scan target/home/runner/work/oh-pen-testing/oh-pen-testing/packages/websetup in progress: scan target will lock in once you finish the wizard

1. Install 2. Setup 3. First Scan 4. Agents 5. Reports

La Guida · 03

First Scan

Run a scan, read the results on the Board, understand severity levels.

Next: Agents →

Starter scan, try this first

Five safe regex-only playbooks. No network calls, no AI cost, completes in seconds. A good smoke-test before committing to a full scan.

opt scan --starter

Full scan

Runs every enabled playbook catalogue: OWASP Top 10, secrets, SCA, WSTG, CWE Top 25, and IaC. Uses your connected AI for context and confirmation.

opt scan

Target specific playbooks

Use --only to run a subset, or override the provider for a single run.

opt scan --only sql-injection-raw,xss-innerHTML
opt scan --provider claude-api --only secrets

Playbook catalogue

owasp-top-1022 playbooksFull OWASP Top 10: injection, crypto, auth, SSRF, and more

secrets1 playbookHardcoded API keys, tokens, and credentials

sca1 playbookDependency audit (npm, pip, bundler)

wstg-core3 playbooksOWASP WSTG checks: JWT, clickjacking, CORS

cwe-top-253 playbooksCWE Top 25: path traversal, open redirect, unrestricted upload

iac5 playbooksInfrastructure as code: Dockerfile, Terraform, Kubernetes, Compose

Severity levels

CriticalExploitable now: RCE, auth bypass, credential exposure.

HighSignificant risk, likely exploitable with moderate effort.

MediumReal weakness but requires specific conditions to exploit.

LowDefence-in-depth issues or informational findings.

Reading results

After a scan completes, issues appear on the Board (the kanban view) grouped by status: Backlog → Ready → In Review → Done. Each issue card shows the severity badge, affected file and line, the playbook that flagged it, and a link to the AI’s analysis. Click any card to open the full issue detail with code context, explanation, and remediation options.

← Setup Next: Agents →