Toolverse
All skills
Security

checking-owasp-compliance

by jeremylongshore

This skill uses the owasp-compliance-checker plugin to automatically identify potential security vulnerabilities based on the OWASP Top 10 (2021) list. It helps ensure your application adheres to industry-standard security practices by providing a detailed analysis of compliance

Installation

Pick a client and clone the repository into its skills directory.

Installation

Quick info

Author
jeremylongshore
Category
Security
Views
3
GitHub repo

About this skill

This skill uses the owasp-compliance-checker plugin to automatically identify potential security vulnerabilities based on the OWASP Top 10 (2021) list. It helps ensure your application adheres to industry-standard security practices by providing a detailed analysis of compliance gaps and offering remediation guidance. Use this skill when you need to audit your code for OWASP compliance, identify and fix vulnerabilities, or generate a compliance report. Trigger this skill by asking to \

How to use

  1. Zainstaluj umiejętność w swoim środowisku Claude'a, dodając skill checking-owasp-compliance do konfiguracji agenta.

  2. Przygotuj kod lub projekt, który chcesz przeskanować pod kątem zgodności z OWASP. Upewnij się, że Claude ma dostęp do plików źródłowych.

  3. Poproś Claude'a o skanowanie, używając jednej z poleceń: "Sprawdź zgodność OWASP", "Skanuj podatności OWASP" lub skrótu /owasp. Możesz też wskazać konkretną kategorię, np. "Sprawdź podatności SQL injection".

  4. Claude aktywuje wtyczkę owasp-compliance-checker, która przeskanuje bazę kodu w poszukiwaniu potencjalnych luk bezpieczeństwa w każdej kategorii OWASP Top 10.

  5. Przeanalizuj wygenerowany raport, który zawiera listę znalezionych luk, ich lokalizację w kodzie i szczegółowe wskazówki do naprawy każdego problemu.

  6. Zastosuj rekomendacje naprawcze w swoim kodzie i ponownie uruchom skanowanie, aby potwierdzić, że luki zostały usunięte.

Related skills

youtube-watcher

by openclaw

Fetch and read transcripts from YouTube videos. Use when you need to summarize a video, answer questions about its content, or extract information from it.

Security
2231

academic-researcher

by Shubhamsaboo

Academic research assistant for literature reviews, paper analysis, and scholarly writing.\nUse when: reviewing academic papers, conducting literature reviews, writing research summaries,\nanalyzing methodologies, formatting citations, or when user mentions academic research,

Security
1260

1password

by openclaw

Set up and use 1Password CLI (op). Use when installing the CLI, enabling desktop app integration, signing in (single or multi-account), or reading/injecting/running secrets via op.

Security
1174

solidity-security

by wshobson

Master smart contract security best practices to prevent common vulnerabilities and implement secure Solidity patterns. Use when writing smart contracts, auditing existing contracts, or implementing security measures for blockchain applications.

Security
10105

obsidian

by gapmiss

Comprehensive guidelines for Obsidian.md plugin development including all 27 ESLint rules, TypeScript best practices, memory management, API usage (requestUrl vs fetch), UI/UX standards, and submission requirements. Use when working with Obsidian plugins, main.ts files,

Security
14111

qmd

by tobi

Search personal markdown knowledge bases, notes, meeting transcripts, and documentation using QMD - a local hybrid search engine. Combines BM25 keyword search, vector semantic search, and LLM re-ranking. Use when users ask to search notes, find documents, look up information in

Security
1951