Skills
.Work. You
Rest

vuln-patterns-path-traversal

Community

Detect path traversal vulnerabilities.

Software Engineering#python#vulnerability detection#path traversal#security auditing#cwe-22#cwe-23
Authoryhy0
Version1.0.0
Installs0

System Documentation

What problem does it solve?

This Skill helps identify and prevent path traversal vulnerabilities (CWE-22/23) in Python code, protecting against unauthorized file access and system compromise.

Core Features & Use Cases

  • Source Identification: Detects user-controlled inputs from various sources like HTTP requests, API parameters, and configuration files.
  • Sink Analysis: Pinpoints dangerous file system operations and path manipulation functions.
  • Sanitization Validation: Verifies the effectiveness of security measures like secure_filename and path containment checks.
  • Use Case: When auditing a web application's file upload feature, this Skill will analyze the code to ensure that user-provided filenames cannot be manipulated to access or write files outside the intended directory.

Quick Start

Analyze the provided Python code for path traversal vulnerabilities.

Dependency Matrix

Required Modules

None required

Components

references

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: vuln-patterns-path-traversal
Download link: https://github.com/yhy0/ghsa-skill-builder/archive/main.zip#vuln-patterns-path-traversal

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 223,000+ vetted skills library on demand.