Xss Scanner
Skill by lxgicstudios
Install via CLI (Recommended)
clawhub install openclaw/skills/skills/lxgicstudios/xss-scannerXSS Scanner
Detect cross-site scripting vulnerabilities in your frontend code before they ship.
Quick Start
npx ai-xss-check
What It Does
- Scans JavaScript/TypeScript for XSS vulnerabilities
- Detects unsafe innerHTML, eval, and DOM manipulation
- Identifies unescaped user input in templates
- Checks React dangerouslySetInnerHTML usage
- Provides fix suggestions for each finding
Usage
# Scan current directory
npx ai-xss-check
# Scan specific files
npx ai-xss-check ./src/components
When to Use
- Before security audits
- Reviewing third-party code
- Setting up CI security gates
- Training junior devs on XSS prevention
Part of the LXGIC Dev Toolkit
One of 110+ free developer tools from LXGIC Studios. No paywalls, no sign-ups.
Find more:
- GitHub: https://github.com/lxgic-studios
- Twitter: https://x.com/lxgicstudios
- Substack: https://lxgicstudios.substack.com
- Website: https://lxgicstudios.com
License
MIT. Free forever.
Metadata
Not sure this is the right skill?
Describe what you want to build — we'll match you to the best skill from 16,000+ options.
Find the right skillPaste this into your clawhub.json to enable this plugin.
{
"plugins": {
"official-lxgicstudios-xss-scanner": {
"enabled": true,
"auto_update": true
}
}
}Related Skills
script-gen
Generate package.json scripts with AI. Use when setting up npm scripts.
email-template-gen
Generate responsive email templates. Use when building transactional emails.
branch-namer
Generate descriptive git branch names from plain English. Use when you need a branch name that follows conventions.
cloudflare-gen
Generate Cloudflare Workers configuration and code. Use when building on the edge.
adr-writer
Generate Architecture Decision Records with AI. Use when documenting technical decisions.