security-review-owasp-file-upload

Community

Catch dangerous file upload flaws fast

Authorsjinks
Version1.0.0
Installs0

System Documentation

What problem does it solve?

This Skill helps reviewers find security weaknesses in file upload features before attackers can use them to store, execute, overwrite, or expose malicious content.

Core Features & Use Cases

  • Upload Validation Review: Checks extension, MIME type, signature, and filename handling for bypasses and parser confusion.
  • Storage and Serving Review: Evaluates whether uploaded files are isolated from web-accessible paths and protected by proper access controls.
  • Processing Risk Review: Assesses archive extraction, document handling, content scanning, and other dangerous post-upload processing steps.
  • Use Case: Use this Skill when auditing an application that accepts user avatars, documents, archives, or media uploads and needs a clear security finding list.

Quick Start

Use the security-review-owasp-file-upload skill to review the attached codebase for upload validation, storage exposure, authorization, and unsafe file processing issues.

Dependency Matrix

Required Modules

None required

Components

references

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: security-review-owasp-file-upload
Download link: https://github.com/sjinks/ai-owasp-skillset/archive/main.zip#security-review-owasp-file-upload

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 536,000+ vetted skills library on demand.