>_
Marketplace

remediation-library

Index of security remediation skills. Routes to specialized skills for injection, cryptography, authentication, and configuration vulnerabilities.

$ Installer

git clone https://github.com/Zate/cc-plugins /tmp/cc-plugins && cp -r /tmp/cc-plugins/plugins/security/skills/remediation-library ~/.claude/skills/cc-plugins

// tip: Run this command in your terminal to install the skill

SKILL.md
View on GitHub →

name: remediation-library description: Index of security remediation skills. Routes to specialized skills for injection, cryptography, authentication, and configuration vulnerabilities.

Remediation Library

This skill is an index to modular remediation guides. Use the specialized skills below for focused remediation guidance.

When to Use This Skill

  • Finding the right remediation skill - Use this index to route to the appropriate specialized skill
  • Overview of available fixes - Quick reference of what's available

When NOT to Use This Skill

  • Detecting vulnerabilities - Use vulnerability-patterns skill
  • Specific remediation - Use the specialized skills directly (faster)

Specialized Remediation Skills

remediation-injection

Covers: SQL Injection, Command Injection, XSS CWEs: CWE-89, CWE-78, CWE-79 Use when: Fixing injection vulnerabilities, code review feedback

remediation-crypto

Covers: Weak Cryptography, Insecure Randomness, TLS Issues CWEs: CWE-327, CWE-330, CWE-295 Use when: Fixing crypto vulnerabilities, upgrading algorithms

remediation-auth

Covers: Hardcoded Credentials, JWT Security, Deserialization, Access Control CWEs: CWE-798, CWE-347, CWE-502, CWE-862 Use when: Fixing auth issues, secrets management, authorization

remediation-config

Covers: Path Traversal, Debug Mode, Security Headers CWEs: CWE-22, CWE-489, CWE-693 Use when: Fixing deployment issues, hardening configuration

Quick Routing Guide

Vulnerability TypeSkill to Use
SQL Injectionremediation-injection
Command Injectionremediation-injection
XSSremediation-injection
Weak hashing (MD5/SHA1)remediation-crypto
Insecure randomnessremediation-crypto
TLS disabledremediation-crypto
Hardcoded secretsremediation-auth
JWT issuesremediation-auth
Unsafe deserializationremediation-auth
Missing access controlremediation-auth
Path traversalremediation-config
Debug in productionremediation-config
Missing headersremediation-config

OWASP Mapping

OWASP 2021Primary Skill
A01 Broken Access Controlremediation-auth
A02 Cryptographic Failuresremediation-crypto
A03 Injectionremediation-injection
A04 Insecure DesignMultiple
A05 Security Misconfigurationremediation-config
A06 Vulnerable ComponentsN/A
A07 Auth Failuresremediation-auth
A08 Data Integrity Failuresremediation-auth
A09 Logging Failuresremediation-config
A10 SSRFremediation-injection

See Also

  • vulnerability-patterns - Detection patterns
  • asvs-requirements - ASVS compliance mapping
  • audit-report - Report formatting

Repository

Zate
Zate
Author
Zate/cc-plugins/plugins/security/skills/remediation-library
1
Stars
0
Forks
Updated2d ago
Added1w ago

Actions

View on GitHubDownload ZIPReport Issue

Related Skills

skill-writer
pytorch/pytorch
95.4k
add-uint-support
pytorch/pytorch
95.4k
skill-creator
openai/codex
54.7k
Command Development
anthropics/claude-code
47.9k
Plugin Structure
anthropics/claude-code
47.9k