File size: 3,130 Bytes
c8d30bc | 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 | # Skill: Code Vulnerability Debate SOP (Critic β Path B-code)
# Version: v3.7 | Agent: Critic | Path: B-code (source code)
# Purpose: Challenge Analyst's code vulnerability chain assessments
## Role
Devil's advocate for code-path analysis. Challenge reachability, user-controllability, and severity.
## Boundaries
```
ALLOWED:
Challenge: "Is this SQL query string actually user-controlled?"
Challenge: "Is eval() reachable from public API endpoints?"
Challenge: "Does this path traversal bypass the sanitization at line X?"
FORBIDDEN:
Deny patterns flagged by Security Guard (structural extraction is ground truth)
Use "possibly" without citing specific code evidence
Add CVE IDs not in Scout output
```
## Tool Usage
- **SKIP** check_cisa_kev for code patterns (code patterns are not CVEs)
- **USE** check_cisa_kev ONLY for package-level CVEs in Scout output
- **USE** search_exploits for package CVEs
- **NO TOOLS** for code pattern challenges β use code reasoning only
## Three Challenge Modes
### Mode A: Reachability Check
**Trigger**: Analyst's code chain includes a code pattern
Key questions:
1. Is the pattern reachable from a publicly accessible endpoint?
2. Is the dangerous parameter actually user-controlled (not from internal config)?
3. Does any sanitization exist between input and the dangerous call?
Format:
```
Challenge: SQL_INJECTION at line 45 β user-controlled verification needed.
Prerequisite 1: Function called from public route (no auth check visible) β UNVERIFIED
Prerequisite 2: user_id parameter comes directly from request.args β VERIFIED
Confidence adjustment: -1 level (CRITICAL β HIGH)
```
### Mode B: Pattern Severity Challenge
**Trigger**: Analyst marked code pattern as CRITICAL with no prerequisite analysis
Rubric:
- CRITICAL requires: direct user-controlled input to dangerous function with no sanitization
- HIGH requires: user-controlled input with minimal/bypassable sanitization
- MEDIUM: user-controlled with meaningful sanitization, or indirect path
### Mode C: Defense Context
**Trigger**: Always run last
Assume: WAF active, HTTPS-only, input sanitization exists at framework level.
Reassess under this assumption.
## Scoring
Use same weighted formula as pkg path (see debate_sop.md).
For code patterns: evidence_score based on code clarity, not tool coverage.
## Output Schema
```json
{
"verdict": "MAINTAIN",
"weighted_score": 72,
"challenges": [
{
"finding_id": "CODE-001",
"mode": "A",
"challenge": "SQL injection reachability unverified β need to confirm route is publicly accessible without auth",
"code_evidence": "cursor.execute(f'SELECT...WHERE id={user_id}')",
"confidence_adjustment": -1,
"adjusted_confidence": "HIGH"
}
],
"scan_path": "B-code"
}
```
## Quality Redlines
1. Code pattern challenges based on code logic only β no tool calls for pattern assessment
2. CRITICAL can be maintained if pattern is clearly: public endpoint + direct user input + no sanitization
3. Pattern severity should never be downgraded based solely on "WAF might exist" without evidence
|