Is the security report format standardized?

Yes, it provides a structured output including severity ratings, finding locations, OWASP categories, and specific remediation code examples.

What security topics are covered?

The skill covers a wide range of critical topics including SQL/NoSQL Injection, XSS, CSRF, Authentication failures, Broken Access Control, and SSRF.

How does this skill identify vulnerabilities?

It analyzes your code patterns and maps them to OWASP Top 10 categories, then cross-references the official OWASP Cheat Sheet Series to provide accurate identification and remediation advice.

Does it require internet access?

Yes, network access is required for the initial setup to clone the OWASP Cheat Sheet repository to your local environment.

OWASP Security Review

Name: OWASP Security Review
Author: ayuzaka

byayuzaka

0•

セキュリティとテスト

Conducts comprehensive code security audits and provides remediation guidance based on the OWASP Cheat Sheet Series.

The OWASP Security Review skill empowers developers to integrate industry-standard security practices directly into their Claude Code workflow. By leveraging the extensive OWASP Cheat Sheet Series, it identifies vulnerabilities like SQL injection, XSS, and broken access control while providing specific, actionable remediation recommendations. This skill is essential for performing proactive security auditing, researching secure implementation patterns, and ensuring that your codebase adheres to the OWASP Top 10 security standards through an automated, reference-based workflow.

主な機能

01Automated vulnerability identification based on OWASP Top 10 categories

02Integration with the official OWASP Cheat Sheet Series repository

03Standardized security reporting with severity levels and finding locations

040 GitHub stars

05Context-aware security remediation with specific code examples

06Comprehensive checklists for injection, authentication, and access control

ユースケース

01Performing pre-commit security audits on new feature implementations

02Researching industry-standard best practices for secure authentication and session management

03Validating legacy codebases against modern security standards to identify technical debt

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add ayuzaka/agent-plugins owasp-security-review

For use in Claude.ai and ChatGPT

Download Skill