command-injection-anti-pattern
CommunityPrevent OS command injection vulnerabilities.
Authorigbuend
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill helps prevent attackers from executing arbitrary operating system commands by exploiting vulnerabilities in how user input is handled when constructing shell commands.
Core Features & Use Cases
- Detects Vulnerable Code: Identifies instances where user input is directly concatenated into shell commands.
- Provides Secure Alternatives: Offers examples of how to safely execute commands using argument arrays and input validation.
- Use Case: Reviewing code that processes user-provided filenames for a command-line utility to ensure malicious input like
; rm -rf /cannot be executed.
Quick Start
Review the current directory for command injection vulnerabilities.
Dependency Matrix
Required Modules
None requiredComponents
references
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: command-injection-anti-pattern Download link: https://github.com/igbuend/grimbard/archive/main.zip#command-injection-anti-pattern Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 223,000+ vetted skills library on demand.