Agent skill
openwebf-security-xss-sanitization
Review and mitigate XSS risks in WebF apps (sanitize HTML, validate input, avoid unsafe string rendering). Use when the user mentions XSS, sanitize HTML, innerHTML-like rendering, user-generated HTML, or “untrusted input”.
Stars
163
Forks
31
Install this agent skill to your Project
npx add-skill https://github.com/majiayu000/claude-skill-registry/tree/main/skills/data/openwebf-security-xss-sanitization
SKILL.md
OpenWebF Security: XSS & Input Sanitization
Instructions
- Identify sources of untrusted input (UGC, remote content, query params).
- Look for unsafe HTML string rendering patterns and missing sanitization.
- Recommend explicit sanitization and input validation strategies.
- Use MCP docs (“Security > Prevent XSS / Sanitize HTML / Validate Input”) to anchor recommendations.
- Provide fixes as minimal, concrete suggestions; do not modify files by default.
More:
Didn't find tool you were looking for?