Skip to content

autofix-cve-resolve

Orchestrate CVE remediation for Jira Vulnerability tickets using a Python state machine (cve_pipeline.py) for deterministic routing. Phases: parse ticket → resolve repos → scan for vulnerability → fix → verify fix → VEX assessment → review → create PR → finalize. Handles multiple repos and branches per CVE. Never writes fix code directly.

Plugin: autofix-skills | User-invocable

Diagram

autofix-cve-resolve diagram

Usage

/autofix-cve-resolve