Does it check for dependency issues?

Yes, it provides guidance on running dependency audits and identifying known vulnerabilities in common npm packages like lodash or axios.

What is the Security Review Claude Code skill?

It is a specialized capability for Claude that enables detailed security analysis of JavaScript and Node.js code, focusing on identifying and fixing vulnerabilities like those in the OWASP Top 10.

Can it detect hardcoded API keys?

Yes, the skill includes a secrets audit feature that scans for sensitive data like API keys, tokens, and credentials in source code and logs.

How does it handle database security?

The skill identifies SQL and NoSQL injection vulnerabilities and provides remediation patterns for parameterized queries and ORM sanitization.

Security Review for Node.js

Name: Security Review for Node.js
Author: chavangorakh1999

bychavangorakh1999

0•

Security & Testing

Conducts systematic security audits of JavaScript and Node.js codebases based on OWASP Top 10 standards.

This skill empowers Claude to perform deep security analysis on JavaScript and Node.js applications, specifically targeting the OWASP Top 10 vulnerabilities. It identifies critical flaws like SQL injection, broken authentication, and sensitive data exposure while providing actionable remediation steps and secure code patterns. Whether you are hardening a legacy service or reviewing new pull requests, this skill ensures your code follows industry-standard security best practices, including dependency scanning and secure header configuration.

Key Features

01OWASP Top 10 vulnerability detection for JS/Node.js

02Automated secrets and PII exposure auditing

03Authentication and JWT security verification

04Dependency vulnerability analysis and remediation

05Secure configuration for CORS, HSTS, and Helmet

060 GitHub stars

Use Cases

01Migrating legacy code to modern secure coding patterns

02Reviewing pull requests for security-sensitive logic

03Hardening Node.js APIs before production deployment

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add chavangorakh1999/sde-skills security-review

For use in Claude.ai and ChatGPT

Key Features

01OWASP Top 10 vulnerability detection for JS/Node.js

02Automated secrets and PII exposure auditing

03Authentication and JWT security verification

04Dependency vulnerability analysis and remediation

05Secure configuration for CORS, HSTS, and Helmet

060 GitHub stars

Use Cases

01Migrating legacy code to modern secure coding patterns

02Reviewing pull requests for security-sensitive logic

03Hardening Node.js APIs before production deployment

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add chavangorakh1999/sde-skills security-review

For use in Claude.ai and ChatGPT