content-security-scan
关于
The content-security-scan skill automatically checks external markdown or text content from GitHub or the web against a 7-step security gate, returning a PASS/FAIL result. It's designed for developers to safely vet third-party content before integration, preventing risks like prompt injection or data exfiltration. Use it as a mandatory security checkpoint in workflows that fetch external code, documentation, or agent skills.
快速安装
Claude Code
推荐npx skills add oimiragieo/agent-studio -a claude-code/plugin add https://github.com/oimiragieo/agent-studiogit clone https://github.com/oimiragieo/agent-studio.git ~/.claude/skills/content-security-scan在 Claude Code 中复制并粘贴此命令以安装该技能
GitHub 仓库
Frequently asked questions
What is the content-security-scan skill?
content-security-scan is a Claude Skill by oimiragieo. Skills package instructions and resources that Claude loads on demand, so Claude can perform content-security-scan-related tasks without extra prompting.
How do I install content-security-scan?
Use the install commands on this page: add content-security-scan to Claude Code as a plugin, or clone its repository into your skills directory, then restart Claude so it picks up the skill.
What category does content-security-scan belong to?
content-security-scan is in the Security category, tagged security, supply-chain, content-scanning, prompt-injection, exfiltration and external-content.
Is content-security-scan free to use?
Yes. content-security-scan is listed on AIMCP and free to install. It runs inside Claude, so no separate service account is required to use the skill itself.
相关推荐技能
该Skill为FastAPI REST API提供JWT身份验证解决方案,适用于需要用户认证和访问控制的API端点保护。它支持基于角色的访问控制(RBAC),并能确保用户只能访问自己的资源。开发者可通过此技能快速实现无状态的身份验证机制,适用于微服务架构中需要安全令牌验证的场景。
这个Skill为FastAPI REST API提供JWT身份验证解决方案,适用于需要用户认证和资源访问控制的场景。它支持基于角色的访问控制(RBAC)和用户专属资源保护,实现无状态的身份验证机制。开发者可通过该Skill快速为API端点添加标准JWT令牌验证,确保用户只能访问自己的数据。
moai-security-auth 为开发者提供了实现现代身份验证模式的专家指导,特别适用于需要集成MFA、FIDO2、WebAuthn和Passkeys的Web应用。它涵盖了从密码认证到无密码登录、OAuth 2.1集成到安全会话管理的完整方案,并支持NextAuth.js和Passport.js等主流框架。开发者可以借助此Skill快速为Next.js或Express.js应用构建企业级、安全的身份验证系统。
Content Collections 是一个 TypeScript 优先的构建工具,可将本地 Markdown/MDX 文件转换为类型安全的数据集合。它专为构建博客、文档站和内容密集型 Vite+React 应用而设计,提供基于 Zod 的自动模式验证。该工具涵盖从 Vite 插件配置、MDX 编译到生产环境部署的完整工作流。
