zw008/VMware-Harden
AI-native VMware compliance and baseline enforcement (CIS, vSphere SCG, 等保 2.0, PCI-DSS) — sibling to vmware-* skill family
2 starsPythonMITagent-skillsai-skillautomationcis-benchmark
REVIEWED77/100
Scanned 2026-07-07 · gemini v1
Dimension breakdown
Security
55/100
6 findings
Quality
93/100
3 findings
License
86/100
2 findings
Completeness
75/100
2 findings
Findings (13)
CRITICAL: 1HIGH: 2MEDIUM: 3LOW: 3INFO: 4
- CRITICALcompletenessMissing MCP Server Manifest
- HIGHsecurityUnsafe YAML Deserialization for Custom Baselines
- HIGHsecurityLLM Remediation Advisor: Potential for Malicious Plan Generation
- MEDIUMsecurityServer-Side Template Injection (SSTI) in Web Dashboard
- MEDIUMsecurityPath Traversal in Custom Baseline Import
Detailed file:line citations + recommended fixes are visible to the maintainer of this repo after claiming the listing.
Maintainer of this repo?
Claim this listing in 30 seconds with GitHub OAuth. You'll see detailed findings, get notified about matched bounties, and can trigger re-scans on demand.
Claim listingEmbed the badge.
Drop it into your README. Every view backlinks to this verification page.
Markdown
[](https://archimedes.market/r/zw008/VMware-Harden)HTML
<a href="https://archimedes.market/r/zw008/VMware-Harden"><img src="https://archimedes.market/api/badge/zw008/VMware-Harden.svg" alt="Archimedes Trust Verified"/></a>