Back to Registry View Author Profile
Official Verified
Osv Scanner
Skill by moenassi
skill-install — Terminal
Install via CLI (Recommended)
clawhub install openclaw/skills/skills/moenassi/osv-scannerOr
IMPORTANT !!!!
change ScanResult file extension from txt -> xlsx located in template
🔍 NPM & Node.js Vulnerability Scanner (OSV API)
A lightweight tool that scans your Node.js/NPM dependencies and Linux Packages for known vulnerabilities by using the Google OSV API. It reads your project packages and instantly returns any related CVEs.
🧠 How It Works
- Reads
packages/package.json/packages/package.txt - Collects all dependency names and versions
- Sends them to the OSV API
- Receives and displays any vulnerabilities (CVEs) affecting those packages
Linux
- python3 -m venv .venv
- pip install requests openpyxl
- source .venv/bin/activate
- copy packages.json to /packages folder and name it exactly like this 'packages.json' for nodejs otherwise for python use this command:
- pip freeze > packages.txt
- python3 scanner.py npm
Windows
- python3 -m venv .venv
- pip install requests openpyxl
- ./.venv/Script/Activate.ps1
- copy packages.json to /packages folder and name it exactly like this 'packages.json' for nodejs otherwise for python use this command:
- pip freeze > packages.txt
- python3 scanner.py npm
Metadata
AI Skill Finder
Not sure this is the right skill?
Describe what you want to build — we'll match you to the best skill from 16,000+ options.
Find the right skill Add to Configuration
Paste this into your clawhub.json to enable this plugin.
{
"plugins": {
"official-moenassi-osv-scanner": {
"enabled": true,
"auto_update": true
}
}
}Safety NoteClawKit audits metadata but not runtime behavior. Use with caution.