: references/coverage-data.md (~96KB, 1697 rows, pipe-delimited data inside a Markdown code block).