analyzing-security-headers | security-headers-analyzer | ClaudePluginHub

Skill

Community

analyzing-security-headers

From security-headers-analyzer

927

Description

Analyze HTTP security headers of web domains to identify vulnerabilities and misconfigurations. Use when you need to audit website security headers, assess header compliance, or get security recommendations for web applications. Trigger with phrases like "analyze security headers", "check HTTP headers", "audit website security headers", or "evaluate CSP and HSTS configuration".

AI Summary

Fetches and evaluates HTTP security headers for web domains to identify vulnerabilities and misconfigurations. Used when auditing website security, checking header compliance, or assessing CSP and HSTS configurations.

Install

1

Add the repository(one-time)

$

/plugin marketplace add jeremylongshore/claude-code-plugins-plus-skills

2

Install the plugin

$

/plugin install security-headers-analyzer@claude-code-plugins-plus

Tool Access

This skill is limited to using the following tools:

ReadWebFetchWebSearchGrep

Supporting Assets

View in Repository

assets/README.md

references/README.md

references/errors.md

references/examples.md

references/implementation.md

scripts/README.md

scripts/analyze_headers.py

scripts/generate_report.py

Skill Content

Analyzing Security Headers

Overview

This skill provides automated assistance for the described functionality.

Prerequisites

Before using this skill, ensure:

Target URL or domain name is accessible
Network connectivity for HTTP requests
Permission to scan the target domain
Optional: Save results to {baseDir}/security-reports/

Instructions

Collect the target URL/domain and environment context (CDN/proxy, redirects).
Fetch response headers (HTTP/HTTPS) and capture redirects/cookies.
Compare headers to recommended baselines and score gaps.
Provide concrete remediation steps and verify fixes.

See {baseDir}/references/implementation.md for detailed implementation guide.

Output

The skill produces:

Primary Output: Security headers analysis report

Report Structure:

# Security Headers Analysis - example.com

## Error Handling

See `{baseDir}/references/errors.md` for comprehensive error handling.

## Examples

See `{baseDir}/references/examples.md` for detailed examples.

## Resources

- OWASP Secure Headers Project: https://owasp.org/www-project-secure-headers/
- MDN Security Headers Guide: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers#security
- Security Headers Scanner: https://securityheaders.com/
- CSP Reference: https://content-security-policy.com/
- HSTS Preload: https://hstspreload.org/

Links

GitHub Stats

113 forks

Updated 4 days ago

Similar Skills

gitops-workflow

Implement GitOps workflows with ArgoCD and Flux for automated, declarative Kubernetes deployments with continuous reconciliation. Use when implementing GitOps practices, automating Kubernetes deployments, or setting up declarative infrastructure management.

kubernetes-operations

24.8k

helm-chart-scaffolding

Design, organize, and manage Helm charts for templating and packaging Kubernetes applications with reusable configurations. Use when creating Helm charts, packaging Kubernetes applications, or implementing templated deployments.

kubernetes-operations

24.8k

k8s-manifest-generator

Create production-ready Kubernetes manifests for Deployments, Services, ConfigMaps, and Secrets following best practices and security standards. Use when generating Kubernetes YAML manifests, creating K8s resources, or implementing production-grade Kubernetes configurations.

kubernetes-operations

24.8k