Which programming languages and databases does it support?

The skill focuses on common code-level patterns that lead to SQLi, making it effective for most languages that interact with SQL-based databases.

Does this skill fix the security flaws automatically?

It provides detailed remediation reports and code suggestions, such as implementing parameterized queries, which you can then review and apply to your codebase.

How does this skill identify SQL injection vulnerabilities?

It uses the sql-injection-detector plugin to analyze code patterns, tracking how user input flows into database queries to find unsanitized data vectors.

When should I use the SQL Injection Detector?

Use it during security audits, when reviewing pull requests, or whenever you are working with database-connected code to ensure best security practices.

SQL Injection Detector

Name: SQL Injection Detector
Author: jeremylongshore

byjeremylongshore

•

884

Security & Testing

Detects and remediates SQL injection vulnerabilities by analyzing code patterns, input vectors, and query contexts to ensure database security.

About

The SQL Injection Detector skill empowers Claude to proactively audit codebases for one of the most common and damaging web security threats. By leveraging specialized plugin analysis, it identifies high-risk areas where unsanitized user input might interact with database queries, categorizes findings by severity, and offers actionable remediation advice. This skill is indispensable for developers performing security reviews, securing legacy applications, or validating new code changes against modern security standards like parameterized queries and input validation.

Key Features

884 GitHub stars
Comprehensive codebase scanning for SQL injection flaws
Actionable remediation guidance and code refactoring suggestions
Automated identification of risky input vectors and query patterns
Vulnerability categorization based on severity levels
Proactive security auditing for web application codebases

Use Cases

Auditing a web application for hidden SQL injection vulnerabilities
Learning best practices for preventing SQLi through guided remediation
Reviewing code changes to prevent the introduction of security risks

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add jeremylongshore/claude-code-plugins-plus-skills sql-injection-detector

For use in Claude.ai and ChatGPT

Download Skill

GitHub