Product

Browse Plugins
Marketplaces

Resources

Learning Center
Claude Code Docs
Plugin Guide
Plugin Reference
Plugin Marketplaces

Community

Browse on GitHub
Get Support

Admin

Admin Panel

Community Maintained•Not affiliated with Anthropic

© 2025 ClaudePluginHub

ClaudePluginHub

ClaudePluginHub

Plugins Marketplaces Learn

openwebf-security-xss-sanitization | openwebf | ClaudePluginHub

Skill

Community

openwebf-security-xss-sanitization

0

Description

Review and mitigate XSS risks in WebF apps (sanitize HTML, validate input, avoid unsafe string rendering). Use when the user mentions XSS, sanitize HTML, innerHTML-like rendering, user-generated HTML, or “untrusted input”.

Tool Access

This skill is limited to using the following tools:

ReadGrepGlobmcp__openwebf__docs_searchmcp__openwebf__docs_get_sectionmcp__openwebf__docs_related

Supporting Assets

doc-queries.md

examples.md

reference.md

Skill Content

OpenWebF Security: XSS & Input Sanitization

Instructions

Identify sources of untrusted input (UGC, remote content, query params).
Look for unsafe HTML string rendering patterns and missing sanitization.
Recommend explicit sanitization and input validation strategies.
Use MCP docs (“Security > Prevent XSS / Sanitize HTML / Validate Input”) to anchor recommendations.
Provide fixes as minimal, concrete suggestions; do not modify files by default.

More:

reference.md
doc-queries.md
examples.md

Links

GitHub Stats

0 forks

Updated 18 hours ago

Links

GitHub Stats

0 forks

Updated 18 hours ago

Related Skills

Skill Development

This skill should be used when the user wants to "create a skill", "add a skill to plugin", "write a new skill", "improve skill description", "organize skill content", or needs guidance on skill structure, progressive disclosure, or skill development best practices for Claude Code plugins.

From plugin-dev

Agent Development

This skill should be used when the user asks to "create an agent", "add an agent", "write a subagent", "agent frontmatter", "when to use description", "agent examples", "agent tools", "agent colors", "autonomous agent", or needs guidance on agent structure, system prompts, triggering conditions, or agent development best practices for Claude Code plugins.

From plugin-dev

Command Development

This skill should be used when the user asks to "create a slash command", "add a command", "write a custom command", "define command arguments", "use command frontmatter", "organize commands", "create command with file references", "interactive command", "use AskUserQuestion in command", or needs guidance on slash command structure, YAML frontmatter fields, dynamic arguments, bash execution in commands, user interaction patterns, or command development best practices for Claude Code.

From plugin-dev