Scanner Skill — Decepticon

What it does

The Scanner skill performs broad-spectrum, high-volume scans over large codebases to surface suspicious code locations. It shards the codebase deterministically, processes file shards in parallel, and ranks results to produce a small, precise list of candidate locations for downstream analysis.

When to use it

Use this skill as the first stage in a vulnerability research pipeline where scale and throughput matter: initial triage across 10^4–10^6 files to produce ~20–50 high-quality candidates for the Detector. It's used at scanner-agent startup and when you need an automated, token-efficient sweep.

What's included

• Scripts: none declared in SKILL.md (references in repo may exist)
• References: none embedded in the SKILL.md body
• Instructions: operating principles, shard sizing guidance, workflow steps (ls, file counts, scan_shard calls), and sink kinds to look for (code_exec, os_exec, sql, ssrf, xss, etc.).

Compatible agents

Designed for autonomous code-analysis agents and pipeline orchestrators (agents capable of running ripgrep-like scans, managing parallel shards, and producing KG nodes). Works best with agents that support structured outputs and simple tooling integrations.