← Back to Skills

Top 100 Web Vulnerabilities Reference

🌐Community
by zebbern · vlatest · Repository

Quickly access and understand the top 100 web vulnerabilities as defined by zebbern for security assessments.

Install on your platform

We auto-selected Claude Code based on this skill’s supported platforms.

1

Run in terminal (recommended)

terminal
claude mcp add zebbern-top-100-web-vulnerabilities-reference npx -- -y @trustedskills/zebbern-top-100-web-vulnerabilities-reference
2

Or manually add to ~/.claude/settings.json

~/.claude/settings.json
{
  "mcpServers": {
    "zebbern-top-100-web-vulnerabilities-reference": {
      "command": "npx",
      "args": [
        "-y",
        "@trustedskills/zebbern-top-100-web-vulnerabilities-reference"
      ]
    }
  }
}

Requires Claude Code (claude CLI). Run claude --version to verify your install.

About This Skill

The Top 100 Web Vulnerabilities Reference skill provides a curated list of the most critical web security flaws, serving as a comprehensive checklist for developers and security professionals. It enables AI agents to quickly identify common attack vectors and ensure codebases adhere to established security standards.

When to use it

  • During code reviews to verify that new features do not introduce known vulnerabilities like SQL injection or XSS.
  • When generating secure boilerplate code to prevent hardcoding secrets or misconfigured CORS policies.
  • To audit existing applications against industry-standard threat models before deployment.
  • For creating security documentation or training materials for development teams.

Key capabilities

  • Lists the top 100 web vulnerabilities recognized in the industry.
  • Provides descriptions and mitigation strategies for each vulnerability type.
  • Acts as a quick reference guide for identifying risks in web applications.

Example prompts

  • "Check this code snippet against the Top 100 Web Vulnerabilities list and flag any potential issues."
  • "Generate a secure login form that avoids common vulnerabilities like CSRF and session hijacking."
  • "Create a checklist based on the Top 100 Web Vulnerabilities for our upcoming mobile app release."

Tips & gotchas

This skill focuses specifically on web vulnerabilities; ensure you have additional resources for mobile or backend-specific security issues. Regularly update your knowledge base, as new vulnerabilities emerge frequently and may not be included in static lists.

View Repository →

Tags

🛡️

TrustedSkills Verification

Unlike other registries that point to live repositories, TrustedSkills pins every skill to a verified commit hash. This protects you from malicious updates — what you install today is exactly what was reviewed and verified.

Security Audits

Gen Agent Trust HubPass
SocketPass
SnykPass

Details

Version
vlatest
License
Author
zebbern
Installs
34
Repository (canonical source) →

🌐 Community

Passed automated security scans.