jeremylongshore

Analyzing Security Headers

@jeremylongshore/Analyzing Security Headers
jeremylongshore
1,004
123 forks
Updated 1/18/2026
View on GitHub

This skill analyzes HTTP security headers of a given domain to identify potential vulnerabilities and misconfigurations. It provides a detailed report with a grade, score, and recommendations for improvement. Use this skill when the user asks to "analyze security headers", "check HTTP security", "scan for security vulnerabilities", or requests a "security audit" of a website. It will automatically activate when security-related keywords are used in conjunction with domain names or URLs.

Installation

$skills install @jeremylongshore/Analyzing Security Headers
Claude Code
Cursor
Copilot
Codex
Antigravity

Details

Repositoryjeremylongshore/claude-code-plugins-plus-skills
Pathbackups/plugin-enhancements/plugin-backups/security-headers-analyzer_20251019_143714/skills/skill-adapter/SKILL.md
Branchmain
Scoped Name@jeremylongshore/Analyzing Security Headers

Usage

After installing, this skill will be available to your AI coding assistant.

Verify installation:

skills list

Skill Instructions

name: Analyzing Security Headers description: | This skill analyzes HTTP security headers of a given domain to identify potential vulnerabilities and misconfigurations. It provides a detailed report with a grade, score, and recommendations for improvement. Use this skill when the user asks to "analyze security headers", "check HTTP security", "scan for security vulnerabilities", or requests a "security audit" of a website. It will automatically activate when security-related keywords are used in conjunction with domain names or URLs.

Overview

This skill allows Claude to automatically analyze a website's HTTP security headers and provide a comprehensive report. It identifies missing or misconfigured headers and offers actionable recommendations to improve security posture.

How It Works

  1. Receives URL: Claude receives a URL or domain name from the user.
  2. Analyzes Headers: The plugin fetches the HTTP headers from the specified URL and analyzes them against security best practices.
  3. Generates Report: The plugin generates a detailed report, including a security grade, score, and specific recommendations for missing or misconfigured headers.

When to Use This Skill

This skill activates when you need to:

  • Analyze the security posture of a website.
  • Identify missing or misconfigured HTTP security headers.
  • Get recommendations for improving website security.
  • Audit a website for compliance with security best practices.

Examples

Example 1: Security Audit

User request: "Analyze the security headers for example.com"

The skill will:

  1. Fetch the HTTP headers from example.com.
  2. Analyze the headers for common security vulnerabilities.
  3. Generate a report outlining the security grade, score, and any identified issues with recommendations.

Example 2: Quick Security Check

User request: "Check HTTP security for mywebsite.net"

The skill will:

  1. Fetch the HTTP headers from mywebsite.net.
  2. Analyze the headers for common security vulnerabilities.
  3. Generate a report outlining the security grade, score, and any identified issues with recommendations.

Best Practices

  • Prioritize HSTS: Ensure HSTS is properly configured to prevent downgrade attacks.
  • Implement CSP: Start with a strict Content Security Policy to mitigate XSS vulnerabilities.
  • Regularly Scan: Schedule regular scans to identify new vulnerabilities and misconfigurations.

Integration

This skill can be used in conjunction with other security plugins to provide a more comprehensive security assessment. For example, it can be paired with a vulnerability scanner to identify both header-related and code-level vulnerabilities.

More by jeremylongshore

View all
rabbitmq-queue-setup
1,004

Rabbitmq Queue Setup - Auto-activating skill for Backend Development. Triggers on: rabbitmq queue setup, rabbitmq queue setup Part of the Backend Development skill category.

model-evaluation-suite
1,004

evaluating-machine-learning-models: This skill allows Claude to evaluate machine learning models using a comprehensive suite of metrics. It should be used when the user requests model performance analysis, validation, or testing. Claude can use this skill to assess model accuracy, precision, recall, F1-score, and other relevant metrics. Trigger this skill when the user mentions "evaluate model", "model performance", "testing metrics", "validation results", or requests a comprehensive "model evaluation".

neural-network-builder
1,004

building-neural-networks: This skill allows Claude to construct and configure neural network architectures using the neural-network-builder plugin. It should be used when the user requests the creation of a new neural network, modification of an existing one, or assistance with defining the layers, parameters, and training process. The skill is triggered by requests involving terms like "build a neural network," "define network architecture," "configure layers," or specific mentions of neural network types (e.g., "CNN," "RNN," "transformer").

oauth-callback-handler
1,004

Oauth Callback Handler - Auto-activating skill for API Integration. Triggers on: oauth callback handler, oauth callback handler Part of the API Integration skill category.