php-auth-audit
CommunityAudit PHP auth logic, secure your routes.
Authoryunmengya
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill addresses the critical need to identify and fix vulnerabilities in authentication and authorization mechanisms within PHP applications, preventing unauthorized access and data breaches.
Core Features & Use Cases
- Route Enumeration: Identifies all application routes and potential entry points for authentication checks.
- Auth Mechanism Detection: Recognizes various authentication patterns like middleware, guards, sessions, and tokens.
- Authorization Logic Analysis: Scans controller and service layers for resource ownership checks (e.g., user_id, tenant_id).
- Vulnerability Identification: Flags routes with missing authentication or potential authorization bypasses.
- Structured Reporting: Generates detailed reports on identified issues, mapping, and evidence.
- Use Case: A security auditor uses this Skill to quickly assess a new PHP project's authentication system, ensuring that only authorized users can access sensitive data and perform specific actions.
Quick Start
Use the php-auth-audit skill to audit the authentication logic for the provided PHP project.
Dependency Matrix
Required Modules
None requiredComponents
references
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: php-auth-audit Download link: https://github.com/yunmengya/PHP_AUDIT_SKILLS/archive/main.zip#php-auth-audit Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 223,000+ vetted skills library on demand.