Skip to content

Khr0x/skald

Repository files navigation

⚔️ SKALD

Security Kernel for Automated Leak Detection

Because every vulnerability has a story. We tell it before it's too late.

Go License Status


What is SKALD?

SKALD is an open-source, multi-ecosystem vulnerability analyzer that scans your projects for:

  • 🔍 Known vulnerabilities in direct and transitive dependencies (CVE/GHSA/OSV)
  • 🔐 Hardcoded secrets (API keys, passwords, tokens)
  • 📝 Insecure code patterns (SQL Injection, XSS, Command Injection)
  • 📜 License incompatibilities (GPL in commercial projects, etc.)
  • 🐳 Container misconfigurations (Dockerfiles, Kubernetes, Terraform)

Supported Ecosystems

Ecosystem Status
Node.js 🚧 In Progress
Python 🚧 In Progress
Java 📋 Planned
Go 📋 Planned
Ruby 📋 Planned
.NET 📋 Planned
Rust 📋 Planned
PHP 📋 Planned

Quick Start

# Install SKALD
go install github.com/Khr0x/skald/cmd/skald@latest

# Scan a project
skald scan ./my-project

# Update vulnerability database
skald db update

# Scan offline
skald scan ./my-project --offline

SKALD Priority Score

Unlike traditional scanners that only show CVSS, SKALD calculates a contextual Priority Score (0-100):

Factor Weight
CVSS v3 Score 25%
EPSS Score 20%
Reachability 20%
Public Exploit 15%
Fix Available 10%
Exposure 10%

Policy as Code

Define security policies in .skald.yaml:

version: 1
policies:
  fail_on:
    severity: [CRITICAL, HIGH]
    cvss_min: 7.0
  licenses:
    deny: [GPL-3.0, AGPL-3.0]

Documentation

See SKALD_SKILL.md for the complete technical reference.

Contributing

See CONTRIBUTING.md for guidelines.

License

Apache-2.0 — See LICENSE for details.


SKALDSecurity Kernel for Automated Leak Detection ⚔️

About

⚔️ SKALD — Security Kernel for Automated Leak Detection

Resources

License

Contributing

Stars

1 star

Watchers

0 watching

Forks

Releases

No releases published

Packages

 
 
 

Contributors