Search everything...

Stats

Actions

Available In

chief-wiggum

Name: chief-wiggum
Author: ant4g0nist

By ant4g0nist

Launch iterative vulnerability hunts on target code paths using YAML profiles with explore and deep-dive phases up to max iterations. Generate vuln candidates liberally, assess exploitability, and manage workflows via start, resume, cancel, review findings, restore archives, and status checks.

npx claudepluginhub ant4g0nist/chiefwiggum --plugin chief-wiggum

Popularity

Stars

Top 25%

Med: 0·Avg: 285

Installs

Med: 0·Avg: 1

What's Inside

Slash Commands7

Cancel Hunt

/cancel-hunt

Cancel an active vulnerability hunt (preserves data)

Chief Wiggum Vulnerability Hunter - Help

/hunt-help

Show help for Chief Wiggum vulnerability hunter

Hunt Status

/hunt-status

Show current vulnerability hunt status and progress

Restore Archived Hunt

/restore-hunt

Restore an archived vulnerability hunt

Resume Hunt

/resume-hunt

Resume an interrupted vulnerability hunt

Agents1

Chief Wiggum Vulnerability Hunter — Subagent Instructions

/vuln-hunter

You are an autonomous vulnerability hunter running as a background subagent. You have your own context window — use it fully. You will be given a profile, target, state file path, and data directory.

Hooks1

Event Hooks

3 hooks across 3 events

Stats

Version1.1.0

LanguageShell

Stars9

Forks1

MaintenanceFair

LicenseMIT

Last CommitFeb 20, 2026

AddedMar 21, 2026

Actions

View on GitHub View README Plugin Marketplace JSON

Own this plugin?

Verify ownership to unlock analytics, metadata editing, and a verified badge. GitHub access is read-only (username + org membership).

Available In

chief-wiggum-marketplace8

Safety Signals

Caution

Uses power tools

Uses Bash, Write, or Edit tools

README

Chief Wiggum

A Claude Code plugin for iterative vulnerability hunting. Uses a Ralph Wiggum-style self-referential loop with four-phase methodology: map the attack surface, explore for patterns, deep-dive into candidates, and scrutinize with PoC generation.

Built on Ralph Wiggum's self-referential loop pattern.

Install

From GitHub (marketplace)

# In Claude Code:
/plugin marketplace add ant4g0nist/ChiefWiggum
/plugin install chief-wiggum@ant4g0nist-ChiefWiggum

Local development

claude --plugin-dir /path/to/ChiefWiggum/plugins/chief-wiggum

Quick Start

# Start a vulnerability hunt
/chief-wiggum:vuln-hunt --profile ./profiles/chrome-sandbox-escape.yaml \
                        --target /path/to/chromium/src \
                        --max-iterations 50

# Team mode (parallel agents)
CLAUDE_CODE_EXPERIMENTAL_AGENT_TEAMS=1 \
/chief-wiggum:vuln-hunt --profile ./profiles/chrome-sandbox-escape.yaml \
                        --target /path/to/chromium/src \
                        --team 3

Commands

Command	Description
`/chief-wiggum:vuln-hunt`	Start a vulnerability hunt
`/chief-wiggum:hunt-status`	Show status of active hunts
`/chief-wiggum:resume-hunt`	Resume an interrupted hunt
`/chief-wiggum:review-hunt`	Review findings and candidates
`/chief-wiggum:cancel-hunt`	Stop a hunt (preserves data)
`/chief-wiggum:restore-hunt`	Restore an archived hunt
`/chief-wiggum:hunt-help`	Show detailed help

How It Works

CONTEXT-BUILD ──> EXPLORE ──> DEEP-DIVE ──> SCRUTINIZE ──> (loop)
     |                                           |
     |        Filesystem memory persists         |
     |     candidates/ findings/ rejected/       |
     └───────────────────────────────────────────┘

CONTEXT-BUILD — Map codebase, identify attack surfaces, create hunt plan
EXPLORE — Pick highest-priority area, search for vulnerability patterns
DEEP-DIVE — Validate candidates with guided questions and code evidence
SCRUTINIZE — Devil's advocate analysis, PoC generation, vulnerability reports

The stop hook keeps the loop running across iterations. State is persisted to disk so hunts survive session restarts.

Profiles

Profiles define what to hunt for. A sample is included at plugins/chief-wiggum/profiles/chrome-sandbox-escape.yaml.

name: "My Hunt"
description: "What vulnerabilities to look for..."
language: "rust"

scope:
  include_paths: ["src/**/*"]
  exclude_paths: ["tests/**/*"]
  focus_keywords: ["unsafe", "transmute"]

constraints:
  - "REJECT: False positive pattern"
  - "REQUIRE: Must be reachable from attack surface"

checklist:
  - "Is input validated?"
  - "Are bounds checked?"

Tests

./tests/run-hook-tests.sh

Runs the hook test suite (requires jq).

License

MIT

chief-wiggum

Popularity

What's Inside

Confidence

README

Chief Wiggum

Install

From GitHub (marketplace)

Local development

Quick Start

Commands

How It Works

Profiles

Tests

License

Similar Plugins

llm-council-plugin

caveman

ui-design

self-improving-agent

Chief Wiggum

Install

From GitHub (marketplace)

Local development

Quick Start

Commands

How It Works

Profiles

Tests

License

Popularity

Health & Quality

Similar Plugins

llm-council-plugin

caveman

ui-design

self-improving-agent