OWASPセキュリティベストプラクティス(2025-2026)のClaude Codeスキル。Top10、ASVS 5.0、AIエージェントセキュリティ対応。
A Claude Code skill providing the latest OWASP security best practices (2025-2026) for developers building secure applications.
Add this skill to any project with a single command:
curl -sL https://raw.githubusercontent.com/agam/claude-code-owasp/main/.claude/skills/owasp-security/SKILL.md -o .claude/skills/owasp-security/SKILL.md --create-dirs
Or install globally for all projects:
curl -sL https://raw.githubusercontent.com/agam/claude-code-owasp/main/.claude/skills/owasp-security/SKILL.md -o ~/.claude/skills/owasp-security/SKILL.md --create-dirs
Location: .claude/skills/owasp-security/SKILL.md
Location: OWASP-2025-2026-Report.md
Comprehensive documentation covering all OWASP 2025-2026 standards.
Once installed, Claude Code automatically activates this skill when you:
"Review this code for security issues"
"Is this authentication implementation secure?"
"What are the security risks in this Python code?"
"Help me implement secure session management"
"Check this AI agent for OWASP agentic risks"
| Standard | Version | Focus |
|---|---|---|
| OWASP Top 10 | 2025 | Web application vulnerabilities |
| OWASP ASVS | 5.0.0 | Security verification requirements |
| OWASP Agentic | 2026 | AI agent security risks |
Security quirks for 20+ languages including:
| Web | Systems | Mobile | Scripting |
|---|---|---|---|
| JavaScript/TypeScript | C/C++ | Swift | Python |
| PHP | Rust | Kotlin | Ruby |
| Java | Go | Dart | Perl |
| C# | Shell |
Each language section includes common vulnerabilities, unsafe/safe code patterns, and key functions to watch for.
git clone https://github.com/agamm/claude-code-owasp.git
cp -r claude-code-owasp/.claude/skills/owasp-security YOUR_PROJECT/.claude/skills/
Contributions welcome! Please:
MIT License - See LICENSE file for details.
Keywords: OWASP, security, Claude Code, AI security, application security, ASVS, secure coding, vulnerability, injection, XSS, CSRF, authentication, authorization
トピック