This helps Claude systematically test for directory traversal vulnerabilities by probing endpoints with payloads like `../../../etc/passwd` to see if your app leaks sensitive files outside its intended directory. You'd use it during security reviews or penetration testing when you need to verify that user input touching filesystem operations is properly sanitized. It's built for working with Burp Suite, ZAP, and fuzzing tools like ffuf. Fair warning: the skill failed both Socket and Snyk security audits, which is somewhat ironic for a security testing template, so review the code yourself before running it in any sensitive environment. Worth having in your toolkit if you're doing web app security work, but audit it first.
npx skills add https://github.com/davila7/claude-code-templates --skill file-path-traversal-testing