Skill

cve-risk-score

Retrieves CVSS scores, severity, CWE IDs, and descriptions for CVEs from NVD. Auto-invoked whenever CVE IDs (CVE-YYYY-NNNNN) are mentioned or discovered.

Python

security

npx claudepluginhub transilienceai/communitytools

Tool Access

This skill uses the workspace's default tool permissions.

Preview

Fetch and display CVE risk scores from the National Vulnerability Database (NVD) whenever a CVE ID appears in conversation.

Supporting Assets

reference/nvd-api-reference.md

SKILL.md

Similar Skills

cve-poc-generator

223

Researches CVE by ID via NVD API and advisories, generates safe standalone Python PoC script with standard libraries, and produces detailed markdown vulnerability report.

1 file

communitytools

CVE Intelligence Gathering

Gathers CVE vulnerability details from NVD, MITRE, Go VulnDB, and GHSA with fallback searches for new CVEs or incomplete web results.

compliance

prioritizing-vulnerabilities-with-cvss-scoring

5.9k

Calculates CVSS v4.0 scores, interprets metric groups and vector strings, and prioritizes vulnerabilities using EPSS/CISA KEV in security operations.

7 files

cybersecurity-skills

Stats

Stars223

Forks44

Last CommitApr 9, 2026

Actions

View Source View Plugin View on GitHub View README

Help us improve

Share bugs, ideas, or general feedback.

CVE Risk Score

Fetch and display CVE risk scores from the National Vulnerability Database (NVD) whenever a CVE ID appears in conversation.

Trigger

This skill MUST be invoked automatically whenever a CVE ID (pattern CVE-YYYY-NNNNN) is mentioned by the user or discovered during research/scanning. Do not wait for explicit invocation.

Workflow

Extract CVE IDs from the user's message or tool output (regex: CVE-\d{4}-\d{4,})

Run the lookup script:

python3 tools/nvd-lookup.py CVE-XXXX-XXXXX [CVE-YYYY-YYYYY ...]

Present the results in a concise table format:

CVE ID	Score	Severity	CWE	Description
CVE-XXXX-XXXXX	9.8	CRITICAL	CWE-79	...

Continue with the user's original task — the score lookup is supplementary context, not a blocking step.

Output Format

When presenting CVE risk scores inline, use this compact format:

CVE-2024-12345: 9.8 CRITICAL (CWE-79) — Remote code execution via ...

For multiple CVEs, use a markdown table.

Rules

Always invoke — every CVE ID mentioned triggers a lookup. No exceptions.

Non-blocking — fetch scores in parallel with other work when possible.

Accurate data only — display exactly what NVD returns. Never estimate or fabricate scores.

Graceful degradation — if NVD is unreachable or the CVE has no score yet, say so explicitly (e.g., "Not yet scored by NVD").

Rate limiting — the script handles rate limits internally. For bulk lookups (5+), warn that NVD throttles unauthenticated requests.

API key — if NVD_API_KEY is set in .env, the script uses it for higher rate limits.

Integration

This skill complements other skills:

cve-poc-generator: After seeing the risk score, the user may want a full PoC and report

reconnaissance / source-code-scanning: When these skills discover CVEs in dependencies, auto-lookup their scores

pentester-spear / coordination: CVE scores inform priority and severity classification in findings

CVE Risk Score

Fetch and display CVE risk scores from the National Vulnerability Database (NVD) whenever a CVE ID appears in conversation.

Trigger

This skill MUST be invoked automatically whenever a CVE ID (pattern CVE-YYYY-NNNNN) is mentioned by the user or discovered during research/scanning. Do not wait for explicit invocation.

Workflow

Extract CVE IDs from the user's message or tool output (regex: CVE-\d{4}-\d{4,})

Run the lookup script:

python3 tools/nvd-lookup.py CVE-XXXX-XXXXX [CVE-YYYY-YYYYY ...]

Present the results in a concise table format:

CVE ID Score Severity CWE Description
CVE-XXXX-XXXXX 9.8 CRITICAL CWE-79 ...
Continue with the user's original task — the score lookup is supplementary context, not a blocking step.

Output Format

When presenting CVE risk scores inline, use this compact format:

CVE-2024-12345: 9.8 CRITICAL (CWE-79) — Remote code execution via ...

For multiple CVEs, use a markdown table.

Rules

Always invoke — every CVE ID mentioned triggers a lookup. No exceptions.
Non-blocking — fetch scores in parallel with other work when possible.
Accurate data only — display exactly what NVD returns. Never estimate or fabricate scores.
Graceful degradation — if NVD is unreachable or the CVE has no score yet, say so explicitly (e.g., "Not yet scored by NVD").
Rate limiting — the script handles rate limits internally. For bulk lookups (5+), warn that NVD throttles unauthenticated requests.
API key — if NVD_API_KEY is set in .env, the script uses it for higher rate limits.

Integration

This skill complements other skills:

cve-poc-generator: After seeing the risk score, the user may want a full PoC and report
reconnaissance / source-code-scanning: When these skills discover CVEs in dependencies, auto-lookup their scores
pentester-spear / coordination: CVE scores inform priority and severity classification in findings