Execute this skill enables AI assistant to automatically scan for xss (cross-site scripting) vulnerabilities in code. it is triggered when the user requests to "scan for xss vulnerabilities", "check for xss", or uses the command "/xss". the skill identifies ref... Use when appropriate context detected. Trigger with relevant phrases based on skill purpose.
5.8
Rating
0
Installs
Security
Category
This XSS vulnerability scanning skill provides a solid foundation with clear activation triggers, workflow overview, and practical examples. The description adequately explains what the skill does and when to use it. Task knowledge is reasonable, with references to detection techniques (reflected, stored, DOM-based XSS), payload injection, and WAF bypass testing supported by Python scripts in the scripts/ directory. Structure is acceptable though SKILL.md could better reference the specific scripts (xss_scan.py, waf_bypass.py, report_generator.py) to clarify implementation details. Novelty is moderate—while XSS scanning is valuable, CLI tools like OWASP ZAP and XSStrike already exist, though integrating this capability into an AI assistant workflow does add convenience. The skill would benefit from more explicit linkage between the high-level workflow and the referenced scripts, and clearer specification of input parameters and output formats.
jeremylongshore
Skill Author
Loading SKILL.md…
