Security research toolkit for discovering and remediating vulnerabilities
Analyze user feedback from the most recent gap-analysis or execute-plan run to identify systemic process improvements that would make that feedback unnecessary in the future.
Create well-scoped commits with conventional messages after checking staged changes and relevant pre-commit commands.
Pick the single most important item from the implementation plan, study specs and existing patterns, implement it fully, then review and validate.
Identify gaps between the grimoire specification and the actual plugin implementation. Build or update a prioritized implementation plan.
Single-context vulnerability hunter. This agent should be invoked when the user or another agent says "hunt for bugs", "find vulnerabilities", "run a sigil", "variant analysis", "scan for a pattern", "check the code for issues", "security scan", "look for reentrancy", "audit this contract", "find bugs in this function", "spawn a sigil", "run a variant sigil", "security review", or when another agent needs focused vulnerability detection on a specific pattern or code area. Two modes: single-target hypothesis-driven hunting (one vector per invocation with evidence-backed findings) and variant analysis (scanning the full codebase for recurrences of a confirmed bug pattern).
External research specialist. This agent should be invoked when the user or another agent says "look up", "research", "find documentation for", "what does the spec say about", "check if this is a known vulnerability", "study the specification", "find prior audit findings", "how does protocol X handle Y", "search for known issues with", "fact check this", or whenever information cannot be found in the current codebase. Covers documentation lookups, protocol specifications, vulnerability databases (solodit), prior audit reports, GitHub repositories, and security knowledge bases. Two modes: directed questions (specific Q&A with citations) and generic study (broad topic context priming).
Detection module builder and spellbook manager. This agent should be invoked when the user or another agent says "distill this finding", "create a detection module", "build a sigil from this", "encode this as automation", "scribe", "update my spellbook", "merge sigils", "what sigils do I have", "clean up sigils", "garbage collect", "scribe-gc", "promote sigils", "end of audit merge", "encode finding as detection", "what detectors do I have", "show my spellbook", "list my sigils", or when a confirmed finding should be assessed for automated detection potential. Three modes: distill (finding to detection module), spellbook management (merge, promote, garbage collect), and query (list and describe sigils).
QA gatekeeper and triage partner. This agent should be invoked when the user or another agent says "triage this finding", "verify this vulnerability", "check if this is real", "is this a false positive", "validate this hypothesis", "review these sigil results", "triage findings", "familiar", "run triage", "double check this", "sanity check", "quality check this finding", "review this PoC", "evaluate this finding", "triage all findings", "batch triage", "process sigil output", "check this PoC", "is this PoC correct", or when sigil agents produce findings that need validation before presenting to the user. Three modes: finding triage (validate a single finding or hypothesis), batch triage (process multiple sigil findings), and PoC review (evaluate proof-of-concept quality and completeness).
Worker agent that builds artifacts from explicit plans. This agent should be invoked when another agent says "delegate to gnome", "spawn a gnome", "have a gnome build this", or when a parent agent (Scribe or Familiar) needs isolated execution of a clearly-defined build task. Also invoked when the user says "gnome", "build this check", "build a semgrep rule", "build a slither detector", "implement this detection module", or "create this detection module". For PoC construction, invoked when a parent agent delegates with an explicit plan — the user-facing PoC workflow is the write-poc skill. Four modes: build check (agentic detection module), build semgrep rule, build slither detector, and build PoC.
This skill should be used when the user says "find annotations", "list audit tags", "show @audit comments", "compile annotations", "/annotation", "find todos", "find audit comments", "what did I annotate", "annotation summary", "list audit findings", "what's annotated", or wants to discover, list, or filter @audit-* comment annotations scattered throughout a codebase. This skill is for annotation discovery only — how annotations are used downstream (spawning subagents, cross-referencing findings, etc.) is out of scope.
This skill should be used when the user says "build context on a flow", "trace a flow", "map how X works", "cartography", "/cartography", "document a flow", "create a flow map", "trace how authentication works", "map the data flow", or wants to explore and document how a specific code flow works so that context can be quickly rebuilt on future visits. This is the primary skill for creating cartography files in grimoire/cartography/.
This skill should be used when the user says "create a check", "write a check", "add a check", "apply checks", "run checks", "/checks", "vulnerability pattern", "detection check", "check for common bugs", "scan with checks", or wants to create, apply, or manage simple vulnerability pattern files that agents use to find flaws. Checks are the simplest unit of agentic vulnerability detection — markdown files describing what to look for and how to assess matches. This skill is NOT for general code review or ad-hoc vulnerability analysis.
Use when the user asks to triage, verify, sanity-check, or review a finding, vulnerability hypothesis, sigil result, or proof of concept before it is presented or submitted.
This skill should be used when the user says "deduplicate findings", "dedup findings", "compare findings", "find duplicate findings", "merge findings", "clean up findings", "/finding-dedup", or wants to identify and resolve duplicate or overlapping security findings in a project. Classifies finding pairs as duplicate (can delete one) or similar (different scope, may merge). This skill is NOT for drafting new findings (use /finding-draft) or reviewing individual findings (use /finding-review).
Requires secrets
Needs API keys or credentials to function
Uses power tools
Uses Bash, Write, or Edit tools
Own this plugin?
Verify ownership to unlock analytics, metadata editing, and a verified badge. GitHub access is read-only (username + org membership).
Sign in to claimOwn this plugin?
Verify ownership to unlock analytics, metadata editing, and a verified badge. GitHub access is read-only (username + org membership).
Sign in to claimBased on adoption, maintenance, documentation, and repository signals. Not a security audit or endorsement.
A security research toolkit that learns.
Grimoire takes the raw agent experience and tunes it for security research. Clean, readable and reproducible PoCs,
automatic static analysis module distillation, and more.
There are many audit agents and vulnerability discovery skills.
These are great, but the real power of agents is in amplifying operator skill. Grimoire embraces that philosophy and implements several skills that make your agent a better co-auditor.
Some skills (such as the cartography) skill come with a small workflow adaption. However, most features such as the librarian are designed to just work within whatever workflow you follow.
The librarian is an agent that looks for documentation and references (e.g. previous audit findings, docs, blog posts, etc.) . It is very focussed on providing only information backed up by reference and keeps the main context clear from large mcp descriptions.
The cartography skill provides instructions to Codex on how it can document a mapping from features / flows to code locations. This allows you to say
hey load context on the authentication flow, Codex will review the file and very quickly load the relevant context.
Grimoire is built on a few hard convictions from real-world security research:
Grimoire is still at a very early stage and under continuous development, so expect major changes.
Yes, you can use Grimoire as part of a normal Codex security workflow. The shortest loop is:
summon for context, cartography for flow mapping, librarian for outside research,
finding-draft and finding-review for capture, write-poc for reproduction, and scribe
for reusable checks.
This fork is Codex-native: the manifest lives at .codex-plugin/plugin.json, optional MCP
servers live in .mcp.json, slash-command workflows live in commands/, and skills live
under skills/.
Clone this fork into your local plugin directory, or symlink this checkout there:
git clone https://github.com/this-vishalsingh/grimoire.git ~/plugins/grimoire
Codex discovers plugins through a marketplace file. For a user-local install, make sure this
repository is available at ~/plugins/grimoire, then add this entry to
~/.agents/plugins/marketplace.json:
{
"name": "local",
"interface": {
"displayName": "Local Plugins"
},
"plugins": [
{
"name": "grimoire",
"source": {
"source": "local",
"path": "./plugins/grimoire"
},
"policy": {
"installation": "AVAILABLE",
"authentication": "ON_INSTALL"
},
"category": "Coding"
}
]
}
Skills and hooks are wired through the Codex plugin manifest. Commands and role prompts are
included in the conventional commands/ and agents/ directories, with thin skill wrappers for
the named Grimoire roles. Some features require API keys:
| Service | Key | Purpose |
|---|---|---|
| Solodit | SOLODIT_API_KEY | Audit findings search via claudit |
| Context7 | CONTEXT7_API_KEY | Library documentation lookups |
Set these in your Codex environment or settings:
{
"env": {
"SOLODIT_API_KEY": "your-key-here",
"CONTEXT7_API_KEY": "your-key-here"
}
}
Both are optional - the librarian will fall back to web search if they are not set. You can also export them as regular shell environment variables (for example in ~/.zshrc) instead of using settings.json.
Use Grimoire like this in practice:
summon.cartography to map code paths and librarian to research outside sources.finding-draft and finding-review.write-poc.scribe.gap-analysis, execute-plan, and assess-process-improvements.Example session:
npx claudepluginhub this-vishalsingh/grimoireHarness-native ECC operator layer - 67 agents, 278 skills, 94 legacy command shims, reusable hooks, rules, selective install profiles, and production-ready workflows for Claude Code, Codex, OpenCode, Cursor, and related agent harnesses
Complete collection of battle-tested Claude Code configs from an Anthropic hackathon winner - agents, skills, hooks, and rules evolved over 10+ months of intensive daily use
Turn on Godmode for Claude Code. 126 skills. 7 subagents. Zero configuration.