From ff5b96ea40641e502b50a334c169a71e6c274f77 Mon Sep 17 00:00:00 2001 From: Ayush7614 Date: Thu, 2 Jul 2026 00:38:03 +0530 Subject: [PATCH] Address Greptile review feedback on AWS and deserialization skills - Use head-bucket for S3 existence checks instead of duplicating s3 ls - Add Node.js to insecure_deserialization frontmatter description --- strix/skills/cloud/aws.md | 6 +++--- strix/skills/vulnerabilities/insecure_deserialization.md | 2 +- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/strix/skills/cloud/aws.md b/strix/skills/cloud/aws.md index 13bc8a6..bb0a515 100644 --- a/strix/skills/cloud/aws.md +++ b/strix/skills/cloud/aws.md @@ -41,11 +41,11 @@ AWS misconfigurations frequently expose credentials, data, and lateral movement **Unauthenticated Enumeration** ``` -# S3 bucket existence (403 vs 404 reveals existence) -aws s3 ls s3://target-bucket --no-sign-request +# S3 bucket existence (403 = exists but private, 404 = doesn't exist or different region) +aws s3api head-bucket --bucket target-bucket --no-sign-request 2>&1 curl -I https://target-bucket.s3.amazonaws.com/ -# Public listing +# Public listing (confirms s3:ListBucket is granted to AllUsers) aws s3 ls s3://target-bucket --no-sign-request ``` diff --git a/strix/skills/vulnerabilities/insecure_deserialization.md b/strix/skills/vulnerabilities/insecure_deserialization.md index e7e6d9b..db38212 100644 --- a/strix/skills/vulnerabilities/insecure_deserialization.md +++ b/strix/skills/vulnerabilities/insecure_deserialization.md @@ -1,6 +1,6 @@ --- name: insecure_deserialization -description: Insecure deserialization testing for Java, Python, PHP, .NET, and Ruby covering gadget chains, type confusion, and safe validation +description: Insecure deserialization testing for Java, Python, PHP, .NET, Ruby, and Node.js covering gadget chains, type confusion, and safe validation --- # Insecure Deserialization