Claude Skill
LoRexxar/Kunlun-M
Kunlun-M 是一款完全开源的静态白盒扫描工具,支持 PHP 和 JavaScript 语义扫描,并可一键接入 AI Agent(OpenClaw、Codex、Claude Code、Hermes 等)。
概览
仓库信息
安装这个 Skill
pip install -r requirements.txtRegistry 信息
项目简介
Kunlun-M 是一款完全开源的静态白盒扫描工具,支持 PHP 和 JavaScript 的语义扫描,并可通过 AI Agent(如 OpenClaw、Codex、Claude Code、Hermes 等)一键接入工具,实现自动化分析。
KunLun-M — Open-source static code analysis for PHP, Nodejs/JavaScript, Python, Golang, Java and C/C++, with AST-based semantic scanning and one-click AI Agent integration (OpenClaw, Codex, Claude Code, Hermes, and more).
要点
- 完全开源的静态白盒扫描
- 支持 PHP 和 JavaScript 的语义扫描
- 一键接入 AI Agent(OpenClaw、Codex、Claude Code、Hermes 等)
- 基于 Python 构建,易于扩展
- 专为安全代码分析设计
使用场景
- 对 PHP 和 JavaScript 代码库进行自动化安全审计
- 将 AI 辅助代码审查集成到 CI/CD 流水线中
- 在开源项目中快速检测漏洞
- 通过自动扫描增强手动渗透测试
README 摘要
[中文](README.zh.md) | English > <big>**Since Cobra-W 2.0, Cobra-W has been officially renamed to Kunlun-M(昆仑镜).**</big> > **Python 3.10+ is recommended (Python 3.13+ preferred); Python 2.7 has reached end-of-life.** > Thanks to the AI era, I can address the project's basic maintenance issues at extremely low cost. Although the project's concepts may not be cutting-edge by today's standards, the stable core still serves as a solid tool reference. I will continue to iterate rapidly using Codex at minimal cost, boldly experiment with new features, and **attempt to build a potentially very useful tool using AI-era methods**. # Kunlun-Mirror [](https://github.com/LoRexxar/Kunlun-M/releases) [](./LICENSE)  ``` _ __ _ ___ ___ | | / / | | | \/ | | |/ / _ _ _ __ | | _ _ _ __ | . . | | \| | | | '_ \| | | | | | '_ \ _____| |\/| | | |\ \ |_| | | | | |___| |_| | | | |_____| | | | \_| \_/\__,_|_| |_\_____/\__,_|_| |_| \_| |_/ -v2.12 GitHub: https://github.com/LoRexxar/Kunlun-M KunLun-M is a static code analysis system that automates the detecting vulnerabilities and security issue. Main Program positional arguments: {init,config,scan,show,search,console,plugin,web} init Kunlun-M init before use. config config for rule&tamper scan scan target path show show rule&tamper search search vendor/project info console enter console mode plugin run plugin
话题
暂无话题