Can this skill be automated in a DevOps workflow?

Absolutely. It can be integrated with other plugins to trigger security tests automatically as part of a CI/CD pipeline or whenever code changes are made.

What types of vulnerabilities does this skill scan for?

The skill scans for a wide range of issues including the OWASP Top 10, SQL injection, Cross-Site Scripting (XSS), CSRF, and flaws in authentication or authorization.

Can I use this skill to test my API endpoints?

Yes, the skill is designed to perform security assessments on both web applications and API endpoints specifically.

Does it provide instructions on how to fix the found vulnerabilities?

Yes, the skill generates a comprehensive report that details each vulnerability, assigns a severity rating, and provides remediation steps to fix the issue.

Automated Security Vulnerability Scanner

Name: Automated Security Vulnerability Scanner
Author: BbgnsurfTech

byBbgnsurfTech

•

보안 및 테스팅

Automates security vulnerability testing for applications and APIs to identify OWASP Top 10 risks and critical software flaws.

소개

The Automated Security Vulnerability Scanner skill empowers Claude to perform deep-dive security audits and penetration tests directly within the development environment. By leveraging the security-test-scanner plugin, it systematically evaluates applications for common vulnerabilities like SQL injection, Cross-Site Scripting (XSS), and CSRF, providing developers with detailed reports that include severity ratings and actionable remediation guidance. This skill is essential for shifting security left, allowing teams to identify and patch critical authentication and authorization flaws before they reach production.

주요 기능

Targeted detection for SQL injection and XSS flaws
Authentication and authorization security assessment
Comprehensive report generation with remediation steps
Automated OWASP Top 10 vulnerability scanning
3 GitHub stars
CI/CD pipeline integration for automated testing

사용 사례

Testing web application forms for potential injection and CSRF vulnerabilities
Performing a security audit on a new API endpoint before deployment
Validating the robustness of authentication and authorization logic

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add bbgnsurftech/claude-skills-collection skill-adapter

For use in Claude.ai and ChatGPT

Download Skill

GitHub

소개