What is log injection and can this skill help?

Log injection occurs when unsanitized user input is written to logs, potentially allowing log forgery. This skill identifies these patterns so you can implement proper neutralization.

Is this skill compliant with OWASP standards?

Yes, it is mapped directly to the OWASP Top 10 2021 category A09: Security Logging and Monitoring Failures.

Can it find passwords or API keys in my logs?

Yes, the skill specifically greps for log statements and checks if sensitive variables like passwords, tokens, or PII are being interpolated into the output.

Does it support specific logging frameworks?

The skill is framework-agnostic, using semantic code analysis and tools like Semgrep to detect patterns across Python, JavaScript, Java, and other common languages.

How does this skill detect missing logs?

It analyzes security-critical code paths, such as authentication and authorization modules, to ensure every successful or failed event triggers a corresponding audit log entry.

AppSec Logging Auditor

Name: AppSec Logging Auditor
Author: florianbuetow

byflorianbuetow

•

安全与测试

Analyzes source code to identify security logging failures, sensitive data exposure in logs, and improper monitoring configurations.

The AppSec Logging skill automates the auditing of application logging and monitoring systems against the OWASP Top 10 A09:2021 standard. It scans codebases for missing audit trails in critical authentication flows, detects sensitive information like passwords or PII being leaked into log files, and identifies vulnerabilities such as log injection. By combining automated scanner integration with deep semantic analysis, it helps developers ensure their applications provide the necessary visibility for incident response while maintaining high levels of accountability and data privacy.

主要功能

01Audits error handling blocks to prevent silent exception swallowing

026 GitHub stars

03Detects missing audit logs for authentication and access control events

04Verifies centralized logging and remote alerting configurations

05Identifies sensitive data exposure like PII and credentials in log statements

06Flags potential log injection vulnerabilities (CWE-117) from unsanitized input

使用场景

01Reviewing authentication flows to ensure sufficient audit trailing for compliance

02Performing a security audit to comply with OWASP A09:2021 standards

03Automating the detection of PII or credentials leaked into application logs

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add florianbuetow/claude-code logging

For use in Claude.ai and ChatGPT

Download Skill