Does it provide actual code fixes?

Yes, it generates specific remediation patterns based on the programming language and framework used, such as converting string interpolation to parameterized queries for SQL.

Can it help distinguish between true and false positives?

Yes, it analyzes the dataflow path for sanitization logic, framework-level protections, and validation steps to help determine if a security finding is a genuine exploitable threat.

How does CodeQL analysis differ from standard linting?

While linters use pattern matching on single files, this skill uses CodeQL's semantic analysis to track data as it moves across different functions and modules throughout the entire application.

What file format does this skill support?

This skill primarily supports the Static Analysis Results Interchange Format (SARIF), which is the standard output generated by the CodeQL CLI and GitHub Advanced Security.

Which vulnerability types can this skill identify?

It can identify a wide range of CWEs, including SQL injection, command injection, path traversal, XXE, LDAP injection, and sensitive data exposure.

CodeQL Security Analysis

Name: CodeQL Security Analysis
Author: jpoley

byjpoley

•

보안 및 테스팅

Interprets CodeQL SARIF outputs to identify, validate, and remediate complex security vulnerabilities through deep semantic dataflow analysis.

The CodeQL Security Analysis skill empowers Claude Code to perform professional-grade security audits by processing Static Analysis Results Interchange Format (SARIF) data. Unlike basic linting, this skill enables Claude to trace untrusted data from its source through multiple function boundaries to dangerous sinks using semantic analysis. It helps developers distinguish between true positives and false alarms, assesses the severity of findings based on architectural context, and provides language-specific remediation patterns for critical vulnerabilities like SQL injection, path traversal, and command injection, ensuring a more secure and robust codebase.

주요 기능

01Provides context-aware remediation code for various injection attacks

02Interprets SARIF output files from CodeQL CLI

035 GitHub stars

04Traces cross-function dataflow and taint propagation paths

05Maps security findings to CWE standards and vulnerability classes

06Distinguishes true positives from false positives based on sanitization

사용 사례

01Remediating deep-seated SQL injection and path traversal flaws

02Validating security patches against identified dataflow paths

03Automated security auditing of large, complex codebases

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add jpoley/flowspec security-codeql

For use in Claude.ai and ChatGPT

Download Skill