
from skills12
Generate a styled, client-ready PDF penetration test report from findings.json using a defined dark theme and structured sections (exec summary, risk dashboard,
This skill generates a professional penetration test report PDF from a findings.json input. It automates assembly of an executive summary, severity stat boxes, a risk dashboard, per-finding cards with business impact, remediation guidance, and an overall remediation table — producing a branded, dark-themed PDF suitable for client delivery.
Use this skill at the end of a pentest engagement when you have a machine-readable list of findings (findings.json). It's intended for automating report production during test pipelines or as a convenience for security teams preparing consistent client deliverables.
report_generator.py) that consumes findings.json and uses weasyprint to render PDF.refs/style.md defines the CSS and visual identity; the skill prescribes logo paths and file naming conventions.Compatible with agents that can read/write files and execute Python (weasyprint) — typical CLI-capable agents and CI runners.
Pentest report generator skill by NullPointer Studio that reads findings.json and produces a styled dark-themed PDF report via a dynamically-generated Python script using weasyprint. No bundled scripts to test — the SKILL.md instructs the agent to write the generator script on the fly. Well-documented workflow with clear steps for deduplication, classification, and report population. References a local style guide in refs/style.md. Hardcoded absolute path to a specific user's Desktop directory for the logo file is a minor privacy concern and will break on other systems.
No scripts to execute — static analysis only. The skill is well-written with clear instructions and good structure. The hardcoded absolute path is a portability issue and minor privacy leak but not a security threat. Skill is niche (pentest reporting) and tightly coupled to NullPointer Studio's branding and theme, limiting broad appeal.