How do I trigger a security review with Claude?

You can explicitly ask Claude for a 'security audit', a 'security-focused code review', or ask it to 'check for vulnerabilities' in a specific file or directory.

Does it suggest how to fix the security issues it finds?

Yes, every report generated by the Security Agent includes specific remediation guidance and best practices to resolve the identified vulnerabilities.

Is the security report easy to read?

The report is highly structured, providing severity levels (Low to Critical), impact assessments, and clear code snippets for easy interpretation.

What types of vulnerabilities can this skill detect?

It identifies common OWASP Top 10 risks including SQL injection, cross-site scripting (XSS), authentication flaws, and insecure dependencies.

Can it scan my project's third-party dependencies?

Yes, the agent can check your project's dependency files against known vulnerability databases to find CVEs and recommend updates.

Security Agent

Name: Security Agent
Author: jeremylongshore

byjeremylongshore

•

883

•

安全与测试

Performs comprehensive security audits to identify vulnerabilities like SQL injection, XSS, and insecure dependencies in your codebase.

The Security Agent skill transforms Claude into an automated security expert capable of performing deep-dive code reviews. By leveraging specialized analysis tools, it detects critical vulnerabilities such as SQL injection, cross-site scripting (XSS), and authentication flaws while also scanning for insecure third-party dependencies. It provides developers with actionable, structured reports including severity levels, specific code locations, and remediation guidance, making it an essential tool for maintaining high security standards throughout the development lifecycle.

主要功能

01Dependency security analysis against CVE databases

02Actionable remediation and patching guidance

03Precise identification of vulnerable code locations

04Structured severity ratings and impact assessments

05883 GitHub stars

06Automated vulnerability scanning for SQLi and XSS

使用场景

01Auditing database queries for potential injection risks

02Scanning project manifests for outdated or vulnerable libraries

03Performing security-focused reviews before merging pull requests

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add jeremylongshore/claude-code-plugins-plus-skills security-agent

For use in Claude.ai and ChatGPT

Download Skill