EdgeIQ Security Report Generator

v1.0.0

Aggregates EdgeIQ Labs scan outputs into branded security reports with summaries, recommendations, and delivers via email, Telegram, or file on a scheduled b...

⭐ 0· 0·0 current·0 all-time

by@snipercat69

OpenClaw Prompt Flow

Install with OpenClaw

Best for remote or guided setup. Copy the exact prompt, then paste it into OpenClaw for snipercat69/edgeiq-security-report-generator.

Previewing Install & Setup.

Prompt PreviewInstall & Setup

Install the skill "EdgeIQ Security Report Generator" (snipercat69/edgeiq-security-report-generator) from ClawHub.
Skill page: https://clawhub.ai/snipercat69/edgeiq-security-report-generator
Keep the work scoped to this skill only.
After install, inspect the skill metadata and help me finish setup.
Use only the metadata you can verify from ClawHub; do not invent missing requirements.
Ask before making any broader environment changes.

Command Line

CLI Commands

Use the direct CLI path if you want to install manually and keep every step visible.

OpenClaw CLI

Canonical install target

openclaw skills install snipercat69/edgeiq-security-report-generator

ClawHub CLI

Package manager switcher

npx clawhub@latest install edgeiq-security-report-generator

Security Scan

VirusTotal

Suspicious

View report →

OpenClaw

Benign

medium confidence

✓

Purpose & Capability

Name/description match the included files: SKILL.md, README, sample data, and a report_generator.py that reads scan JSON, computes scores, renders HTML/JSON/TEXT, and supports delivery via SMTP/Telegram/file. The delivery/network capabilities are coherent with the stated purpose (report delivery).

ℹ

Instruction Scope

Runtime docs and README limit actions to reading structured JSON from a configured input directory, composing reports, and sending them via user-provided SMTP/Telegram settings or writing files. README also documents an optional 'edgeiq_tools' config that lets the generator call other EdgeIQ tools as subprocesses before aggregation — this expands scope beyond pure report generation but is explicitly documented. Review any configured subprocess paths before enabling them.

✓

Install Mechanism

No install spec (instruction-only + a script) — nothing will be downloaded or installed automatically. The code is stdlib-only Python and included in the bundle; low install risk.

ℹ

Credentials

The registry metadata lists no required env vars or credentials, yet README and SKILL.md expect SMTP credentials (username/password or app password) and a Telegram bot token to be placed in config.json/.env for delivery — this is a mismatch in declared vs. actual requirements. The credentials requested are appropriate for the delivery features, but the skill package does not declare them up-front in metadata. Ensure you provide delivery credentials intentionally and store them securely (prefer app passwords / least-privilege accounts).

✓

Persistence & Privilege

Skill is not always-enabled and is user-invocable. It does not request elevated platform privileges, does not claim to modify other skills, and doesn't request permanent presence.

Assessment

This package appears to be a straightforward report generator that reads local EdgeIQ JSON outputs and can send reports by SMTP or Telegram. Before installing or running it: 1) Confirm you will store SMTP/Telegram credentials intentionally (config.json/.env) and use least-privilege accounts (app passwords, limited-scope bot tokens). 2) If you enable the optional 'edgeiq_tools' subprocess feature, verify the configured tool paths — the generator will run those scripts which could execute arbitrary code on your host. 3) Keep scan input directories limited to authorized scan results (the tool will process whatever JSON files you provide). 4) Consider running first in a sandbox or test environment and review the full report_generator.py for any subprocess usage or unexpected network calls. 5) Do not use this with unauthorized scan data. If you want higher assurance, ask the publisher for a signed release or a provenance record and request that the registry metadata be updated to declare expected credential requirements.

Like a lobster shell, security has layers — review code before you run it.

latestvk972fbh8tad7z2jq9zxfkmhfe985c374

0downloads

0stars

1versions

Updated 2h ago

v1.0.0

MIT-0

EdgeIQ Labs Security Report Generator — SKILL.md

Version: 1.0.0
Category: Security Intelligence / Reporting
Author: EdgeIQ Labs
Status: Stable

What It Does

The Security Report Generator aggregates scan output from EdgeIQ Labs tools — XSS Scanner, Network Scanner, SSL Watcher, and Alerting System — into professional formatted security reports delivered by email, Telegram, or file download.

Designed for automated cron-driven operation (weekly/monthly), this skill transforms raw scan data into a recurring-revenue report product for MSSP resale or internal security posture tracking.

Tiers

	Free	Pro	Bundle
Price	Free	$19/mo	Included
Targets	Up to 5	Unlimited	Unlimited
Frequency	1/month	Any	Any
Output	Text summary	PDF + HTML + JSON	PDF + HTML + JSON
Delivery	File only	Email + Telegram + File	Email + Telegram + File
Branding	Generic	Branded (EdgeIQ Labs)	Branded
Multi-tool aggregation	Single tool	All tools	All tools

Features

Multi-tool aggregation — Combines output from XSS Scanner, Network Scanner, SSL Watcher, and Alerting System
Output formats — JSON (machine-readable), HTML (branded/colorful), TEXT (plain)
Delivery channels — SMTP email (MIME multipart), Telegram Bot API, local file
Executive summary — Risk score, total issues, severity breakdown
Prioritized recommendations — Fix list ranked by severity and impact
Cron-friendly — One-shot run, outputs, exits; perfect for cron or CI pipelines
Input flexibility — Reads structured scan result JSON from a configurable input directory
Rate throttling — Configurable delay between targets to avoid hammering live systems
Template system — Placeholder-based HTML/text templates for easy branding customization
Alert history — Parses EdgeIQ Alerting System JSON to include triggered alerts in report
CVE matching — Network scan results include CVE lookups against known CVEs
Brand footer — EdgeIQ Labs logo placeholder + footer on all HTML/PDF output

Usage Examples

Basic — Generate report from scan data

python3 scripts/report_generator.py --config config.json --format html

From other EdgeIQ tools (piped input)

# Run XSS scan, save output, then generate report
python3 scripts/xss_scanner.py --target https://example.com --json > /data/scans/xss_example.com.json
python3 scripts/report_generator.py --config config.json --targets example.com

Cron — Monthly HTML report to email

0 9 1 * * python3 /opt/edgeiq/report_generator.py --config /opt/edgeiq/config.json --format html --delivery email

Telegram delivery with file attachment

python3 scripts/report_generator.py --config config.json --format html --delivery telegram --chat-id @yourchannel

How It Integrates with Other EdgeIQ Tools

┌─────────────┐   ┌─────────────┐   ┌─────────────┐   ┌─────────────┐
│ XSS Scanner │   │   Network   │   │ SSL Watcher │   │Alert System │
│             │   │   Scanner   │   │             │   │             │
└──────┬──────┘   └──────┬──────┘   └──────┬──────┘   └──────┬──────┘
       │                 │                 │                 │
       ▼                 ▼                 ▼                 ▼
   JSON files dropped into input/ directory (configured in config.json)
       │                 │                 │                 │
       └─────────────────┼─────────────────┼─────────────────┘
                         ▼
              ┌──────────────────┐
              │  Report Generator │
              │  (this skill)     │
              └────────┬─────────┘
                       ▼
         ┌────────────┴────────────┐
         │  Email / Telegram / File │
         └──────────────────────────┘

Each tool saves its output as structured JSON to the configured scan_input_dir. The report generator reads all JSON files from that directory, correlates findings by target, and produces a unified report.

Legal Notice

DISCLAIMER: This tool processes security scan data and generates reports. The report generator itself does not perform network reconnaissance or vulnerability scanning. All scan data must be gathered through authorized, legitimate means only.

EdgeIQ Labs accepts no liability for misuse of this tool or data it processes. Users are solely responsible for ensuring they have explicit authorization to scan and assess any systems referenced in report input data.

Report findings are advisory only. EdgeIQ Labs does not guarantee the accuracy, completeness, or timeliness of generated reports. Always validate findings through secondary investigation before taking remediation action.

EdgeIQ Labs — Security Intelligence for the Modern Web

Comments

Loading comments...