Stats
Actions
Tags
From sentinel
Analyzes HTTP security headers for a given URL with context-aware grading on exploitable risks, WHY explanations, and exact fix commands. Ideal for web security reviews.
How this skill is triggered — by the user, by Claude, or both
Slash command
/sentinel:headersThe summary Claude sees in its skill listing — used to decide when to auto-load this skill
Analyze HTTP security headers for a given URL. Grades based on actual exploitable risk rather than checkbox compliance. Provides WHY explanations and exact fix commands.
Analyze HTTP security headers for a given URL. Grades based on actual exploitable risk rather than checkbox compliance. Provides WHY explanations and exact fix commands.
Load each step through the fetch command (handles caching, decryption, and auth):
"~/.composure/bin/composure-fetch.mjs" skill sentinel headers {step-filename}
Do NOT read cache files directly — they are encrypted at rest. Always use the fetch command above.
| # | File |
|---|---|
| 1 | 01-fetch-headers.md |
| 2 | 02-analyze-headers.md |
| 3 | 03-overall-grade.md |
| 4 | 04-report.md |
npx claudepluginhub hrconsultnj/claude-plugins --plugin sentinelAnalyzes HTTP/HTTPS security headers for vulnerabilities, misconfigurations, OWASP compliance, cookie issues, and info leaks. Assigns grades and suggests Nginx/Apache/Cloudflare fixes.
Validates HTTP security headers in web app responses, identifies issues like missing CSP or HSTS, rates posture, checks OWASP compliance, and suggests fixes for XSS, clickjacking, and MIME sniffing.
Audits HTTP security headers including CSP, HSTS, X-Frame-Options, and Cookie attributes using curl scripts and tools like SecurityHeaders.com to identify missing or misconfigured web protections.