Skip to main content
Vuln Triage Agent reviews and validates vulnerability reports from any source: HackerOne, scanner output, manual input, or imported findings. It assesses real-world exploitability and severity before findings are actioned or filed.

What it does

  • HackerOne integration: fetches reports directly from HackerOne, reads internal comments, and updates report state after triage
  • Exploitability verification: actively tests reported vulnerabilities to confirm they are real and assess actual impact
  • Security verification: performs XSS context analysis, server-side verification, and out-of-band testing to validate findings
  • Full sandbox execution: runs nuclei, curl, and custom scripts to reproduce and verify reported issues
  • Web research: searches for additional context, related CVEs, and exploitation references for each finding
  • Issue tracking: correlates triage results with existing issues and updates their state accordingly

How it fits in

Vuln Triage Agent powers the Vuln triage workflow template. It is also invoked when Neo needs to review imported findings, validate scanner output, or process an incoming HackerOne webhook. It has access to all available skills to handle the full range of vulnerability types it may encounter.