pasta-vulns
Installation
SKILL.md
PASTA Stage 5: Vulnerability Analysis
Identify specific weaknesses in code and configuration that could be exploited by Stage 4 threats. This is the core code analysis stage of PASTA. Map each finding to CWE identifiers and correlate with the threat catalog.
Supported Flags
Read ../../shared/schemas/flags.md for the full flag specification. Key behaviors:
| Flag | Stage 5 Behavior |
|---|---|
--scope |
Default changed. Analyzes source code, configs, and infrastructure files. |
--depth quick |
Scanners + grep patterns only, no manual code review. |
--depth standard |
Full code read, local data-flow analysis, CWE mapping. |
--depth deep |
Standard + cross-file taint analysis, entry-to-sink tracing, dependency CVE scan. |
--depth expert |
Deep + exploitability scoring, proof-of-concept path assessment. |
--severity |
Filter output by severity. |
--fix |
Generate fix suggestions for each vulnerability found. |
Related skills