How does this skill detect vulnerabilities?

It uses the input-validation-scanner plugin to analyze data flow from user inputs to sensitive sinks like database queries or HTML rendering to find missing sanitization.

Can it fix the security issues automatically?

While the skill focuses on scanning and identification, you can instruct Claude to use its editing tools to apply the recommended sanitization and validation fixes.

Is it suitable for professional security audits?

Yes, it is designed to streamline security posture assessments and help developers adhere to best practices like those found in the OWASP Top 10.

Which specific vulnerabilities can it find?

It focuses on input-related flaws including Cross-Site Scripting (XSS), SQL Injection, and Command Injection.

Input Validation Scanner

Name: Input Validation Scanner
Author: jeremylongshore

byjeremylongshore

•

884

•

보안 및 테스팅

Identifies and reports potential security vulnerabilities by scanning source code for unsanitized user inputs and injection risks.

The Input Validation Scanner skill empowers Claude to proactively secure your codebase by detecting common injection vulnerabilities like SQLi, XSS, and command injection. It analyzes how user-supplied data flows through your application, pinpointing areas where sanitization is missing or insufficient. Ideal for security audits and automated code reviews, this skill helps developers harden their applications against external threats and ensure compliance with secure coding standards before deployment.

주요 기능

01884 GitHub stars

02Support for hardening legacy and new application code

03Automated detection of XSS and SQL injection vulnerabilities

04Integration with standard security audit workflows

05Contextual analysis of user-supplied data handling

06Detailed reporting of vulnerability locations in source code

사용 사례

01Reviewing new pull requests for input sanitization compliance

02Auditing a legacy codebase for hidden security flaws

03Hardening web application endpoints against malicious payloads

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add jeremylongshore/claude-code-plugins-plus-skills input-validation-scanner

For use in Claude.ai and ChatGPT

Download Skill

주요 기능

01884 GitHub stars

02Support for hardening legacy and new application code

03Automated detection of XSS and SQL injection vulnerabilities

04Integration with standard security audit workflows

05Contextual analysis of user-supplied data handling

06Detailed reporting of vulnerability locations in source code

사용 사례

01Reviewing new pull requests for input sanitization compliance

02Auditing a legacy codebase for hidden security flaws

03Hardening web application endpoints against malicious payloads

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add jeremylongshore/claude-code-plugins-plus-skills input-validation-scanner

For use in Claude.ai and ChatGPT

Download Skill