Skills
.Work. You
Rest

CodeQL Security Baseline

Community

Enhance code security with automated vulnerability checks.

Software Engineering#security#vulnerability#CSRF#ASP.NET#code auditing#log sanitation
Authorjguadagno
Version1.0.0
Installs0

System Documentation

What problem does it solve?

This Skill helps developers prevent security vulnerabilities related to CSRF and log injection in their ASP.NET projects.

Core Features & Use Cases

  • CSRF Prevention: Ensures [HttpPost] methods have [ValidateAntiForgeryToken] and API controllers use [IgnoreAntiforgeryToken], safeguarding web forms from cross-site request forgery attacks.
  • Log Injection Prevention: Promotes sanitizing user-controlled log inputs with LogSanitizer.Sanitize() to avoid log forging and injection vulnerabilities.
  • Use Case: A development team audits ASP.NET controllers for security compliance, sanitizes log entries before logging, and enforces anti-forgery tokens on web POST actions.

Quick Start

Review your ASP.NET controllers and add [ValidateAntiForgeryToken] to POST actions, and use LogSanitizer.Sanitize() for logging user inputs to improve security.

Dependency Matrix

Required Modules

None required

Components

references

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: CodeQL Security Baseline
Download link: https://github.com/jguadagno/jjgnet-broadcast/archive/main.zip#codeql-security-baseline

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.