← Back to Skills

Security Review 3

🌐Community
by zackkorman · vlatest · Repository

Helps with security, code review as part of implementing security and authentication workflows.

Install on your platform

We auto-selected Claude Code based on this skill’s supported platforms.

1

Run in terminal (recommended)

terminal
claude mcp add security-review-3 npx -- -y @trustedskills/security-review-3
2

Or manually add to ~/.claude/settings.json

~/.claude/settings.json
{
  "mcpServers": {
    "security-review-3": {
      "command": "npx",
      "args": [
        "-y",
        "@trustedskills/security-review-3"
      ]
    }
  }
}

Requires Claude Code (claude CLI). Run claude --version to verify your install.

About This Skill

What it does

This skill performs automated security reviews of code. It identifies potential vulnerabilities and weaknesses based on common coding errors and known attack patterns. The review focuses on identifying issues like SQL injection, cross-site scripting (XSS), and other common security flaws to improve overall application security posture.

When to use it

  • Before deployment: Run a quick scan of new code changes before pushing them to production.
  • During code reviews: Integrate into existing code review workflows for an automated initial assessment.
  • For legacy code: Identify potential vulnerabilities in older, less secure codebases.
  • As part of CI/CD pipelines: Automate security checks as part of the continuous integration and delivery process.

Key capabilities

  • Automated vulnerability scanning
  • Identification of SQL injection risks
  • Detection of cross-site scripting (XSS) vulnerabilities
  • Analysis of common coding errors related to security

Example prompts

  • "Review this Python script for potential security vulnerabilities: [paste code]"
  • "Can you perform a security review on my JavaScript application?"
  • "Analyze this PHP file and identify any XSS risks."

Tips & gotchas

The skill's effectiveness depends on the quality of the provided code. Ensure that all relevant code sections are included for a comprehensive review.

View Repository →

Tags

🛡️

TrustedSkills Verification

Unlike other registries that point to live repositories, TrustedSkills pins every skill to a verified commit hash. This protects you from malicious updates — what you install today is exactly what was reviewed and verified.

Security Audits

Gen Agent Trust HubPass
SocketPass
SnykPass

Details

Version
vlatest
License
Author
zackkorman
Installs
10
Repository (canonical source) →

🌐 Community

Passed automated security scans.