{"id":51396195,"url":"https://github.com/aleff-github/vuln-report-kit","last_synced_at":"2026-07-04T02:33:43.728Z","repository":{"id":368931387,"uuid":"1287548264","full_name":"aleff-github/vuln-report-kit","owner":"aleff-github","description":"Vuln Report Kit is a local-first Obsidian plugin for vulnerability research notes, responsible disclosure reports, secret scanning, sanitized public exports, templates, dashboards and case backups.","archived":false,"fork":false,"pushed_at":"2026-07-02T20:26:18.000Z","size":44,"stargazers_count":0,"open_issues_count":0,"forks_count":0,"subscribers_count":0,"default_branch":"main","last_synced_at":"2026-07-04T02:33:41.700Z","etag":null,"topics":["bug-bounty","cybersecurity","local-first","markdown","obsidian","obsidian-plugin","responsible-disclosure","secret-scanning","security-reporting","vulnerability-research"],"latest_commit_sha":null,"homepage":"https://community.obsidian.md/plugins/vuln-report-kit","language":"JavaScript","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"gpl-3.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/aleff-github.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null}},"created_at":"2026-07-02T19:43:26.000Z","updated_at":"2026-07-02T20:26:39.000Z","dependencies_parsed_at":null,"dependency_job_id":null,"html_url":"https://github.com/aleff-github/vuln-report-kit","commit_stats":null,"previous_names":["aleff-github/vuln-report-kit"],"tags_count":2,"template":false,"template_full_name":null,"purl":"pkg:github/aleff-github/vuln-report-kit","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/aleff-github%2Fvuln-report-kit","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/aleff-github%2Fvuln-report-kit/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/aleff-github%2Fvuln-report-kit/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/aleff-github%2Fvuln-report-kit/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/aleff-github","download_url":"https://codeload.github.com/aleff-github/vuln-report-kit/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/aleff-github%2Fvuln-report-kit/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":35108298,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-05-26T15:22:16.424Z","status":"online","status_checked_at":"2026-07-04T02:00:05.987Z","response_time":113,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["bug-bounty","cybersecurity","local-first","markdown","obsidian","obsidian-plugin","responsible-disclosure","secret-scanning","security-reporting","vulnerability-research"],"created_at":"2026-07-04T02:33:42.004Z","updated_at":"2026-07-04T02:33:43.724Z","avatar_url":"https://github.com/aleff-github.png","language":"JavaScript","funding_links":[],"categories":[],"sub_categories":[],"readme":"# Vuln Report Kit\n\n**Vuln Report Kit** is a local-first Obsidian plugin for vulnerability research notes, disclosure reports, secret review, sanitization, templates, dashboards, timelines, and portable exports.\n\nVersion: **1.0.1**\n\n## What it is\n\nVuln Report Kit turns an Obsidian vault into a structured workspace for vulnerability research documentation. It is designed for responsible disclosure notes, bug bounty writeups, CVE research notes, public article drafts, and sanitized report preparation.\n\nThe plugin is intentionally simple: it works with Markdown files inside your vault and does not require any server, account, cloud database, API key, external AI service, or license server.\n\n## Core workflow\n\n1. Create a vulnerability case.\n2. Document target, reproduction, impact, evidence, remediation, and timeline.\n3. Track cases with a local dashboard.\n4. Use starter or professional templates.\n5. Generate a final Markdown report.\n6. Scan locally for possible secrets.\n7. Create a sanitized public copy.\n8. Export bundles, shareable folders, indexes, and template backups.\n\n## Main commands\n\n```text\nVuln Report Kit: Create vulnerability case\nVuln Report Kit: Open quick start guide\nVuln Report Kit: Create demo vulnerability case\nVuln Report Kit: Run local health check\nVuln Report Kit: Open vulnerability dashboard\nVuln Report Kit: Update current case status\nVuln Report Kit: Open templates folder\nVuln Report Kit: Install starter template pack\nVuln Report Kit: Import template pack from vault folder\nVuln Report Kit: Create note from template\nVuln Report Kit: Insert template into current note\nVuln Report Kit: Insert report section\nVuln Report Kit: Generate final Markdown report for current case\nVuln Report Kit: Scan current case for secrets\nVuln Report Kit: Create sanitized public copy\nVuln Report Kit: Open exports folder\nVuln Report Kit: Export current case bundle\nVuln Report Kit: Create shareable case archive\nVuln Report Kit: Export all cases index\nVuln Report Kit: Backup templates\n```\n\n## Generated case structure\n\nA new case is created under the configured root folder, by default:\n\n```text\nVulnerability Research/\n└── 2026-07-02-example-vulnerability/\n    ├── 00-overview.md\n    ├── 01-target.md\n    ├── 02-reproduction.md\n    ├── 03-impact.md\n    ├── 04-evidence.md\n    ├── 05-remediation.md\n    ├── 06-timeline.md\n    ├── 08-article-draft.md\n    └── attachments/\n```\n\nGenerated outputs include:\n\n```text\n99-final-report.md\n99-public-report.md\nsecret-scan-report.md\n```\n\n## Template packs\n\nThe plugin includes a starter template pack and supports importing local template packs into:\n\n```text\nVulnerability Research/_templates/\n```\n\nSupported template variables include:\n\n```text\n{{title}}\n{{target}}\n{{vendor}}\n{{category}}\n{{severity}}\n{{status}}\n{{cwe}}\n{{cvss}}\n{{disclosure}}\n{{created}}\n{{last_updated}}\n{{today}}\n{{case_folder}}\n```\n\n## Secret scanner and sanitizer\n\nThe scanner is local and regex-based. It can flag possible:\n\n```text\nprivate keys\nAuthorization headers\nBearer tokens\nJWTs\nAWS keys\nGitHub tokens\nGoogle API keys\nSlack tokens\nStripe secret keys\ngeneric API keys / client secrets / access tokens\ncookies\nsession IDs\npassword-like assignments\nemails\nprivate IPs\nlocalhost URLs\nbasic-auth URLs\n```\n\nThe sanitizer creates a public copy with placeholders such as:\n\n```text\n\u003cREDACTED_TOKEN\u003e\n\u003cREDACTED_COOKIE\u003e\n\u003cREDACTED_JWT\u003e\n\u003cREDACTED_GITHUB_TOKEN\u003e\n\u003cREDACTED_AWS_ACCESS_KEY\u003e\n\u003cEMAIL\u003e\n\u003cPRIVATE_IP\u003e\n\u003cLOCAL_URL\u003e\n```\n\n## Local-only design\n\nThe plugin does not require:\n\n- server;\n- account;\n- login;\n- cloud database;\n- API key;\n- external AI service;\n- license server.\n\nEverything is stored as local files inside the Obsidian vault.\n\n## Important security note\n\nSecret scanning and sanitization are helper features, not a guarantee that a report is safe to publish. Always manually review public reports and shareable archives before sending or publishing them.\n\n## Recommended first test\n\nUse a clean test vault and run:\n\n```text\nVuln Report Kit: Create demo vulnerability case\nVuln Report Kit: Open vulnerability dashboard\nVuln Report Kit: Generate final Markdown report for current case\nVuln Report Kit: Scan current case for secrets\nVuln Report Kit: Create sanitized public copy\nVuln Report Kit: Export all cases index\n```\n\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Faleff-github%2Fvuln-report-kit","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Faleff-github%2Fvuln-report-kit","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Faleff-github%2Fvuln-report-kit/lists"}