前端XSS漏洞扫描器 - React/Vue/Angular/JavaScript代码安全检测工具
frontend-mobile-security-xss-scan by sickn33/antigravity-awesome-skills
安装命令
npx skills add https://github.com/sickn33/antigravity-awesome-skills --skill frontend-mobile-security-xss-scan🇨🇳中文介绍
前端代码 XSS 漏洞扫描器
您是一位专注于跨站脚本(XSS)漏洞检测与预防的前端安全专家。分析 React、Vue、Angular 和原生 JavaScript 代码,以识别注入点、不安全的 DOM 操作以及不当的净化处理。
在以下情况下使用此技能
- 处理前端代码 XSS 漏洞扫描器相关任务或工作流时
- 需要关于前端代码 XSS 漏洞扫描器的指导、最佳实践或检查清单时
在以下情况下请勿使用此技能
- 任务与前端代码 XSS 漏洞扫描器无关时
- 您需要此范围之外的不同领域或工具时
背景
用户需要对客户端代码进行全面的 XSS 漏洞扫描,识别危险模式,如不安全的 HTML 操作、URL 处理问题以及不当的用户输入渲染。重点关注上下文感知检测和特定于框架的安全模式。
需求
$ARGUMENTS
使用说明
1. XSS 漏洞检测
使用静态分析扫描代码库中的 XSS 漏洞:
interface XSSFinding {
file: string;
line: number;
severity: 'critical' | 'high' | 'medium' | 'low';
type: string;
vulnerable_code: string;
description: string;
fix: string;
cwe: string;
}
class XSSScanner {
private vulnerablePatterns = [
'innerHTML', 'outerHTML', 'document.write',
'insertAdjacentHTML', 'location.href', 'window.open'
];
async scanDirectory(path: string): Promise<XSSFinding[]> {
const files = await this.findJavaScriptFiles(path);
const findings: XSSFinding[] = [];
for (const file of files) {
const content = await fs.readFile(file, 'utf-8');
findings.push(...this.scanFile(file, content));
}
return findings;
}
scanFile(filePath: string, content: string): XSSFinding[] {
const findings: XSSFinding[] = [];
findings.push(...this.detectHTMLManipulation(filePath, content));
findings.push(...this.detectReactVulnerabilities(filePath, content));
findings.push(...this.detectURLVulnerabilities(filePath, content));
findings.push(...this.detectEventHandlerIssues(filePath, content));
return findings;
}
detectHTMLManipulation(file: string, content: string): XSSFinding[] {
const findings: XSSFinding[] = [];
const lines = content.split('\n');
lines.forEach((line, index) => {
if (line.includes('innerHTML') && this.hasUserInput(line)) {
findings.push({
file,
line: index + 1,
severity: 'critical',
type: 'Unsafe HTML manipulation',
vulnerable_code: line.trim(),
description: 'User-controlled data in HTML manipulation creates XSS risk',
fix: 'Use textContent for plain text or sanitize with DOMPurify library',
cwe: 'CWE-79'
});
}
});
return findings;
}
detectReactVulnerabilities(file: string, content: string): XSSFinding[] {
const findings: XSSFinding[] = [];
const lines = content.split('\n');
lines.forEach((line, index) => {
if (line.includes('dangerously') && !this.hasSanitization(content)) {
findings.push({
file,
line: index + 1,
severity: 'high',
type: 'React unsafe HTML rendering',
vulnerable_code: line.trim(),
description: 'Unsanitized HTML in React component creates XSS vulnerability',
fix: 'Apply DOMPurify.sanitize() before rendering or use safe alternatives',
cwe: 'CWE-79'
});
}
});
return findings;
}
detectURLVulnerabilities(file: string, content: string): XSSFinding[] {
const findings: XSSFinding[] = [];
const lines = content.split('\n');
lines.forEach((line, index) => {
if (line.includes('location.') && this.hasUserInput(line)) {
findings.push({
file,
line: index + 1,
severity: 'high',
type: 'URL injection',
vulnerable_code: line.trim(),
description: 'User input in URL assignment can execute malicious code',
fix: 'Validate URLs and enforce http/https protocols only',
cwe: 'CWE-79'
});
}
});
return findings;
}
hasUserInput(line: string): boolean {
const indicators = ['props', 'state', 'params', 'query', 'input', 'formData'];
return indicators.some(indicator => line.includes(indicator));
}
hasSanitization(content: string): boolean {
return content.includes('DOMPurify') || content.includes('sanitize');
}
}
广告位招租
在这里展示您的产品或服务
触达数万 AI 开发者,精准高效
