injection-security-review
CommunityRigorous code-injection security reviews
Authorluansilvadb
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This skill provides a structured, repeatable process to identify and analyze code-level injection vulnerabilities across languages and frameworks, enabling teams to uncover risky data flows from untrusted inputs to dangerous sinks before they are exploited.
Core Features & Use Cases
- Systematic ingestion of code and data flows to map sources, sinks, and paths where untrusted input can reach sensitive operations.
- Taxonomy-driven assessment of injection vectors (SQL, NoSQL, XSS, command, SSTI, LDAP, path traversal, etc.) with guidance on effective mitigations.
- Proactive remediation workflows including proof-of-concept generation, severity classification, and tailored fix recommendations for PR reviews and security sprints.
Quick Start
Analyze a sample repository to identify all source-to-sink flows that could enable injection and produce a remediation-focused report
Dependency Matrix
Required Modules
None requiredComponents
Standard package💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: injection-security-review Download link: https://github.com/luansilvadb/agoravai/archive/main.zip#injection-security-review Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.