Claude Code OWASP Skill
OWASP security best practices skill covering Top 10:2025, ASVS 5.0, Agentic AI security risks, and 20+ language-specific security quirks. Auto-activates during code review.
- Get automatic OWASP security guidance during every code review
- Apply language-specific security checks for 20+ programming languages
- Ensure code meets ASVS 5.0 verification levels during development
17,000-character skill packing several security cheat sheets into one auto-activating resource. Rated as the top security skill by independent reviewers.
Any developer using Claude Code who wants automatic OWASP security guidance during code review.
https://github.com/agamm/claude-code-owasp
By agamm
How to Get It
Trust Signals Automated Scan
Data & Access
Community Pulse Growing
Discussed on Reddit
- This is what 3k hours in CC looks like — Reddit · 553 pts
- Niemand redet über Sicherheit beim Vibecoding und das ist ein echtes Problem — Reddit · 520 pts
- Built a static auth analyzer for ASP.NET Core — Reddit · 369 pts
9 mentions across 1 sources
Reviewer notes
Automated Scan review. These are observations, not a security certification.
Security guidance skill. MIT license. Well-reviewed by community.
Things to check
- Single maintainer. Consider the risk if this person stops maintaining the project.
How to evaluate tools before deploying →
Data shown here comes from public APIs and automated scanning. Reviewer notes reflect one person's experience. This is not a security certification or legal recommendation. Always evaluate tools according to your own organization's policies.