When should I trigger this skill?

Trigger it whenever you need a security assessment, such as after significant code changes, before a release, or when testing new endpoints.

Can I integrate this with my deployment workflow?

Yes, this skill can be integrated with other plugins to automatically trigger security tests as part of a CI/CD pipeline.

What types of vulnerabilities can this skill detect?

It detects a wide range of issues including the OWASP Top 10, SQL injection, XSS, CSRF, and flaws in authentication or authorization.

Can I use this for API testing?

Yes, the skill is specifically designed to perform deep security assessments on both web applications and RESTful APIs.

Does it provide remediation advice?

Yes, every scan generates a comprehensive report that includes vulnerability descriptions, severity levels, and specific remediation steps.

Security Test Scanner

Name: Security Test Scanner
Author: jeremylongshore

byjeremylongshore

•

884

보안 및 테스팅

Automates comprehensive security vulnerability testing for applications and APIs to identify OWASP Top 10 flaws and injection risks.

소개

The Security Test Scanner skill empowers Claude to perform automated security assessments and penetration tests directly within your development environment. By leveraging a specialized scanning plugin, it identifies critical vulnerabilities such as SQL injection, Cross-Site Scripting (XSS), and Cross-Site Request Forgery (CSRF), providing detailed reports with severity ratings and remediation guidance. This skill is ideal for developers and security engineers who need to perform ad-hoc audits on specific endpoints or integrate security-first practices into their application lifecycle.

주요 기능

Automated OWASP Top 10 vulnerability scanning
Detection of SQL injection, XSS, and CSRF flaws
Assessment of authentication and authorization security
Detailed reporting with severity ratings and remediation steps
Targeted testing for specific API endpoints and modules
884 GitHub stars

사용 사례

Performing a security audit of a REST API before production deployment
Testing specific web forms and inputs for injection vulnerabilities
Integrating automated security scans into CI/CD pipelines via plugin triggers

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add jeremylongshore/claude-code-plugins-plus-skills security-test-scanner

For use in Claude.ai and ChatGPT

Download Skill

GitHub

소개