Does it provide remediation steps?

Yes, the scanner generates a detailed report that includes a prioritized list of issues and specific code recommendations to fix the identified vulnerabilities.

How do I trigger an input validation scan?

You can trigger the skill by asking Claude to 'scan input validation' or 'check for injection vulnerabilities' within your specific codebase or file directory.

What files can this skill analyze?

The skill can analyze any source code within your project directory, including frontend templates, backend API logic, and database configuration files.

Is it suitable for compliance auditing?

Absolutely. It helps developers ensure compliance with security standards like OWASP and CWE by identifying gaps in input handling and data sanitization.

Can it detect both XSS and SQL injection?

Yes, the skill is designed to identify various injection risks, including Cross-Site Scripting (XSS) in frontend code and SQL injection in database access layers.

Input Validation Scanner

Name: Input Validation Scanner
Author: jeremylongshore

byjeremylongshore

•

983

セキュリティとテスト

Scans codebases for input validation vulnerabilities and injection risks to ensure robust application security.

概要

The Input Validation Scanner is a specialized security tool for Claude Code that automates the detection of input-related vulnerabilities such as Cross-Site Scripting (XSS) and SQL injection. By analyzing how user-provided data flows through an application, it identifies missing sanitization, improper parameterization, and insufficient validation patterns. It is particularly useful during code reviews, security audits, or when hardening legacy systems, providing developers with actionable reports and remediation steps to strengthen their application's security posture against common web exploits.

主な機能

Identification of missing or weak input sanitization
983 GitHub stars
Contextual analysis of user-supplied data handling
Detailed security reports with specific vulnerability locations
Automated detection of XSS and SQL injection risks
Actionable remediation recommendations with code examples

ユースケース

Reviewing frontend modules for potential XSS vulnerabilities
Auditing a database access layer for SQL injection flaws
Hardening API endpoints against malicious input payloads

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add jeremylongshore/claude-code-plugins-plus-skills scanning-input-validation-practices

For use in Claude.ai and ChatGPT

Download Skill

GitHub

概要