Ostorlab/agent_asteroid
Jul 2025 – Dec 2025
2 Months active
Languages Used
PythonYAML
Technical Skills
Agent DevelopmentCLI Argument ParsingCVE ManagementCode RefactoringCommand-Line Interface (CLI)Configuration Management
SalwaAdlouni
PROFILE
Salwaadlouni
Worked on Ostorlab/agent_asteroid and Ostorlab/oxo, delivering targeted vulnerability scanning and risk reporting features. Developed custom CVE list support and CLI filtering to enable precise vulnerability assessment, leveraging Python and YAML for configuration and metadata handling. Enhanced exploit detection for Apache Tomcat and CVE-2024-50379 by refactoring detection logic, improving test coverage, and simplifying code for maintainability. In Ostorlab/oxo, implemented explicit risk fields in vulnerability data using Protocol Buffers and stabilized the test suite across Python versions. Focused on backend development, security automation, and CI/CD, resulting in more accurate scans, clearer risk signals, and improved release reliability.
Overall Statistics
Feature vs Bugs
80%Features
Repository Contributions
34Total
Bugs
1
Commits
34
Features
4
Lines of code
14,239
Activity Months3
Your Network
54 peopleSame Organization
@ostorlab.dev21
deadly-pandaMember
adnaneMember
Alaeddine MesbahiMember
amine atyqMember
Amine MesbahiMember
ErebusZMember
benyissaMember
mouhcine narhmoucheMember
MarouaneMember
Shared Repositories
33
mouhcine narhmoucheMember
elyousfiMember
ostorlabMember
nmasdoufi-olMember
ohachimOsMember
Alaeddine MesbahiMember
GitHub AutomationMember
benyissaMember
deadly-pandaMember
Work History
December 2025
7 Commits • 2 Features
Dec 1, 2025Month: 2025-12. Focused on delivering core vulnerability-detection improvements for Apache Tomcat and CVE-2024-50379 in Ostorlab/agent_asteroid, with targeted refactors, enhanced tests, and clearer signals to accelerate remediation and reduce risk.
7 Commits • 2 Features
Dec 1, 2025Month: 2025-12. Focused on delivering core vulnerability-detection improvements for Apache Tomcat and CVE-2024-50379 in Ostorlab/agent_asteroid, with targeted refactors, enhanced tests, and clearer signals to accelerate remediation and reduce risk.
December 2025
September 2025
16 Commits • 1 Features
Sep 1, 2025September 2025 highlights for Ostorlab/oxo: Implemented explicit vulnerability risk data and exposed it via the report_vulnerability API, and stabilized the test suite across Python 3.9 and 3.11, delivering clearer risk visibility and more reliable releases.
September 2025
16 Commits • 1 Features
Sep 1, 2025September 2025 highlights for Ostorlab/oxo: Implemented explicit vulnerability risk data and exposed it via the report_vulnerability API, and stabilized the test suite across Python 3.9 and 3.11, delivering clearer risk visibility and more reliable releases.
July 2025
11 Commits • 1 Features
Jul 1, 2025July 2025 — Ostorlab/agent_asteroid delivered targeted CVE scanning with custom CVE lists, enabling precise vulnerability assessment and faster triage. Implemented YAML config CVE_list and CLI filtering, with agent-level support for selecting exploits by CVE IDs and metadata integration. The feature rollout also included bug fixes to YAML field naming and consistent CVE_ID propagation, ensuring reliability and auditability. Changes were implemented across multiple commits to asteroid_agent.py, establishing a cohesive CVE-driven workflow. Result: reduced scan noise, shorter remediation cycles, and improved automation readiness for compliance reporting. Technologies: Python, YAML, CLI parsing, and metadata handling. Business value: higher accuracy, performance, and traceability of vulnerability scans.
11 Commits • 1 Features
Jul 1, 2025July 2025 — Ostorlab/agent_asteroid delivered targeted CVE scanning with custom CVE lists, enabling precise vulnerability assessment and faster triage. Implemented YAML config CVE_list and CLI filtering, with agent-level support for selecting exploits by CVE IDs and metadata integration. The feature rollout also included bug fixes to YAML field naming and consistent CVE_ID propagation, ensuring reliability and auditability. Changes were implemented across multiple commits to asteroid_agent.py, establishing a cohesive CVE-driven workflow. Result: reduced scan noise, shorter remediation cycles, and improved automation readiness for compliance reporting. Technologies: Python, YAML, CLI parsing, and metadata handling. Business value: higher accuracy, performance, and traceability of vulnerability scans.
July 2025
Activity
Loading activity data...
Quality Metrics
Correctness85.8%
Maintainability87.0%
Architecture78.2%
Performance82.8%
AI Usage20.0%
Skills & Technologies
Programming Languages
Protocol BuffersPythonTOMLYAMLprotobufpython
Technical Skills
Agent DevelopmentBackend DevelopmentCI/CDCLI Argument ParsingCVE ManagementCode RefactoringCommand-Line Interface (CLI)Configuration ManagementDockerDocumentationExploit DevelopmentExploit SelectionGraphQLPythonPython Development
Repositories Contributed To
Overview of all repositories you've contributed to across your timeline
Ostorlab/oxo
Sep 2025 – Sep 2025
1 Month active
Languages Used
Protocol BuffersPythonTOMLprotobufpython
Technical Skills
Backend DevelopmentCI/CDCode RefactoringConfiguration ManagementDockerDocumentation