Specialized JavaScript/TypeScript static analysis for bug bounty hunting. Focuses on Node.js, Express.js, and Next.js. Uses AST-grep and ripgrep to find high-impact vulnerabilities (RCE, SSRF, SQLi, SSTI, Prototype Pollution, JWT flaws, Frontend-to-Backend interactions, Deserialization) by enforcing strict Source-to-Sink Taint Analysis. Every finding MUST have concrete evidence.
Key Features
- Comprehensive skill evaluation and performance tracking
- Community-driven ratings and reviews
- Easy integration with Claude Code
- Regular updates and maintenance
Quick Start
TopRank Skills install mswell/js-code-analysis
chat Comments (0)
Sign in to join the discussion and leave a comment.
Skill Details
GitHub Stars
67
GitHub Forks
30
Created
Mar 2026
Last Updated
3 months ago
tools
tools debugging
Related Skills
Build your own?
Join 12,000+ developers contributing to the Claude ecosystem.
No comments yet. Be the first to share your thoughts!