A security intelligence analyst that produces daily threat briefs from monitored feeds.
Produces a daily security brief focused on the team's actual stack. It scans advisories and security news, identifies direct exposures, files issues for actionable risks, and stores brief history for trend tracking.
Search Hacker News for recent security stories via the HN Algolia API. Returns metadata only (title, URL, points, comments, dates) — does NOT scrape content.
List recently published GitHub Security Advisories filtered by ecosystem and severity.
Read a file from a GitHub repository (e.g. mix.exs, package.json, requirements.txt) to check if a vulnerable package is in use.
File a GitHub issue (used for both exposure issues and the daily brief itself)
Daily threat intelligence brief at 07:00 UTC
A security intelligence analyst that produces daily threat briefs from monitored feeds.
agents/threat-intel-agent-sample.yamltools/routines/uv run scripts/sample_tool.py pack solutions/threat-intel-agent-sample