sast-ssti
CommunityDetect SSTI vulnerabilities in codebases.
Authorutkusen
Version1.0.0
Installs0
System Documentation
What problem does it solve?
SSTI (Server-Side Template Injection) vulnerabilities allow attackers to execute code by injecting dynamic template strings into rendering engines. This Skill provides a structured, three-phase workflow to locate, verify, and consolidate SSTI findings across a codebase to prevent remote code execution and data leakage.
Core Features & Use Cases
- Three-phase SSTI assessment: recon to identify dynamic template rendering sites, batched verify to taint-track user input into templates, and merge to produce a consolidated report.
- Architecture-guided scanning: leverages sast/architecture.md to tailor checks to the project's tech stack and rendering patterns.
- Actionable remediation guidance: outputs include clear risk classifications and remediation recommendations in sast/ssti-results.md.
Quick Start
Run the SSTI workflow against your repository to identify dynamic template rendering sites and triage potential SSTI risks.
Dependency Matrix
Required Modules
None requiredComponents
Standard package💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: sast-ssti Download link: https://github.com/utkusen/sast-skills/archive/main.zip#sast-ssti Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.