How do I install the Php File Audit Claude Code skill?

Install via the ClaudSkills desktop app (one click) or copy SKILL.md from the source repository to ~/.claude/skills/php-file-audit/SKILL.md and restart Claude Code. Both flows are detailed at https://claudskills.com/install/.

Is this skill free to install?

Yes. ClaudSkills is an open registry — every skill keeps its source repository's license, and manual install via copy is free. ClaudSkills Pro ($9/mo, $79/yr, or $149 one-time) adds one-click install via the desktop app and a multi-signal Quality Score.

ClaudSkills / Engineering / languages

Php File Audit

Q: What does the Php File Audit skill do?

PHP 源码文件操作类漏洞审计。当在 PHP 白盒审计中需要检测文件相关漏洞时触发。 覆盖 5 类文件风险: 任意文件上传(类型绕过/路径穿越/二次渲染)、任意文件读取(include/fread/路径穿越)、 任意文件写入(日志注入/配置覆盖)、文件系统竞争(TOCTOU/符号链接)、归档提取漏洞(Zip Slip)。 需要 php-audit-pipeline 提供的数据流证据。

Category: Engineering · Sub-category: languages · Last updated: 2026-05-22

lang:php type:audit

PHP 源码文件操作类漏洞审计。当在 PHP 白盒审计中需要检测文件相关漏洞时触发。覆盖 5 类文件风险: 任意文件上传(类型绕过/路径穿越/二次渲染)、任意文件读取(include/fread/路径穿越)、任意文件写入(日志注入/配置覆盖)、文件系统竞争(TOCTOU/符号链接)、归档提取漏洞(Zip Slip)。需要 php-audit-pipeline 提供的数据流证据。

From the source SKILL.md

本 skill 聚焦源码层面判断"文件操作漏洞是否成立"，核心是验证路径可控性、内容可控性和执行可达性。构造上传绕过 payload、LFI 日志投毒等运行时利用技术属于对应黑盒 exploit skill 范畴。

What this skill does

Php File Audit is a community-contributed Claude Code skill in the languages sub-category. It ships as a SKILL.md file that Claude Code auto-discovers under ~/.claude/skills/php-file-audit/ and loads when your prompt matches the skill's trigger.

Who uses this skill

The Php File Audit Claude Code skill is built for software engineers, backend developers, full-stack teams, and technical leads building and maintaining production systems. It's part of ClaudSkills (also referred to as Claude Skills or Claude Code Skills) — the open community-curated registry of 69,000+ SKILL.md files for Anthropic's Claude Code agent and the wider Claude ecosystem (Claude API, Claude Agent SDK).

How to install

Free

Manual install (2 steps)

mkdir -p ~/.claude/skills/php-file-audit
curl -L https://claudskills.com/skills/php-file-audit/SKILL.md \
  -o ~/.claude/skills/php-file-audit/SKILL.md

Or just download SKILL.md directly and drop it into ~/.claude/skills/php-file-audit/. Claude Code auto-discovers it on next session.

Skills live at ~/.claude/skills/php-file-audit/SKILL.md on macOS/Linux, or %USERPROFILE%\.claude\skills\php-file-audit\SKILL.md on Windows. See the full install guide for step-by-step instructions.

Pro

One-click install via the desktop app

The ClaudSkills desktop app installs any skill directly into ~/.claude/skills/ with one click — no terminal required. Pro starts at $9/mo or $149 lifetime.

Pro

For the full experience including quality scoring and one-click install features for each skill — upgrade to Pro.

See pricing → Download desktop app

Attribution & license

Source: https://github.com/wgpsec/AboutSecurity/blob/a7ae92e215106d4f535aac574873b557970dc516/skills/code-audit/php/php-file-audit/SKILL.md
Author: wgpsec

More Engineering skills

Browse all Engineering skills in the ClaudSkills registry, or explore these other picks from the same category:

Browse all Engineering skills → Top 100 skills

Part of ClaudSkills — the open registry for Claude Skills & Claude Code Skills. · What's New · Install guide · About · llms.txt

Part of Acreator Store — Adam Lankamer's AI tools: PerfectStudio · Ucaption · UTagger · AutoXPoster · TestYourSkills · AutomationFlows · Au Naturel

Php File Audit

From the source SKILL.md

What this skill does

Who uses this skill

How to install

Manual install (2 steps)

One-click install via the desktop app

Attribution & license

More Engineering skills

Categories

Use cases

Popular tags

Learn

Site