Parent
#360
What to build
Add three new vulnerability agents to the parallel vuln phase: cors-vuln, info-disclosure-vuln, and open-redirects-vuln. These cover common P3/P4 bug bounty finding classes that the existing five agents do not address.
End-to-end path:
- Register all three in
AGENTS (session-manager), ALL_AGENTS and AgentName (types/agents.ts)
- Write prompt templates:
vuln-cors.txt, vuln-info-disclosure.txt, vuln-open-redirects.txt
- Each has
recon as its only prerequisite and runs in the existing parallel vuln phase (8 total agents)
- Register thin activity wrappers in
activities.ts and wire into workflows.ts
- No exploit agents for these types in this iteration — findings feed into reporting only
CORS agent: wildcard origins, credentialed cross-origin requests, CORS on sensitive endpoints.
Info-disclosure agent: exposed API keys, stack traces, debug endpoints, .env paths, verbose error messages.
Open-redirects agent: URL parameter-based redirects, next/redirect/url params, header injection vectors.
Acceptance criteria
Blocked by
None — can start immediately
Parent
#360
What to build
Add three new vulnerability agents to the parallel vuln phase:
cors-vuln,info-disclosure-vuln, andopen-redirects-vuln. These cover common P3/P4 bug bounty finding classes that the existing five agents do not address.End-to-end path:
AGENTS(session-manager),ALL_AGENTSandAgentName(types/agents.ts)vuln-cors.txt,vuln-info-disclosure.txt,vuln-open-redirects.txtreconas its only prerequisite and runs in the existing parallel vuln phase (8 total agents)activities.tsand wire intoworkflows.tsCORS agent: wildcard origins, credentialed cross-origin requests, CORS on sensitive endpoints.
Info-disclosure agent: exposed API keys, stack traces, debug endpoints,
.envpaths, verbose error messages.Open-redirects agent: URL parameter-based redirects,
next/redirect/urlparams, header injection vectors.Acceptance criteria
cors_analysis_deliverable.md)ALL_AGENTSandAgentNametypes updated; TypeScript compiles cleanlyassembleFinalReportinreporting.tsincludes findings from new agentsBlocked by
None — can start immediately