input-validation-checker

Community

Catch missing input validation flaws before they ship.

Authorrobotijn
Version1.0.0
Installs0

System Documentation

What problem does it solve?

This Skill eliminates the risk of critical security vulnerabilities caused by untrusted user inputs crossing trust boundaries without proper validation, which is the root cause of injection attacks, mass assignment, denial of service, and file upload RCE flaws.

Core Features & Use Cases

  • Cross-Channel Input Auditing: Scans all input sources including HTTP bodies, query parameters, headers, file uploads, WebSocket frames, message queues, and environment variables across 7 supported programming languages.
  • 2026 Best Practice Enforcement: Validates adherence to allowlist-first schemas, fail-closed validation, Unicode normalization, and schema-driven validation rules.
  • Compliance-Ready Reporting: Maps all findings to OWASP Top 10 and CWE identifiers, with clear remediation guidance and integration with SAST tools for corroboration. Use case: For a fintech web app, it flags unvalidated payment request bodies that could allow mass assignment of transaction amounts.

Quick Start

Use the input-validation-checker skill to audit all API endpoints in your current project for missing input validation and generate a prioritized security report.

Dependency Matrix

Required Modules

None required

Components

Standard package

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: input-validation-checker
Download link: https://github.com/robotijn/ctoc/archive/main.zip#input-validation-checker

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 536,000+ vetted skills library on demand.