sast-pathtraversal
CommunityDetect path traversal vulnerabilities across codebases.
Software Engineering#security#vulnerability#sast#code-analysis#path-traversal#archive-extraction#taint-tracing
Authorutkusen
Version1.0.0
Installs0
System Documentation
What problem does it solve?
Path traversal vulnerabilities occur when user-controlled input influences filesystem paths used for reading, writing, or serving files, potentially exposing sensitive data or code. This skill helps teams detect such patterns by tracing dynamic path usage across common sinks and archival operations in codebases.
Core Features & Use Cases
- Three-phase approach (recon, batched verify, merge) to locate, validate, and consolidate traversal findings across languages and frameworks.
- Outputs to sast/pathtraversal-results.md providing a structured report with actionable remediation guidance.
- Prerequisites: sast/architecture.md must exist; run the analysis skill first to supply the architectural context.
Quick Start
Run the path traversal assessment on your codebase to produce a consolidated findings report at sast/pathtraversal-results.md
Dependency Matrix
Required Modules
None requiredComponents
Standard package💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: sast-pathtraversal Download link: https://github.com/utkusen/sast-skills/archive/main.zip#sast-pathtraversal Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.