Skills
.Work. You
Rest

go-vuln-path-traversal

Community

Secure Go file path operations.

Software Engineering#security audit#go#file operations#path traversal#cwe-22#cwe-59
Authoryhy0
Version1.0.0
Installs0

System Documentation

What problem does it solve?

This Skill helps secure Go applications against path traversal and directory traversal vulnerabilities (CWE-22/59) by identifying insecure file path operations and archive extraction.

Core Features & Use Cases

  • Insecure Sink Identification: Detects dangerous functions like os.Open, filepath.Join, and archive extraction routines that handle user-controlled paths.
  • Sanitization Gap Analysis: Verifies if paths are properly cleaned, normalized, and validated against base directories.
  • Use Case: Audit a Go web application's file upload feature to ensure that uploaded archive files cannot be used to traverse directories and read sensitive system files.

Quick Start

Audit the Go code in the current directory for path traversal vulnerabilities.

Dependency Matrix

Required Modules

None required

Components

scriptsreferences

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: go-vuln-path-traversal
Download link: https://github.com/yhy0/ghsa-skill-builder/archive/main.zip#go-vuln-path-traversal

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 223,000+ vetted skills library on demand.