cybernetic
← library

Detect path traversal vulnerabilities

sast-pathtraversalskillsetup L30
reasonless-throne486/sast-skills
What it does

Detect path traversal bugs via recon + batched sink verification

Best for

Large codebases needing path traversal scanned in parallel without overwhelming context

Inputs
  • · codebase (repo_path)
  • · sast/architecture.md
Outputs
  • · sast/pathtraversal-results.md (3-phase findings: vulnerable, likely vulnerable, manual review)
Requires
  • · Subagents (batched verify 3 sinks each)
  • · architecture analysis
Preconditions

sast/architecture.md exists (run sast-analysis first), code readable by agent

Failure modes
  • · Missing architecture baseline
  • · False negatives on realpath+prefix-check patterns
  • · Timeout on >1000 sinks
Trust signals
  • · Distinguishes vulnerable/likely-vulnerable/not-vulnerable
  • · Lists all mitigation patterns (realpath, basename, allowlist)
  • · Shows proof code paths