Identify, assess, and fix security vulnerabilities in Go modules using govulncheck. Handle common vulnerabilities like JWT issues and ensure application stability during fixes.
数据来源:ClawHub。 在 ClawSkills 查看
选择你使用的 Agent
方法一:命令行安装(推荐)
推荐(无需提前安装 clawhub)
npx clawhub@latest --dir ~/.claude/skills install go-security-vulnerability或使用 clawhub CLI(需提前安装)
clawhub --dir ~/.claude/skills install go-security-vulnerability⚠️ 需要 Node.js 18+,没有 Node?请使用下方方法二直接下载 ZIP。 安装 Node.js →
方法二:手动下载安装(无需 Node)
下载 ZIP,解压后将文件夹放到以下路径,重启 Agent 即可:
安装路径
~/.claude/skills/go-security-vulnerability/💡解压后将文件夹放到上方路径,重启 Agent 即可生效
--- name: go-security-vulnerability description: "Identify, assess, and fix security vulnerabilities in Go modules using govulncheck. Handle common vulnerabilities like JWT issues and ensure application stability during fixes." metadata: { "openclaw": { "emoji": "🔒", "requires": { "bins": ["go"] }, "install": [ { "id": "golang", "kind": "script", "script": "curl -L https://golang.org/dl/go1.21.5.linux-amd64.tar.gz | tar -C /usr/local -xzf -", "bins": ["go"], "label": "Install Go", }, ], }, } ---
Use Go tooling to identify, assess, and fix security vulnerabilities in Go modules. This skill helps detect and remediate vulnerabilities while maintaining application functionality.
Scan for vulnerabilities in your Go project:
go install golang.org/x/vuln/cmd/govulncheck@latest
govulncheck ./...Check specific modules for known vulnerabilities:
govulncheck -show verbose ./...Update vulnerable packages to secure versions:
go get -u vulnerable/package@latest
go mod tidyFor vulnerabilities in transitive dependencies:
go mod why vulnerable/package # Understand why it's included
go mod edit -replace vulnerable/package=newer-version # Replace if needed
go mod tidyIf a dependency is unused or can be replaced:
go mod tidy to clean up unused dependenciesAfter applying fixes:
# Verify no vulnerabilities remain
govulncheck ./...
# Ensure application still builds
go build ./...
# Run tests to verify functionality
go test ./...github.com/golang-jwt/jwt GO-2025-3553 (excessive memory allocation)golang.org/x/oauth2 alternativesgo vuln to check for stdlib vulnerabilitiesgovulncheckgo get -ugo mod tidy to remove unused dependencies安装 Go Security Vulnerability 后,可以对 AI 说这些话来触发它
Help me get started with Go Security Vulnerability
Explains what Go Security Vulnerability does, walks through the setup, and runs a quick demo based on your current project
Use Go Security Vulnerability to identify, assess, and fix security vulnerabilities in Go modules us...
Invokes Go Security Vulnerability with the right parameters and returns the result directly in the conversation
What can I do with Go Security Vulnerability in my finance & investment workflow?
Lists the top use cases for Go Security Vulnerability, with example commands for each scenario
将技能文件夹放到 ~/.claude/skills/go-security-vulnerability/ 目录(个人级,所有项目可用),或 .claude/skills/go-security-vulnerability/(项目级)。重启 AI 客户端后,用 /go-security-vulnerability 主动调用,或让 AI 根据上下文自动发现并使用。
Go Security Vulnerability 支持 Claude、Cursor、OpenClaw,可与这些 AI 平台无缝集成,扩展其能力。
Go Security Vulnerability 可免费安装使用。请查阅仓库了解许可证信息。
Identify, assess, and fix security vulnerabilities in Go modules using govulncheck. Handle common vulnerabilities like JWT issues and ensure application stability during fixes.
Go Security Vulnerability 属于「Finance & Investment」分类,该分类的技能帮助 AI 智能体在此领域执行专业任务。
Automate my finance & investment tasks using Go Security Vulnerability
Identifies repetitive steps in your workflow and sets up Go Security Vulnerability to handle them automatically