openwebf-security-xss-sanitization

star 0

Review and mitigate XSS risks in WebF apps (sanitize HTML, validate input, avoid unsafe string rendering). Use when the user mentions XSS, sanitize HTML, innerHTML-like rendering, user-generated HTML, or “untrusted input”.

archview-ai By archview-ai schedule Updated 12/19/2025
play_arrow Run Skill in Manus View GitHub

name: openwebf-security-xss-sanitization description: Review and mitigate XSS risks in WebF apps (sanitize HTML, validate input, avoid unsafe string rendering). Use when the user mentions XSS, sanitize HTML, innerHTML-like rendering, user-generated HTML, or “untrusted input”. allowed-tools: Read, Grep, Glob, mcp__openwebf__docs_search, mcp__openwebf__docs_get_section, mcp__openwebf__docs_related

OpenWebF Security: XSS & Input Sanitization

Instructions

  1. Identify sources of untrusted input (UGC, remote content, query params).
  2. Look for unsafe HTML string rendering patterns and missing sanitization.
  3. Recommend explicit sanitization and input validation strategies.
  4. Use MCP docs (“Security > Prevent XSS / Sanitize HTML / Validate Input”) to anchor recommendations.
  5. Provide fixes as minimal, concrete suggestions; do not modify files by default.

More:

Install via CLI
npx skills add https://github.com/archview-ai/webf-plugin --skill openwebf-security-xss-sanitization
Repository Details
star Stars 0
call_split Forks 0
navigation Branch main
article Path SKILL.md
More from Creator
archview-ai
archview-ai Explore all skills →