What tools are required to run this skill?

It requires the owasp-compliance-checker plugin and access to security scanning tools installed in the local environment, with appropriate permissions for security analysis operations.

Can this skill automatically fix security vulnerabilities?

The skill provides detailed remediation recommendations and code examples. It can be used in conjunction with Claude's code editing tools to apply these fixes systematically.

Which OWASP standard does this skill support?

This skill specifically assesses adherence to the OWASP Top 10 (2021) security guidelines, covering the most critical web application security risks.

How do I trigger a security scan?

You can initiate a scan using natural language triggers like 'check OWASP compliance' or 'audit web security', as well as the '/owasp' command for an overall assessment.

OWASP Security Compliance Checker

Name: OWASP Security Compliance Checker
Author: BbgnsurfTech

byBbgnsurfTech

•

セキュリティとテスト

Performs comprehensive security audits by scanning codebases for OWASP Top 10 vulnerabilities and providing actionable remediation guidance.

概要

The OWASP Compliance Checker skill empowers Claude to evaluate your project's adherence to the OWASP Top 10 (2021) security guidelines. It automates the detection of critical vulnerabilities—such as SQL injection, broken access control, and sensitive data exposure—by scanning your codebase using specialized security tools and grep patterns. Beyond just identifying risks, the skill generates detailed reports that prioritize findings by severity and provide specific code-level remediation steps, helping developers maintain a high security posture throughout the development lifecycle.

主な機能

3 GitHub stars
Automated scanning for OWASP Top 10 (2021) vulnerabilities
Detailed compliance report generation for stakeholders
Prioritized vulnerability lists based on severity and impact
Actionable remediation guidance with code examples
Deep integration with system-level security scanning and audit tools

ユースケース

Identifying and fixing specific vulnerabilities like SQL injection or Cross-Site Scripting (XSS)
Performing a comprehensive web security audit before a major production release
Generating automated compliance reports for internal security reviews and audits

概要

主な機能

3 GitHub stars
Automated scanning for OWASP Top 10 (2021) vulnerabilities
Detailed compliance report generation for stakeholders
Prioritized vulnerability lists based on severity and impact
Actionable remediation guidance with code examples
Deep integration with system-level security scanning and audit tools

ユースケース

Identifying and fixing specific vulnerabilities like SQL injection or Cross-Site Scripting (XSS)
Performing a comprehensive web security audit before a major production release
Generating automated compliance reports for internal security reviews and audits