Bug Bounty Report Reviewer
Audit and refine vulnerability reports to maximize bounty payouts and reduce N/A or duplicate closures.
- Audit security reports for missing technical evidence and reproduction steps.
- Score vulnerability severity using a standardized technical rubric.
- Generate executive summaries for bug bounty platform triage teams.
$15
· or 75 creditsSecure checkout via Stripe
Included in download
- Audit security reports for missing technical evidence and reproduction steps.
- Score vulnerability severity using a standardized technical rubric.
- Includes example output and usage patterns
Sample input
Audit my draft for an IDOR I found in the user settings API. Check the impact and severity, then let me know what evidence I'm missing for a high-quality submission.
Sample output
SEVERITY SCORE: 8.1 (High) IMPACT: Account Takeover via IDOR on /api/users/settings. REPRODUCTION:
- Auth as User A.
- Intercept POST via Burp.
- Change 'uid' to User B. MISSING EVIDENCE: Proof of Concept needs a video or screenshot of the PII leak to confirm impact score.
Bug Bounty Report Reviewer
Audit and refine vulnerability reports to maximize bounty payouts and reduce N/A or duplicate closures.
$15
· or 75 creditsSecure checkout via Stripe
Included in download
- Audit security reports for missing technical evidence and reproduction steps.
- Score vulnerability severity using a standardized technical rubric.
- Includes example output and usage patterns
- Instant install
Sample input
Audit my draft for an IDOR I found in the user settings API. Check the impact and severity, then let me know what evidence I'm missing for a high-quality submission.
Sample output
SEVERITY SCORE: 8.1 (High) IMPACT: Account Takeover via IDOR on /api/users/settings. REPRODUCTION:
- Auth as User A.
- Intercept POST via Burp.
- Change 'uid' to User B. MISSING EVIDENCE: Proof of Concept needs a video or screenshot of the PII leak to confirm impact score.
About This Skill
What it does
The Bug Bounty Report Reviewer transforms raw vulnerability findings into professional, platform-ready submissions. It applies a rigorous, structured rubric to ensure reports meet the high standards of platforms like HackerOne and Bugcrowd, minimizing the risk of "Informative" or "N/A" closures.
Problem it Solves
Security researchers often lose potential payouts due to poor report structure, lack of clear impact descriptions, or missing reproduction steps. This skill automates the pre-submission audit process, acting as a quality gate that flags missing evidence and refines technical writing to match triage expectations.
Why use this skill
Unlike generic AI prompts, this skill follows a battle-tested security workflow. It doesn't just "fix grammar"; it scores findings based on severity, identifies missing technical assumptions, and generates structured artifacts like executive summaries and prioritize action plans. It moves you from a "hacker with a finding" to a "professional researcher with a deliverable."
What the output looks like
Expect a comprehensive package including an executive summary, a scored findings table, a point-by-point reproduction checklist, and the final report copy ready for submission, complete with confidence levels and risk assessments.
Use Cases
- Audit security reports for missing technical evidence and reproduction steps.
- Score vulnerability severity using a standardized technical rubric.
- Generate executive summaries for bug bounty platform triage teams.
- Convert raw technical notes into professional, reproducible vulnerability reports.
Known Limitations
- Cannot verify live vulnerabilities or execute code.
- Does not guarantee bounty payouts.
- Quality of audit is dependent on the level of technical detail provided in the raw draft.
How to Install
mkdir -p ~/.claude/skills && curl -sL https://www.agensi.io/api/install/bounty-report-reviewer -o /tmp/bounty-report-reviewer.zip && unzip -o /tmp/bounty-report-reviewer.zip -d ~/.claude/skills && rm /tmp/bounty-report-reviewer.zipFree skills install directly. Paid skills require purchase - use the download button above after buying.
Reviews
No reviews yet - be the first to share your experience.
Only users who have downloaded or purchased this skill can leave a review.
Early access skill
Be the first to review this skill.
Only users who have downloaded or purchased this skill can leave a review.
Security Scanned
Passed automated security review
Permissions
No special permissions declared or detected
Compatible with SKILL.md-compatible agents
Frequently Asked Questions
Learn More About AI Agent Skills
More Premium Skills
Bounty Security Pattern Master Library — 399 Vulnerability Patterns
A premium library of 399 vulnerability patterns and DeFi attack vectors for AI-driven bug hunting and security audits.
sast-configuration
Automate the setup and optimization of Semgrep, SonarQube, and CodeQL for high-signal security testing.
designing-hybrid-context-layers
Architects the right retrieval strategy for every query — teaching your agent when to use RAG, a knowledge graph, or a temporal index instead of defaulting to vector search for everything.
ai-automation-qa-pack
Professional QA & UAT documentation generator for AI automation agencies and complex agent deployments.