Generate Report
by dandye
Save investigation findings to a markdown report file. Use after completing triage, enrichment, or investigation to create a permanent record. Generates timestamped files in ./reports/ directory.
Skill Details
Repository Files
1 file in this skill directory
name: generate-report description: "Save investigation findings to a markdown report file. Use after completing triage, enrichment, or investigation to create a permanent record. Generates timestamped files in ./reports/ directory." personas: [all]
Generate Report Skill
Save generated report content to a markdown file with standardized naming convention.
Inputs
REPORT_CONTENT- The full markdown content of the reportREPORT_TYPE- Short identifier for the report type:alert_triage- Alert triage reportsioc_enrichment- IOC enrichment reportscase_investigation- Case investigation reportshunt_summary- Threat hunt reportsincident_report- Incident response reports
REPORT_NAME_SUFFIX- Descriptive suffix (e.g., case ID, IOC value, hunt name)- (Optional)
TARGET_DIRECTORY- Directory to save in (default:./reports/)
Workflow
Step 1: Construct Filename
Generate standardized filename:
{TARGET_DIRECTORY}/{REPORT_TYPE}_{REPORT_NAME_SUFFIX}_{YYYYMMDD_HHMM}.md
Examples:
./reports/alert_triage_case_1234_20250115_1430.md./reports/ioc_enrichment_198.51.100.10_20250115_0900.md./reports/hunt_summary_APT29_20250115_1200.md
Step 2: Write File
Use the Write tool to save REPORT_CONTENT to the constructed path.
Outputs
| Output | Description |
|---|---|
REPORT_FILE_PATH |
Full path to the saved report file |
WRITE_STATUS |
Success/failure status of the write operation |
Report Template Structure
# [Report Type]: [Subject]
**Generated:** [timestamp]
**Runbook:** [runbook name that generated this]
**Case/Alert ID:** [if applicable]
## Summary
[Brief overview of findings]
## Details
[Detailed findings, enrichment data, etc.]
## Assessment
[Risk assessment, classification]
## Recommendations
[Next steps, actions to take]
## Appendix
[Raw data, tool outputs, diagrams]
Naming Convention
| Report Type | Suffix Example | Full Example |
|---|---|---|
| alert_triage | case_1234 | alert_triage_case_1234_20250115_1430.md |
| ioc_enrichment | evil.com | ioc_enrichment_evil.com_20250115_0900.md |
| hunt_summary | APT29 | hunt_summary_APT29_20250115_1200.md |
Related Skills
Attack Tree Construction
Build comprehensive attack trees to visualize threat paths. Use when mapping attack scenarios, identifying defense gaps, or communicating security risks to stakeholders.
Grafana Dashboards
Create and manage production Grafana dashboards for real-time visualization of system and application metrics. Use when building monitoring dashboards, visualizing metrics, or creating operational observability interfaces.
Matplotlib
Foundational plotting library. Create line plots, scatter, bar, histograms, heatmaps, 3D, subplots, export PNG/PDF/SVG, for scientific visualization and publication figures.
Scientific Visualization
Create publication figures with matplotlib/seaborn/plotly. Multi-panel layouts, error bars, significance markers, colorblind-safe, export PDF/EPS/TIFF, for journal-ready scientific plots.
Seaborn
Statistical visualization. Scatter, box, violin, heatmaps, pair plots, regression, correlation matrices, KDE, faceted plots, for exploratory analysis and publication figures.
Shap
Model interpretability and explainability using SHAP (SHapley Additive exPlanations). Use this skill when explaining machine learning model predictions, computing feature importance, generating SHAP plots (waterfall, beeswarm, bar, scatter, force, heatmap), debugging models, analyzing model bias or fairness, comparing models, or implementing explainable AI. Works with tree-based models (XGBoost, LightGBM, Random Forest), deep learning (TensorFlow, PyTorch), linear models, and any black-box model
Pydeseq2
Differential gene expression analysis (Python DESeq2). Identify DE genes from bulk RNA-seq counts, Wald tests, FDR correction, volcano/MA plots, for RNA-seq analysis.
Query Writing
For writing and executing SQL queries - from simple single-table queries to complex multi-table JOINs and aggregations
Pydeseq2
Differential gene expression analysis (Python DESeq2). Identify DE genes from bulk RNA-seq counts, Wald tests, FDR correction, volcano/MA plots, for RNA-seq analysis.
Scientific Visualization
Meta-skill for publication-ready figures. Use when creating journal submission figures requiring multi-panel layouts, significance annotations, error bars, colorblind-safe palettes, and specific journal formatting (Nature, Science, Cell). Orchestrates matplotlib/seaborn/plotly with publication styles. For quick exploration use seaborn or plotly directly.