Skills
.Work. You
Rest

php-xss-audit

Community

Find and fix XSS in PHP apps from source.

Software Engineering#security#xss#php#audit#input-validation#code-audit#output-escaping
Author0xShe
Version1.0.0
Installs0

System Documentation

What problem does it solve?

PHP applications commonly mishandle user input, allowing XSS when unsafely echoed or interpolated into HTML, attributes, JS, or URLs. This skill analyzes PHP source to identify input-to-output paths that bypass proper escaping and documents the risk with actionable remediation guidance.

Core Features & Use Cases

  • Context-aware XSS detection across PHP code paths (HTML, attributes, JS, URL)
  • Escape analysis and evidence-driven remediation recommendations
  • PoC generation guidelines and fix suggestions for safe production deployment
  • Threat modeling and traceable reporting aligned with evidence contracts

Quick Start

Analyze a PHP project to locate XSS-prone input-output paths and produce a structured report with context-aware escapes.

Dependency Matrix

Required Modules

None required

Components

Standard package

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: php-xss-audit
Download link: https://github.com/0xShe/PHP-Code-Audit-Skill/archive/main.zip#php-xss-audit

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.