Security Vulnerability Scanner
VerifiedSecurity Vulnerability Scanner — database management tool. Supports SQL, XSS.
$ Add to .claude/skills/ About This Skill
Content available in Chinese
# Security Vulnerability Scanner
扫描代码中的安全漏洞,提供修复建议。
功能
- SQL 注入检测
- XSS 跨站脚本检测
- 硬编码密码/密钥检测
- 不安全随机数检测
- 命令注入检测
- 敏感信息泄露检测
- 安全评分
触发词
- "安全扫描"
- "漏洞检测"
- "security scan"
- "vulnerability"
检测模式
```javascript const patterns = { sqlInjection: /query\s*\(\s*['"`].*\$\{/, xss: /innerHTML\s*=|document\.write/, hardcodedSecret: /password\s*=\s*['"][^'"]+['"]/, insecureRandom: /Math\.random\(\)/, commandInjection: /exec\s*\(\s*\$\{/ }; ```
输出示例
```json { "vulnerabilities": [ { "type": "sql_injection", "line": 42, "severity": "high", "message": "检测到SQL注入风险" } ], "score": 65 } ```
Use Cases
- Scan code for security vulnerabilities including SQL injection, XSS, and hardcoded secrets
- Review source code for insecure patterns and suggest remediation
- Generate security audit reports organized by severity level for team review
- Identify and prioritize security risks before production deployment
Pros & Cons
Pros
- +Solid adoption with 551+ downloads
- +Security verified with no dangerous patterns detected in content analysis
- +Clean CLI interface integrates well with automation pipelines and AI agents
- +Handles database operations with proper safety patterns
Cons
- -Database-specific features limit portability across different database engines
- -Requires proper database credentials and network access
FAQ
What does Security Vulnerability Scanner do?
What platforms support Security Vulnerability Scanner?
What are the use cases for Security Vulnerability Scanner?
100+ free AI tools
Writing, PDF, image, and developer tools — all in your browser.
Next Step
Use the skill detail page to evaluate fit and install steps. For a direct browser workflow, move into a focused tool route instead of staying in broader support surfaces.