Which security headers does this skill analyze?

The skill checks for all critical HTTP security headers, including Content Security Policy (CSP), HTTP Strict Transport Security (HSTS), X-Content-Type-Options, and X-Frame-Options.

How do I trigger a security audit with Claude?

You can trigger the skill by asking Claude to 'analyze security headers', 'check HTTP security', or 'scan for vulnerabilities' followed by a domain or URL.

Does this skill provide a security score?

Yes, the skill generates a detailed report that includes a specific security grade and a numerical score based on the quality of your header configuration.

Can this skill fix my headers automatically?

While it doesn't modify your server configuration directly, it provides specific code recommendations and best practices that you can apply to your server or application code.

Security Headers Analyzer

Name: Security Headers Analyzer
Author: jeremylongshore

byjeremylongshore

•

884

•

安全与测试

Analyzes HTTP security headers to identify vulnerabilities and provides actionable remediation recommendations for website hardening.

The Security Headers Analyzer skill empowers Claude to perform automated security audits by inspecting the HTTP headers of any domain or URL. By evaluating headers against industry best practices, the skill identifies missing or misconfigured protections such as HSTS, Content Security Policy, and X-Frame-Options. It delivers a comprehensive report that includes a security grade, a numerical score, and specific implementation advice to help developers mitigate risks like Cross-Site Scripting (XSS) and protocol downgrade attacks.

主要功能

01Comprehensive HTTP header vulnerability scanning

02Actionable remediation and implementation guidance

03Integration with domain-specific security workflows

04Automated security grading and numerical scoring

05Detection of missing HSTS and CSP configurations

06884 GitHub stars

使用场景

01Ensuring compliance with modern web security best practices

02Auditing the security posture of a production website

03Identifying header misconfigurations during the deployment phase

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add jeremylongshore/claude-code-plugins-plus-skills skill-adapter

For use in Claude.ai and ChatGPT

Download Skill