How does it handle cryptographic issues?

It routes to a dedicated crypto module that provides guidance on fixing weak hashing, insecure randomness, and TLS configuration issues.

What is the Remediation Library skill used for?

It serves as a central index that directs Claude to use specialized skills for fixing specific security vulnerabilities like injection, crypto, or auth failures.

Does it support OWASP standards?

Yes, it provides a direct mapping to the OWASP Top 10 (2021) categories to ensure compliance with industry-standard security practices.

Can this skill find vulnerabilities in my code?

No, this skill is designed for remediation (fixing). To detect vulnerabilities, you should use the 'vulnerability-patterns' skill.

What types of injection vulnerabilities does it cover?

Through its specialized modules, it covers SQL Injection, Command Injection, and Cross-Site Scripting (XSS).

Security Remediation Library

Name: Security Remediation Library
Author: Zate

byZate

安全与测试

Provides a centralized index of security remediation guides to help developers fix injection, cryptography, authentication, and configuration vulnerabilities.

关于

The Security Remediation Library skill acts as a comprehensive routing hub for addressing software vulnerabilities using Claude. It connects developers to specialized modules for fixing critical issues such as SQL injection, weak cryptographic algorithms, broken access control, and insecure configurations. By mapping common vulnerabilities to CWE and OWASP 2021 standards, this skill ensures that remediation efforts are aligned with industry best practices, making it an essential tool for secure code development and compliance-driven patching.

主要功能

Centralized routing to specialized security remediation modules
Guided fixes for SQL injection, XSS, and command injection
Standardized remediation patterns for cryptographic and TLS failures
Comprehensive mapping to OWASP Top 10 and CWE categories
Security hardening for authentication, secrets management, and JWT
0 GitHub stars

使用场景

Identifying the correct remediation strategy for an identified security bug
Implementing secure code fixes for complex authentication and configuration issues
Mapping discovered vulnerabilities to formal CWE and OWASP standards

关于

主要功能

Centralized routing to specialized security remediation modules
Guided fixes for SQL injection, XSS, and command injection
Standardized remediation patterns for cryptographic and TLS failures
Comprehensive mapping to OWASP Top 10 and CWE categories
Security hardening for authentication, secrets management, and JWT
0 GitHub stars

使用场景

Identifying the correct remediation strategy for an identified security bug
Implementing secure code fixes for complex authentication and configuration issues
Mapping discovered vulnerabilities to formal CWE and OWASP standards