VicKayro / claude-security-audit

Public

Skill Claude Code pour audit de sécurité complet (OWASP Top 10, CWE/CVE, headers, auth, paywall, infra)

69% credibility

Found Feb 26, 2026 at 13 stars 3x -- GitGems finds repos before they trend. Get early access to the next one.

AI Analysis

AI Summary

A user skill for Claude Code that conducts comprehensive security audits on web applications, covering OWASP Top 10 risks and generating detailed reports with severity ratings, scores, and fix recommendations.

How It Works

🔍 Discover the security checker

You hear about this handy tool that lets Claude Code thoroughly check your web project for safety weaknesses.

📥 Add the skill to Claude

Download the skill file and place it in your Claude Code tools folder to make it available.

📂 Open your project

Load up your web app project inside Claude Code where you're already working.

🚀 Start the security audit

Simply tell Claude to run the full security check on your entire project with one easy instruction.

⏳ Let it scan everything

Claude carefully reviews headers, logins, data protection, and more across your whole app.

✅ Get your safety report

Receive a clear report with issue severity, your overall score out of 10, and simple fixes to make everything secure.

Sign up to see the full architecture

4 more

Star Growth

See how this repo grew from 13 to 38 stars Sign Up Free

Repurpose This Repo

Repurpose is a Pro feature

Generate ready-to-use prompts for X threads, LinkedIn posts, blog posts, YouTube scripts, and more -- with full repo context baked in.

Unlock Repurpose

AI-Generated Review

What is claude-security-audit?

This claude code github skill turns Anthropic's Claude Code into a full-stack security auditor for web apps. Run `/security-audit /path/to/project` in Claude Code, and it scans for OWASP Top 10 risks, CWE/CVE issues, HTTP headers, auth flaws, injections, paywalls, and infra weak spots—plus auto-checks npm/pip deps. You get a structured report with severity ratings, line-specific findings, fix code snippets, and a global score out of 10, solving the pain of manual audits in a single command.

Why is it gaining traction?

Unlike static tools like npm audit or Snyk, this claude security audit skill leverages Claude's AI for contextual analysis across 16 audit sections, mapping vulns to OWASP/CWE with tailored fixes—devs notice the speed and depth without setup hassle. The claude code security audit hook is its seamless GitHub skill tree integration: global or project-local install via copy-paste, instant reports in your workflow. Early adopters dig the paywall/billing checks and WebSocket/SSRF coverage you won't find in basic scanners.

Who should use this?

Fullstack devs auditing Node/Python web apps before deploy, indie hackers securing side projects with auth/IDOR checks, or small teams lacking sec specialists needing quick dep scans and header audits. Ideal for claude skill github users evaluating OWASP compliance without hiring pentesters.

Verdict

Grab this skill claude anthropic tool for fast prototypes—11 stars and 0.7% credibility score signal early days, but the crisp README and example report make it dead simple to test. Scale up once it matures beyond solo-maintainer vibes.

(178 words)

Sign up to read the full AI review Sign Up Free

Similar repos coming soon.

Stars

Forks

Followers

Base stars: 38 stars

Penalty: AI uncertain (70%): -90%

Account age: 790 days

Repo age: 4 days

Updated: Mar 02, 2026