Can I use this for real-time code reviews?

Yes, you can ask Claude to check specific code changes or pull requests for SQL injection risks during development.

Is this skill limited to specific database types?

It analyzes code-level patterns common across most SQL-based databases to detect generic SQL injection risks regardless of the specific engine.

How does Claude detect SQL injection?

It uses the sql-injection-detector plugin to analyze code patterns, input vectors, and query contexts to identify potential security flaws.

Does it categorize the severity of found vulnerabilities?

Yes, the plugin identifies potential issues and categorizes them by severity to help you prioritize critical security fixes.

What kind of remediation advice does this skill provide?

It suggests specific fixes like using parameterized queries, prepared statements, and input sanitization techniques.

SQL Injection Detector

Name: SQL Injection Detector
Author: jeremylongshore

byjeremylongshore

•

883

•

Security & Testing

Identifies and remediates SQL injection vulnerabilities by analyzing code patterns and input vectors to ensure database security.

The SQL Injection Detector skill empowers Claude to proactively secure applications by scanning source code for potential SQLi vulnerabilities using the sql-injection-detector plugin. It performs deep analysis of input vectors and query contexts, providing developers with detailed reports that categorize risks by severity and offer actionable remediation guidance, such as implementing parameterized queries or robust input validation. This tool is essential for security audits, reviewing new code changes, and maintaining the integrity of database-driven applications during the development lifecycle.

Key Features

01Severity-based vulnerability categorization

02In-depth code pattern and input vector analysis

03Seamless integration with security audit workflows

04883 GitHub stars

05Automated SQLi vulnerability scanning

06Actionable remediation and patching guidance

Use Cases

01Auditing an existing codebase for hidden SQL injection flaws

02Learning best practices for preventing SQLi through interactive analysis

03Reviewing pull requests for security risks before deployment

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add jeremylongshore/claude-code-plugins-plus-skills skill-adapter

For use in Claude.ai and ChatGPT

Download Skill