sc-file-upload
CommunityDetect insecure file uploads and prevent RCE.
Software Engineering#web-security#file-upload#rce#security-testing#server-side-validation#mime-type#insecure-upload
Authorersinkoc
Version1.0.0
Installs0
System Documentation
What problem does it solve?
Insecure file upload implementations allow attackers to upload dangerous files, bypass type checks, or place files in web-accessible locations, enabling remote code execution, stored XSS, or data exfiltration.
Core Features & Use Cases
- Detects missing server-side file type validation and MIME-type mismatches
- Flags unsafe upload destinations, directory permissions, and lack of file-size limits
- Provides actionable remediation guidance for common frameworks (Node.js, PHP, Python, Java)
Quick Start
Run the skill against your codebase to identify insecure file upload endpoints and receive concrete remediation steps.
Dependency Matrix
Required Modules
None requiredComponents
Standard package💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: sc-file-upload Download link: https://github.com/ersinkoc/security-check/archive/main.zip#sc-file-upload Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.