Skills
.Work. You
Rest

php-wordpress-audit

Community

WordPress security audits you can rely on.

Software Engineering#xss#php#sql#web-security#wordpress#csrf#security-audit
Author0xShe
Version1.0.0
Installs0

System Documentation

What problem does it solve?

WordPress projects frequently rely on ad-hoc security checks, making consistent white-box audits difficult. This skill standardizes the examination of nonce validation, capability gating, admin-ajax actions, output escaping, redirects, uploads, and remote requests, and maps findings to a unified vulnerability taxonomy (AUTH/CSRF/XSS/SQL/CFG/SSRF).

Core Features & Use Cases

  • Nonce validation and capability checks auditing to defend against CSRF and authorization bypass.
  • AJAX action inspection, output escaping, redirects, and remote requests assessment to identify common weaknesses.
  • Produces structured reports mapping findings to standard risk categories for plugins and themes.

Quick Start

Run the WordPress audit on your WordPress project root to generate the framework audit report.

Dependency Matrix

Required Modules

None required

Components

Standard package

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: php-wordpress-audit
Download link: https://github.com/0xShe/PHP-Code-Audit-Skill/archive/main.zip#php-wordpress-audit

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.