public-skills-builder

Name: public-skills-builder
Author: shuvonsec

Verified

Generate Claude Code bug bounty skills from public HackerOne reports and GitHub writeups — 18 vuln classes, no private reports needed

191stars

41forks

Python

Installation

# Add to your Claude Code skills
git clone https://github.com/shuvonsec/public-skills-builder

Getting Started

Guides for using testing skills like public-skills-builder.

Getting Started with AI Skills
First-time install walkthrough for Claude Code, Codex CLI, and ChatGPT.
What is an AI Skills Marketplace?
Definitions, how marketplaces work, and how to choose between them in 2026.

Security ReportVerified

Last scanned: 5/30/2026

{
  "issues": [],
  "status": "PASSED",
  "scannedAt": "2026-05-30T15:45:34.607Z",
  "npmAuditRan": true,
  "pipAuditRan": true
}

README.md

Frequently Asked Questions

What is public-skills-builder?

public-skills-builder is an open-source testing skill for AI coding assistants such as Claude Code, Codex CLI, and ChatGPT, built by shuvonsec. Generate Claude Code bug bounty skills from public HackerOne reports and GitHub writeups — 18 vuln classes, no private reports needed. It has 191 GitHub stars.

Is public-skills-builder safe to use?

Yes. public-skills-builder passed SkillsLLM's automated security scan — a dependency vulnerability audit plus prompt-injection heuristics — with no high-severity issues. You can read the full report in the Security Report section on this page.

How do I install public-skills-builder?

Clone the repository with "git clone https://github.com/shuvonsec/public-skills-builder" and add it to your Claude Code skills directory (see the Installation section above).

What programming language is public-skills-builder written in?

public-skills-builder is primarily written in Python. It is open-source under shuvonsec on GitHub, so you can review or fork the full source.

Are there alternatives to public-skills-builder?

Yes. SkillsLLM lists many other Testing skills you can browse and compare side by side. Open the Testing category from the badge at the top of this page, or use the Related Skills and comparison links further down to weigh public-skills-builder against similar tools.

LLM Engineer for Beginners

Ship LLM features to production - prompts, RAG, structured outputs, evaluation

39 minBeginner

Comments (0)

to leave a comment.

No comments yet. Be the first to share your thoughts!

Related Skills

ECC

by affaan-m

The agent harness performance optimization system. Skills, instincts, memory, security, and research-first development for Claude Code, Codex, Opencode, Cursor and beyond.

216,924

Popular in Testing

Top skills in this category by stars

Rapid-MLX

by raullenchai

The fastest local AI engine for Apple Silicon. 4.2x faster than Ollama, 0.08s cached TTFT, 100% tool calling. 17 tool parsers, prompt cache, reasoning separation, cloud routing. Drop-in OpenAI replacement. Works with Claude Code, Cursor, Aider.

red-run ai-attestation

Testingai-securitybug-bountyclaude-aiclaude-codeethical-hackinghackeronepenetration-testingpythonsecurity-toolsvulnerability-scanner

AI Agentsai-agentsanthropic

hermes-agent

by NousResearch

The agent that grows with you

195,684

34,378

Python

AI Agentsaiai-agent

View details

Compare

everything-claude-code

by affaan-m

The agent harness performance optimization system. Skills, instincts, memory, security, and research-first development for Claude Code, Codex, Opencode, Cursor and beyond.

185,940

28,768

JavaScript

AI Agentsai-agentsanthropic

View details

Compare

cc-switch

by farion1231

A cross-platform desktop All-in-One assistant for Claude Code, Codex, OpenCode, OpenClaw, Gemini CLI & Hermes Agent. Only official website: ccswitch.io

103,035

6,819

Rust

AI Agentsai-toolsclaude-code

An AI SKILL that provide design intelligence for building professional UI/UX multiple platforms

92,791

9,687

Python

CLI Toolsai-skillsantigravity

View details

Compare

claude-mem

by thedotmack

Persistent Context Across Sessions for Every Agent – Captures everything your agent does during sessions, compresses it with AI, and injects relevant context back into future sessions. Works with Claude Code, OpenClaw, Codex, Gemini, Hermes, Copilot, OpenCode + More

82,870

7,176

JavaScript

AI Agentsaiai-agents

View details

Compare

Testingapple-siliconclaude-code

playwright-skill

by lackeyjb

Claude Code Skill for browser automation with Playwright. Model-invoked - Claude autonomously writes and executes custom automation for testing and validation.

2,780

197

JavaScript

Testingai-toolsautomation

View details

Claude-BugHunter

by elementalsouls

A Claude Code skill bundle for bug hunting and external red-team work — 71 skills, 15 slash commands, 681 disclosed-report patterns curated across 24 core vulnerability classes, plus enterprise identity + infrastructure attack matrices.

2,478

384

Python

Testingai-securityanthropic

View details

Public Skills Builder

Generate Claude Code bug bounty skills from public HackerOne reports and GitHub writeups — no private reports needed.

Feed it 500+ public bug bounty reports. Get back 18 ready-to-use Claude Code skill files — one per vulnerability class — packed with real-world techniques, payloads, and bypass patterns.

Quick Start · Output · Sources · Usage

Why Use This

Bug bounty reports are the best training data for hunting. This tool reads hundreds of disclosed HackerOne reports and community writeups, then uses Claude to distill them into structured skill files you can load directly into Claude Code.

No private reports required. Everything comes from public data.

Quick Start

git clone https://github.com/shuvonsec/public-skills-builder
cd public-skills-builder

python3 -m venv .venv
source .venv/bin/activate
pip install anthropic requests

cp .env.example .env
# Edit .env — add your ANTHROPIC_API_KEY

Sources

Source	Auth needed	What it fetches
HackerOne public feed	None	Publicly disclosed reports
HackerOne REST API	H1 API key	Your own resolved reports
GitHub writeup repos	None (optional token)	1,200+ community writeups

Output

One markdown skill file per vulnerability class, ready to load into Claude Code:

skills/
  hunt-idor.md
  hunt-ssrf.md
  hunt-xss.md
  hunt-rce.md
  hunt-oauth.md
  hunt-sqli.md
  hunt-business-logic.md
  ... (18 vuln classes total)
  README.md  ← index of all skills

Each skill file contains:

Crown jewel targets
Attack surface signals
Step-by-step hunting methodology
Payloads and grep patterns
Bypass techniques
Gate 0 validation checklist

Usage

# Public GitHub writeups only (just needs Claude API key)
python3 public_skills_builder.py --source github

# HackerOne public disclosed reports (no H1 key needed)
python3 public_skills_builder.py --source h1-public

# Everything — all sources, all vuln classes
python3 public_skills_builder.py --source all --limit 500

# Specific vuln classes only
python3 public_skills_builder.py --vuln-type idor ssrf xss oauth

# Specific H1 program
python3 public_skills_builder.py --source h1 --program shopify --limit 200

Supported Vuln Classes

idor ssrf xss sqli rce auth-bypass oauth race-condition business-logic graphql cache-poison xxe upload ssti csrf subdomain llm-ai crypto

Using the Skills in Claude Code

Once generated, load a skill into Claude Code by pointing it at the file:

claude
# Then: "Load skills/hunt-idor.md and help me hunt IDOR on target.com"

Or copy skill files into your Claude Code project's .claude/ directory so they load automatically.

Requirements

Python 3.10+
ANTHROPIC_API_KEY — from console.anthropic.com
H1_API_KEY — optional, from hackerone.com/settings/api_token
GITHUB_TOKEN — optional, increases GitHub API rate limits

Legal

For authorized security testing only. Only test targets within an approved bug bounty program scope.

MIT License · Built for bug hunters who learn from the community

Star if this saved you research time