php-symfony-audit
CommunitySymfony 安全审计:静态分析配置与访问控制。
Author0xShe
Version1.0.0
Installs0
System Documentation
What problem does it solve?
Symfony 框架特效安全审计工具,针对 Symfony 常见 security.yaml、CSRF、Twig 自动转义与 raw 输出、表达式与访问控制等框架机制进行白盒静态审计,并将风险映射到通用漏洞类型体系(AUTH/CSRF/CFG/XSS/TPL/LOGIC 等)。
Core Features & Use Cases
- 自动识别并验证 Symfony 项目中的安全配置和行为特性
- 将发现映射到统一的漏洞类型编码,便于跨项目对比
- 针对路由/表达式、Twig 输出等关键点提供修复建议与证据链
Quick Start
Analyze the provided Symfony project source_path to produce a framework_audit report in the designated output directory.
Dependency Matrix
Required Modules
None requiredComponents
Standard package💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: php-symfony-audit Download link: https://github.com/0xShe/PHP-Code-Audit-Skill/archive/main.zip#php-symfony-audit Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.