Summary
You're looking at a security testing tool that automates XSS and HTML injection vulnerability discovery across web applications. It covers the main attack vectors (stored, reflected, and DOM-based) and helps demonstrate exploitation paths like session hijacking and credential theft. Expects you to come in with some existing knowledge of JavaScript execution contexts, the DOM, and how to use browser dev tools or Burp Suite. The skill is part of a repository with 39.5K GitHub stars, though it's worth noting the security audits show mixed results with a Snyk fail. Realistically, this is for penetration testers and security engineers doing client-side vulnerability assessments, not something you'd run casually against production apps you don't own.
Install to Claude Code
npx -y skills add sickn33/antigravity-awesome-skills --skill "Cross-Site Scripting and HTML Injection Testing" --agent claude-codeInstalls into .claude/skills of the current project.
Keep your Mac awake while Claude Code and 40+ AI agents run. Sleeps when they're idle.
One time payment $9 →
Integrate web data into your AI product. One API to scrape website & brand data.
Get API Key Now →
Agent, run crypto. Access onchain data & trade routes via 1inch.
Install now →
On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.
Start earning →
Files
SKILL.md
Select a file.
Featured
Keep your Mac awake while Claude Code and 40+ AI agents run. Sleeps when they're idle.
One time payment $9 →Integrate web data into your AI product. One API to scrape website & brand data.
Get API Key Now →Agent, run crypto. Access onchain data & trade routes via 1inch.
Install now →On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.
Start earning →
