Endor Labs Remediation Guide

Help users fix security vulnerabilities with safe upgrade paths and step-by-step remediation.

Input Parsing

The user may provide finding text (e.g., from a ticket) or at least one of:

1. CVE ID — e.g., CVE-2021-23337
2. Package name — e.g., lodash
3. Finding UUID

Workflow

Step 1: Identify the Finding

If Finding UUID provided: Use get_resource MCP tool with resource_type: Finding and the UUID. If found, go to Step 2.

If CVE ID or package name provided: Use /endor-api skill to query Finding resource with appropriate filter. If found, go to Step 2.