Skills

run-scan

Installation
SKILL.md

Skill: Run Scan

Run an OpenTaint scan over a project and collect results

Inputs

From the caller; if omitted, fall back to the default. Ask only when a required input is missing and has no sensible default

  • Target <model-dir> / <project-src> — pre-compiled model or source project directory. Default: model at .opentaint/project
  • Ruleset <rules-dir> — Default: builtin plus .opentaint/rules if present
  • Rule IDs <full-id> (optional) — full IDs to restrict the scan to, omit to run all loaded rules
  • SARIF output <report.sarif> — Default: .opentaint/results/report.sarif
  • PassThrough config <config-dir> (optional) — a passThrough YAML file or a directory of them. Default: .opentaint/pass-through
  • Dataflow approximations directory <approx-dir> (optional) — Default: .opentaint/dataflow

Workflow

Point at the code either way: a source project (CLI compiles it) as the positional scan <project-src>, or a pre-built model via --project-model <model-dir>. If project model provided prefer using it instead of source project

Installs
5
Repository
seqra/opentaint
GitHub Stars
73
First Seen
3 days ago
run-scan — seqra/opentaint