Should I use this skill or the specialized sub-skills?

While this umbrella skill is active for backward compatibility, it is recommended to use focused skills like openwebf-security-remote-content for specific tasks.

How does it assist with App Store compliance?

It audits your implementation of remote content and dynamic execution against specific guidelines that impact Apple and Google store policies.

What is the openwebf-security skill?

It is an umbrella skill for Claude Code designed to identify security vulnerabilities and compliance issues in projects using the OpenWebF engine.

Does this skill automatically modify my code?

By default, the skill provides detailed findings and prioritized remediation steps rather than making direct modifications to ensure developer oversight.

What tools does this skill utilize?

It leverages grep, documentation search, and OpenWebF-specific diagnostics like webf:doctor to analyze your codebase context.

OpenWebF Security Suite

Name: OpenWebF Security Suite
Author: archview-ai

byarchview-ai

セキュリティとテスト

Conducts comprehensive security audits for OpenWebF applications focusing on remote content, XSS prevention, and store compliance.

概要

The openwebf-security skill serves as a high-level coordination tool for assessing the security posture of projects built with OpenWebF. While functioning as an umbrella skill for backward compatibility, it is designed to manage cross-cutting reviews that span remote content execution, XSS sanitization, and app store guideline adherence. By leveraging documentation search and codebase diagnostics, it identifies vulnerabilities and provides prioritized remediation strategies to ensure high-performance web-standard apps remain secure and compliant with major platform policies.

主な機能

Comprehensive cross-cutting security audits for OpenWebF apps
Deep integration with OpenWebF technical documentation
App Store and Play Store compliance guideline checks
Automated identification of XSS and content sanitization risks
0 GitHub stars
Intelligent routing to specialized security sub-skills

ユースケース

Verifying mobile store compliance before submitting a build
Auditing untrusted content handling and remote update logic
Performing a preliminary security scan of an OpenWebF codebase

概要

主な機能

Comprehensive cross-cutting security audits for OpenWebF apps
Deep integration with OpenWebF technical documentation
App Store and Play Store compliance guideline checks
Automated identification of XSS and content sanitization risks
0 GitHub stars
Intelligent routing to specialized security sub-skills

ユースケース

Verifying mobile store compliance before submitting a build
Auditing untrusted content handling and remote update logic
Performing a preliminary security scan of an OpenWebF codebase