← Back to Skills

Php Security

🌐Community
by peixotorms · vlatest · Repository

Identifies and suggests fixes for common PHP vulnerabilities like SQL injection and cross-site scripting.

Install on your platform

We auto-selected Claude Code based on this skill’s supported platforms.

1

Run in terminal (recommended)

terminal
claude mcp add php-security npx -- -y @trustedskills/php-security
2

Or manually add to ~/.claude/settings.json

~/.claude/settings.json
{
  "mcpServers": {
    "php-security": {
      "command": "npx",
      "args": [
        "-y",
        "@trustedskills/php-security"
      ]
    }
  }
}

Requires Claude Code (claude CLI). Run claude --version to verify your install.

About This Skill

What it does

This skill provides PHP security expertise to AI agents. It can analyze PHP code for common vulnerabilities, suggest remediation strategies based on best practices, and help ensure secure coding standards are followed. The agent can leverage this skill to identify potential risks in existing or new PHP applications.

When to use it

  • Code Review: Have the agent review a snippet of PHP code to highlight potential security flaws before deployment.
  • Vulnerability Assessment: Ask the agent to assess an application's architecture for common PHP vulnerabilities like SQL injection or cross-site scripting (XSS).
  • Secure Coding Guidance: Get advice on how to write secure PHP code, especially when dealing with user input and database interactions.
  • Security Audit Support: Assist a security auditor by automatically identifying potential issues in a larger codebase.

Key capabilities

  • Vulnerability identification
  • Remediation suggestions
  • Secure coding standard adherence
  • PHP code analysis

Example prompts

  • "Analyze this PHP code for SQL injection vulnerabilities: [code snippet]"
  • "How can I prevent XSS attacks in my PHP application?"
  • "What are the best practices for handling user input securely in PHP?"

Tips & gotchas

The skill's effectiveness depends on providing clear and complete PHP code snippets. It is not a substitute for comprehensive security testing, but rather a tool to assist developers and auditors.

View Repository →

Tags

🛡️

TrustedSkills Verification

Unlike other registries that point to live repositories, TrustedSkills pins every skill to a verified commit hash. This protects you from malicious updates — what you install today is exactly what was reviewed and verified.

Security Audits

Gen Agent Trust HubPass
SocketPass
SnykPass

Details

Version
vlatest
License
Author
peixotorms
Installs
3
Repository (canonical source) →

🌐 Community

Passed automated security scans.