{
  "schemaVersion": "1.0",
  "item": {
    "slug": "angus-bounty-hunter",
    "name": "Angus Bounty Hunter",
    "source": "tencent",
    "type": "skill",
    "category": "AI 智能",
    "sourceUrl": "https://clawhub.ai/Chipp11/angus-bounty-hunter",
    "canonicalUrl": "https://clawhub.ai/Chipp11/angus-bounty-hunter",
    "targetPlatform": "OpenClaw"
  },
  "install": {
    "downloadMode": "redirect",
    "downloadUrl": "/downloads/angus-bounty-hunter",
    "sourceDownloadUrl": "https://wry-manatee-359.convex.site/api/v1/download?slug=angus-bounty-hunter",
    "sourcePlatform": "tencent",
    "targetPlatform": "OpenClaw",
    "installMethod": "Manual import",
    "extraction": "Extract archive",
    "prerequisites": [
      "OpenClaw"
    ],
    "packageFormat": "ZIP package",
    "includedAssets": [
      "SKILL.md",
      "scripts/scan.sh",
      "scripts/triage.sh"
    ],
    "primaryDoc": "SKILL.md",
    "quickSetup": [
      "Download the package from Yavira.",
      "Extract the archive and review SKILL.md first.",
      "Import or place the package into your OpenClaw setup."
    ],
    "agentAssist": {
      "summary": "Hand the extracted package to your coding agent with a concrete install brief instead of figuring it out manually.",
      "steps": [
        "Download the package from Yavira.",
        "Extract it into a folder your agent can access.",
        "Paste one of the prompts below and point your agent at the extracted folder."
      ],
      "prompts": [
        {
          "label": "New install",
          "body": "I downloaded a skill package from Yavira. Read SKILL.md from the extracted folder and install it by following the included instructions. Tell me what you changed and call out any manual steps you could not complete."
        },
        {
          "label": "Upgrade existing",
          "body": "I downloaded an updated skill package from Yavira. Read SKILL.md from the extracted folder, compare it with my current installation, and upgrade it while preserving any custom configuration unless the package docs explicitly say otherwise. Summarize what changed and any follow-up checks I should run."
        }
      ]
    },
    "sourceHealth": {
      "source": "tencent",
      "status": "healthy",
      "reason": "direct_download_ok",
      "recommendedAction": "download",
      "checkedAt": "2026-04-23T16:43:11.935Z",
      "expiresAt": "2026-04-30T16:43:11.935Z",
      "httpStatus": 200,
      "finalUrl": "https://wry-manatee-359.convex.site/api/v1/download?slug=4claw-imageboard",
      "contentType": "application/zip",
      "probeMethod": "head",
      "details": {
        "probeUrl": "https://wry-manatee-359.convex.site/api/v1/download?slug=4claw-imageboard",
        "contentDisposition": "attachment; filename=\"4claw-imageboard-1.0.1.zip\"",
        "redirectLocation": null,
        "bodySnippet": null
      },
      "scope": "source",
      "summary": "Source download looks usable.",
      "detail": "Yavira can redirect you to the upstream package for this source.",
      "primaryActionLabel": "Download for OpenClaw",
      "primaryActionHref": "/downloads/angus-bounty-hunter"
    },
    "validation": {
      "installChecklist": [
        "Use the Yavira download entry.",
        "Review SKILL.md after the package is downloaded.",
        "Confirm the extracted package contains the expected setup assets."
      ],
      "postInstallChecks": [
        "Confirm the extracted package includes the expected docs or setup files.",
        "Validate the skill or prompts are available in your target agent workspace.",
        "Capture any manual follow-up steps the agent could not complete."
      ]
    },
    "downloadPageUrl": "https://openagent3.xyz/downloads/angus-bounty-hunter",
    "agentPageUrl": "https://openagent3.xyz/skills/angus-bounty-hunter/agent",
    "manifestUrl": "https://openagent3.xyz/skills/angus-bounty-hunter/agent.json",
    "briefUrl": "https://openagent3.xyz/skills/angus-bounty-hunter/agent.md"
  },
  "agentAssist": {
    "summary": "Hand the extracted package to your coding agent with a concrete install brief instead of figuring it out manually.",
    "steps": [
      "Download the package from Yavira.",
      "Extract it into a folder your agent can access.",
      "Paste one of the prompts below and point your agent at the extracted folder."
    ],
    "prompts": [
      {
        "label": "New install",
        "body": "I downloaded a skill package from Yavira. Read SKILL.md from the extracted folder and install it by following the included instructions. Tell me what you changed and call out any manual steps you could not complete."
      },
      {
        "label": "Upgrade existing",
        "body": "I downloaded an updated skill package from Yavira. Read SKILL.md from the extracted folder, compare it with my current installation, and upgrade it while preserving any custom configuration unless the package docs explicitly say otherwise. Summarize what changed and any follow-up checks I should run."
      }
    ]
  },
  "documentation": {
    "source": "clawhub",
    "primaryDoc": "SKILL.md",
    "sections": [
      {
        "title": "Bounty Hunter",
        "body": "Automated smart contract vulnerability scanner for bug bounty programs. Uses free tools (Slither + local LLMs) for the heavy lifting, saves expensive models for PoC writing."
      },
      {
        "title": "Requirements",
        "body": "slither-analyzer (pip): Static analysis\nsolc-select (pip): Solidity compiler management\nNode.js: For script execution\nOptional: Ollama with any code model for local triage"
      },
      {
        "title": "Quick Start",
        "body": "# Scan a repo\nbash scripts/scan.sh <github-repo-url> [src-dir]\n\n# Triage findings (uses local LLM if available, otherwise prints raw)\nbash scripts/triage.sh <scan-output.json>\n\n# Generate PoC template for a finding\nbash scripts/poc-template.sh <finding-id> <contract-address>"
      },
      {
        "title": "Workflow",
        "body": "Target Selection — Check Immunefi/Code4rena for active programs\nClone & Scan — scan.sh clones the repo, installs solc, runs Slither\nTriage — triage.sh filters HIGH/MEDIUM findings, removes known false positives\nDeep Dive — Only read code that Slither flagged (save your tokens)\nPoC — Use poc-template.sh to generate Foundry test scaffolding\nSubmit — Write up finding on Immunefi/Code4rena"
      },
      {
        "title": "Target Selection Criteria",
        "body": "Before scanning, check:\n\nScope last updated within 30 days (fresh code = more bugs)\nPast payouts > $50K (they actually pay)\nGitHub repo in scope (not just deployed addresses)\nSolidity-based (Slither only works with Solidity)"
      },
      {
        "title": "Anti-Patterns",
        "body": "Don't read entire codebases manually — let Slither scan first\nDon't spend > 1 hour on a target without a concrete lead\nDon't submit known issues (check past reports first)\nDon't ignore test coverage — untested code is where bugs hide"
      }
    ],
    "body": "Bounty Hunter\n\nAutomated smart contract vulnerability scanner for bug bounty programs. Uses free tools (Slither + local LLMs) for the heavy lifting, saves expensive models for PoC writing.\n\nRequirements\nslither-analyzer (pip): Static analysis\nsolc-select (pip): Solidity compiler management\nNode.js: For script execution\nOptional: Ollama with any code model for local triage\nQuick Start\n# Scan a repo\nbash scripts/scan.sh <github-repo-url> [src-dir]\n\n# Triage findings (uses local LLM if available, otherwise prints raw)\nbash scripts/triage.sh <scan-output.json>\n\n# Generate PoC template for a finding\nbash scripts/poc-template.sh <finding-id> <contract-address>\n\nWorkflow\nTarget Selection — Check Immunefi/Code4rena for active programs\nClone & Scan — scan.sh clones the repo, installs solc, runs Slither\nTriage — triage.sh filters HIGH/MEDIUM findings, removes known false positives\nDeep Dive — Only read code that Slither flagged (save your tokens)\nPoC — Use poc-template.sh to generate Foundry test scaffolding\nSubmit — Write up finding on Immunefi/Code4rena\nTarget Selection Criteria\n\nBefore scanning, check:\n\nScope last updated within 30 days (fresh code = more bugs)\nPast payouts > $50K (they actually pay)\nGitHub repo in scope (not just deployed addresses)\nSolidity-based (Slither only works with Solidity)\nAnti-Patterns\nDon't read entire codebases manually — let Slither scan first\nDon't spend > 1 hour on a target without a concrete lead\nDon't submit known issues (check past reports first)\nDon't ignore test coverage — untested code is where bugs hide"
  },
  "trust": {
    "sourceLabel": "tencent",
    "provenanceUrl": "https://clawhub.ai/Chipp11/angus-bounty-hunter",
    "publisherUrl": "https://clawhub.ai/Chipp11/angus-bounty-hunter",
    "owner": "Chipp11",
    "version": "1.0.0",
    "license": null,
    "verificationStatus": "Indexed source record"
  },
  "links": {
    "detailUrl": "https://openagent3.xyz/skills/angus-bounty-hunter",
    "downloadUrl": "https://openagent3.xyz/downloads/angus-bounty-hunter",
    "agentUrl": "https://openagent3.xyz/skills/angus-bounty-hunter/agent",
    "manifestUrl": "https://openagent3.xyz/skills/angus-bounty-hunter/agent.json",
    "briefUrl": "https://openagent3.xyz/skills/angus-bounty-hunter/agent.md"
  }
}