ClaudSkills / Security / appsec-tools

Allocate CVE

Quality score: 70/100  ·  Category: Security  ·  Sub-category: appsec-tools
Walk a security team member through allocating a CVE for an <tracker> tracking issue. Prints the ASF Vulnogram allocation URL and a CVE-ready title (the issue title stripped of redundant `<vendor>: <product>:` (e.g. `Apache Airflow:`), `[ Security Report ]`, trailing version parens and similar noise), waits for the allocated CVE ID (allocation is PMC-gated — non-PMC triagers relay to a PMC member), and then updates the tracker in place: fills in the *CVE tool link* field, adds the `cve allocated` label, posts a collapsed status-change comment, and runs `generate-cve-json --attach` to embed the paste-ready JSON in the body. Finishes by handing off to the `sync-security-issue` skill to reconcile the rest of the tracker (milestone, assignee, reporter drafts, fix-PR state) now that the CVE landing is complete.

What this skill does

Allocate CVE is a production-ready Claude Code skill (quality score 70/100) in the appsec-tools sub-category. It ships as a SKILL.md file that Claude Code auto-discovers under ~/.claude/skills/allocate-cve/ and loads when your prompt matches the skill's trigger.

Who uses this skill

The Allocate CVE skill is built for security engineers, penetration testers, DevSecOps practitioners, and development teams hardening codebases and infrastructure. It is part of the open ClaudSkills registry, a community-curated catalog of 15,000+ capabilities you can install for Claude Code — the Claude CLI agent.

How to install

Free

Manual install (2 steps)

mkdir -p ~/.claude/skills/allocate-cve
curl -L https://claudskills.com/skills/allocate-cve/SKILL.md \
  -o ~/.claude/skills/allocate-cve/SKILL.md

Or just download SKILL.md directly and drop it into ~/.claude/skills/allocate-cve/. Claude Code auto-discovers it on next session.

Skills live at ~/.claude/skills/allocate-cve/SKILL.md on macOS/Linux, or %USERPROFILE%\.claude\skills\allocate-cve\SKILL.md on Windows. See the full install guide for step-by-step instructions.

Pro

One-click install via the desktop app

The ClaudSkills desktop app installs any skill directly into ~/.claude/skills/ with one click — no terminal required. Pro starts at $9/mo or $149 lifetime.

More Security skills

Browse all Security skills in the ClaudSkills registry, or explore these top-rated picks from the same category:

Browse all Security skills → Top 100 skills
Part of ClaudSkills — the open registry for Claude Code skills.  ·  What's New  ·  Install guide  ·  About  ·  llms.txt