Does it provide instructions on how to fix security issues?

Yes, every finding includes a detailed remediation guide with suggested code changes and best practices to resolve the vulnerability.

When is the best time to trigger a security review?

It is best used during the code review process, before merging features to production, or whenever you are implementing sensitive logic like authentication or database queries.

What vulnerabilities can this skill identify?

The skill can detect a wide range of issues including SQL injection, Cross-Site Scripting (XSS), insecure authentication patterns, and known vulnerabilities in project dependencies.

Can I use this for dependency management?

Absolutely. The skill can scan your project's dependency manifest to identify libraries with known security risks and suggest secure updates.

Security Code Reviewer

Name: Security Code Reviewer
Author: jeremylongshore

byjeremylongshore

•

883

•

セキュリティとテスト

Performs automated security audits to detect vulnerabilities like SQL injection, XSS, and insecure dependencies within your codebase.

This skill empowers Claude to function as a specialized security expert, systematically analyzing code for critical vulnerabilities and architectural flaws. By utilizing the security-agent plugin, it generates comprehensive reports that include severity ratings, precise code locations, impact assessments, and actionable remediation guidance, helping developers proactively harden their applications against potential exploits.

主な機能

01Analyzes application logic for potential security loopholes

02Provides structured security reports with severity ratings

03Identifies SQL injection, XSS, and authentication vulnerabilities

04883 GitHub stars

05Offers specific code-level remediation and best practices

06Scans project dependencies for known security risks (CVEs)

ユースケース

01Conducting a comprehensive security audit before a production release

02Scanning third-party libraries for outdated or vulnerable packages

03Reviewing database interaction code for injection risks

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add jeremylongshore/claude-code-plugins-plus-skills skill-adapter

For use in Claude.ai and ChatGPT

Download Skill