Skills

performing-security-testing

Installation
SKILL.md

Security Test Scanner

Overview

Automate security vulnerability detection covering OWASP Top 10 categories including SQL injection, XSS, CSRF, broken authentication, and sensitive data exposure. Combines static analysis (source code scanning with Semgrep, Bandit, ESLint security plugins) with dynamic testing patterns (input fuzzing, header validation, authentication bypass checks).

Prerequisites

  • Static analysis tools installed (Semgrep, ESLint with eslint-plugin-security, Bandit for Python, or SpotBugs for Java)
  • Application running in a test environment (never scan production without explicit authorization)
  • Written authorization to perform security testing on the target system
  • npm audit, pip-audit, or trivy for dependency vulnerability scanning
  • OWASP ZAP or Burp Suite for dynamic application security testing (optional)

Instructions

Installs
1
Repository
jeremylongshore…ins-plus
GitHub Stars
2.2K
First Seen
May 8, 2026
Security Audits
Gen Agent Trust HubFail
SocketPass
SnykFail
performing-security-testing — jeremylongshore/claude-code-plugins-plus