LearnPrompt
by LearnPrompt
永久免费开源的 AIGC 课程, 目前已支持Claude Code,Codex,Hermes,OpenClaw,Obsidian,Prompt Engineering, ChatGPT, Midjourney, Runway, Stable Diffusion, AI数字人,AI声音&音乐,开源大模型
2,371stars
198forks
JavaScript
Added 5/19/2026
Installation
# Add to your Claude Code skills
git clone https://github.com/LearnPrompt/LearnPromptGetting Started
Security ReportIssues
Last scanned: 5/19/2026
{
"issues": [
{
"type": "npm-audit",
"message": "@babel/helpers: Babel has inefficient RegExp complexity in generated code with .replace when transpiling named capturing groups",
"severity": "medium"
},
{
"type": "npm-audit",
"message": "@babel/plugin-transform-modules-systemjs: @babel/plugin-transform-modules-systemjs generates arbitrary code when compiling malicious input",
"severity": "high"
},
{
"type": "npm-audit",
"message": "@babel/runtime: Babel has inefficient RegExp complexity in generated code with .replace when transpiling named capturing groups",
"severity": "medium"
},
{
"type": "npm-audit",
"message": "@babel/runtime-corejs3: Babel has inefficient RegExp complexity in generated code with .replace when transpiling named capturing groups",
"severity": "medium"
},
{
"type": "npm-audit",
"message": "@babel/traverse: Babel vulnerable to arbitrary code execution when compiling specifically crafted malicious code",
"severity": "critical"
},
{
"type": "npm-audit",
"message": "@docusaurus/core: Vulnerability found",
"severity": "high"
},
{
"type": "npm-audit",
"message": "@docusaurus/lqip-loader: Vulnerability found",
"severity": "high"
},
{
"type": "npm-audit",
"message": "@docusaurus/mdx-loader: Vulnerability found",
"severity": "high"
},
{
"type": "npm-audit",
"message": "@docusaurus/plugin-client-redirects: Vulnerability found",
"severity": "medium"
},
{
"type": "npm-audit",
"message": "@docusaurus/plugin-content-blog: Vulnerability found",
"severity": "high"
},
{
"type": "npm-audit",
"message": "@docusaurus/plugin-content-docs: Vulnerability found",
"severity": "high"
},
{
"type": "npm-audit",
"message": "@docusaurus/plugin-content-pages: Vulnerability found",
"severity": "high"
},
{
"type": "npm-audit",
"message": "@docusaurus/plugin-debug: Vulnerability found",
"severity": "medium"
},
{
"type": "npm-audit",
"message": "@docusaurus/plugin-google-analytics: Vulnerability found",
"severity": "medium"
},
{
"type": "npm-audit",
"message": "@docusaurus/plugin-google-gtag: Vulnerability found",
"severity": "medium"
},
{
"type": "npm-audit",
"message": "@docusaurus/plugin-google-tag-manager: Vulnerability found",
"severity": "medium"
},
{
"type": "npm-audit",
"message": "@docusaurus/plugin-ideal-image: Vulnerability found",
"severity": "high"
},
{
"type": "npm-audit",
"message": "@docusaurus/plugin-sitemap: Vulnerability found",
"severity": "medium"
},
{
"type": "npm-audit",
"message": "@docusaurus/preset-classic: Vulnerability found",
"severity": "medium"
},
{
"type": "npm-audit",
"message": "@docusaurus/theme-classic: Vulnerability found",
"severity": "high"
},
{
"type": "npm-audit",
"message": "@docusaurus/theme-common: Vulnerability found",
"severity": "high"
},
{
"type": "npm-audit",
"message": "@docusaurus/theme-mermaid: Vulnerability found",
"severity": "high"
},
{
"type": "npm-audit",
"message": "@docusaurus/theme-search-algolia: Vulnerability found",
"severity": "medium"
},
{
"type": "npm-audit",
"message": "@mdx-js/mdx: Vulnerability found",
"severity": "high"
},
{
"type": "npm-audit",
"message": "ajv: ajv has ReDoS when using `$data` option",
"severity": "medium"
},
{
"type": "npm-audit",
"message": "axios: Axios Cross-Site Request Forgery Vulnerability",
"severity": "high"
},
{
"type": "npm-audit",
"message": "body-parser: body-parser vulnerable to denial of service when url encoding is enabled",
"severity": "high"
},
{
"type": "npm-audit",
"message": "brace-expansion: brace-expansion Regular Expression Denial of Service vulnerability",
"severity": "medium"
},
{
"type": "npm-audit",
"message": "braces: Uncontrolled resource consumption in braces",
"severity": "high"
},
{
"type": "npm-audit",
"message": "compression: Vulnerability found",
"severity": "low"
},
{
"type": "npm-audit",
"message": "cookie: cookie accepts cookie name, path, and domain with out of bounds characters",
"severity": "low"
},
{
"type": "npm-audit",
"message": "copy-webpack-plugin: Vulnerability found",
"severity": "high"
},
{
"type": "npm-audit",
"message": "cross-spawn: Regular Expression Denial of Service (ReDoS) in cross-spawn",
"severity": "high"
},
{
"type": "npm-audit",
"message": "css-minimizer-webpack-plugin: Vulnerability found",
"severity": "high"
},
{
"type": "npm-audit",
"message": "diff: jsdiff has a Denial of Service vulnerability in parsePatch and applyPatch",
"severity": "low"
},
{
"type": "npm-audit",
"message": "dompurify: DOMPurify allows tampering by prototype pollution",
"severity": "high"
},
{
"type": "npm-audit",
"message": "express: express vulnerable to XSS via response.redirect()",
"severity": "high"
},
{
"type": "npm-audit",
"message": "flatted: flatted vulnerable to unbounded recursion DoS in parse() revive phase",
"severity": "high"
},
{
"type": "npm-audit",
"message": "follow-redirects: follow-redirects' Proxy-Authorization header kept across hosts",
"severity": "medium"
},
{
"type": "npm-audit",
"message": "got: Got allows a redirect to a UNIX socket",
"severity": "medium"
},
{
"type": "npm-audit",
"message": "http-proxy-middleware: Denial of service in http-proxy-middleware",
"severity": "high"
},
{
"type": "npm-audit",
"message": "immutable: Immutable is vulnerable to Prototype Pollution",
"severity": "high"
},
{
"type": "npm-audit",
"message": "js-yaml: js-yaml has prototype pollution in merge (<<)",
"severity": "medium"
},
{
"type": "npm-audit",
"message": "katex: KaTeX missing normalization of the protocol in URLs allows bypassing forbidden protocols",
"severity": "medium"
},
{
"type": "npm-audit",
"message": "latest-version: Vulnerability found",
"severity": "medium"
},
{
"type": "npm-audit",
"message": "lodash: Lodash has Prototype Pollution Vulnerability in `_.unset` and `_.omit` functions",
"severity": "high"
},
{
"type": "npm-audit",
"message": "lodash-es: Lodash has Prototype Pollution Vulnerability in `_.unset` and `_.omit` functions",
"severity": "high"
},
{
"type": "npm-audit",
"message": "mermaid: Prototype pollution vulnerability found in Mermaid's bundled version of DOMPurify",
"severity": "high"
},
{
"type": "npm-audit",
"message": "micromatch: Regular Expression Denial of Service (ReDoS) in micromatch",
"severity": "medium"
},
{
"type": "npm-audit",
"message": "minimatch: minimatch has a ReDoS via repeated wildcards with non-matching literal in pattern",
"severity": "high"
},
{
"type": "npm-audit",
"message": "nanoid: Predictable results in nanoid generation when given non-integer values",
"severity": "medium"
},
{
"type": "npm-audit",
"message": "node-forge: node-forge has ASN.1 Unbounded Recursion",
"severity": "high"
},
{
"type": "npm-audit",
"message": "on-headers: on-headers is vulnerable to http response header manipulation",
"severity": "low"
},
{
"type": "npm-audit",
"message": "package-json: Vulnerability found",
"severity": "medium"
},
{
"type": "npm-audit",
"message": "path-to-regexp: path-to-regexp outputs backtracking regular expressions",
"severity": "high"
},
{
"type": "npm-audit",
"message": "picomatch: Picomatch: Method Injection in POSIX Character Classes causes incorrect Glob Matching",
"severity": "high"
},
{
"type": "npm-audit",
"message": "postcss: PostCSS has XSS via Unescaped </style> in its CSS Stringify Output",
"severity": "medium"
},
{
"type": "npm-audit",
"message": "prismjs: PrismJS DOM Clobbering vulnerability",
"severity": "medium"
},
{
"type": "npm-audit",
"message": "qs: qs's arrayLimit bypass in comma parsing allows denial of service",
"severity": "medium"
},
{
"type": "npm-audit",
"message": "rehype-katex: Vulnerability found",
"severity": "medium"
},
{
"type": "npm-audit",
"message": "remark-mdx: Vulnerability found",
"severity": "high"
},
{
"type": "npm-audit",
"message": "remark-parse: Vulnerability found",
"severity": "high"
},
{
"type": "npm-audit",
"message": "semver: semver vulnerable to Regular Expression Denial of Service",
"severity": "high"
},
{
"type": "npm-audit",
"message": "send: send vulnerable to template injection that can lead to XSS",
"severity": "low"
},
{
"type": "npm-audit",
"message": "serialize-javascript: Serialize JavaScript is Vulnerable to RCE via RegExp.flags and Date.prototype.toISOString()",
"severity": "high"
},
{
"type": "npm-audit",
"message": "serve-handler: Vulnerability found",
"severity": "high"
},
{
"type": "npm-audit",
"message": "serve-static: serve-static vulnerable to template injection that can lead to XSS",
"severity": "low"
},
{
"type": "npm-audit",
"message": "sharp: sharp vulnerability in libwebp dependency CVE-2023-4863",
"severity": "high"
},
{
"type": "npm-audit",
"message": "svgo: SVGO DoS through entity expansion in DOCTYPE (Billion Laughs)",
"severity": "high"
},
{
"type": "npm-audit",
"message": "tar-fs: tar-fs has a symlink validation bypass if destination directory is predictable with a specific tarball",
"severity": "high"
},
{
"type": "npm-audit",
"message": "terser-webpack-plugin: Vulnerability found",
"severity": "high"
},
{
"type": "npm-audit",
"message": "trim: Regular Expression Denial of Service in trim",
"severity": "high"
},
{
"type": "npm-audit",
"message": "update-notifier: Vulnerability found",
"severity": "medium"
},
{
"type": "npm-audit",
"message": "wait-on: Vulnerability found",
"severity": "high"
},
{
"type": "npm-audit",
"message": "webpack: Cross-realm object access in Webpack 5",
"severity": "critical"
},
{
"type": "npm-audit",
"message": "webpack-dev-middleware: Path traversal in webpack-dev-middleware",
"severity": "high"
},
{
"type": "npm-audit",
"message": "webpack-dev-server: webpack-dev-server users' source code may be stolen when they access a malicious web site with non-Chromium based browser",
"severity": "medium"
},
{
"type": "npm-audit",
"message": "ws: ws affected by a DoS when handling a request with many HTTP headers",
"severity": "high"
},
{
"type": "npm-audit",
"message": "yaml: yaml is vulnerable to Stack Overflow via deeply nested YAML collections",
"severity": "medium"
}
],
"status": "FAILED",
"scannedAt": "2026-05-19T07:45:20.377Z",
"semgrepRan": false,
"npmAuditRan": true,
"pipAuditRan": true
}LearnPrompt
中文文档 | README in English
我是卡尔,一个兴趣使然的古法AI码农,长期做AI工具实测、内容创作、开源教程和Agent工作流。
AI对我来说,已经从聊天窗口变成了工作台:学新东西、写代码、整理资料、做PPT、搭自动化,都能在这里发生。
永远保持好奇。
这句话是我做LearnPrompt、AI沃茨和Carl Skills的底层原因。我不太想只追热点,也不太想把新工具讲成发布会摘要。
我更关心普通人拿到这些工具以后,能不能真的多做成一些事。
我在做的事
LearnPrompt · 永久免费开源的中文AI实战教程
LearnPrompt是我的来时路,也是这个账号最早的公共项目。它是一套持续维护的中文AI学习路径,覆盖Claude Code,Codex,OpenClaw,Hermes,提示语工程,ChatGPT,RAG,Agent,AI编程,Agent Skills,Obsidian,Midjourney,Runway,Stable Diffusion,数字人,AI声音与音乐和大模型微调等主题。
如果你是第一次系统学习AI,可以从这里开始。
AI News Radar · 24小时AI信息雷达
AI更新太快了,头大的是信息多到没法好好看。
AI News Radar里的伯乐Skill,用GitHub Actions、网页和自动化摘要,把AI/tech信息源变成一个可以持续运行的雷达。它能判断一个新的信息源,设置7天冷静期判断内容值不值得长期追更,会不会跟你现有信息流有内容重复,如果值得,应该怎么接进来最稳定?
它服务的是一个很朴素的需求:
少刷一点,把注意力留给真正值得看的变化。
Skillrush Town · 淘金小镇
淘金小镇从ClawHub Top100开始,记录每天哪些AI skill在上升。然后就是覆盖到更多的排行榜,像Claude Code的更新日志,或者像AA Index这种模型排行榜,观测它们的更新,让模型以最少的环境依赖稳定地运行多次数据分析。
Comments (0)
to leave a comment.
No comments yet. Be the first to share your thoughts!
