Does it provide remediation advice for discovered vulnerabilities?

Yes, the skill generates reports that include prioritized issues and specific code examples to help you remediate security gaps.

What types of access control can this skill audit?

This skill can audit cloud IAM policies (AWS/GCP/Azure), network Access Control Lists (ACLs), and application-specific authorization configurations.

Can it help with regulatory compliance checks?

Absolutely. It checks your configurations against major standards such as OWASP, GDPR, HIPAA, and PCI-DSS to identify compliance gaps.

How do I trigger an access control audit in Claude?

You can trigger the skill by using phrases like 'audit access control', 'check permissions', or 'validate authorization' within your Claude Code session.

Access Control Auditor

Name: Access Control Auditor
Author: jeremylongshore

byjeremylongshore

•

983

安全与测试

Audits authorization logic, IAM policies, and access control lists to identify security vulnerabilities and misconfigurations.

关于

The Access Control Auditor skill empowers developers and security engineers to automate the complex task of auditing access control systems across various environments, including cloud IAM, network ACLs, and application-level permissions. By analyzing configurations against security best practices and compliance frameworks like OWASP or GDPR, it identifies overly permissive access, potential privilege escalation paths, and non-compliant policies. This skill streamlines security reviews by generating detailed findings and providing prioritized remediation guidance with actionable code examples to harden your infrastructure.

主要功能

Compliance mapping against industry standards like OWASP, GDPR, and PCI-DSS
983 GitHub stars
Automated IAM policy analysis for AWS, GCP, and Azure environments
Generation of detailed security reports with prioritized remediation steps
Network Access Control List (ACL) vulnerability and risk detection
Identification of privilege escalation paths and overly permissive roles

使用场景

Auditing application-level authorization logic for broken access control vulnerabilities
Reviewing cloud IAM roles to enforce the principle of least privilege
Validating network security group configurations to prevent unauthorized access

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add jeremylongshore/claude-code-plugins-plus-skills auditing-access-control

For use in Claude.ai and ChatGPT

Download Skill

GitHub

关于