You're looking at a security testing tool that automates XSS and HTML injection vulnerability discovery across web applications. It covers the main attack vectors (stored, reflected, and DOM-based) and helps demonstrate exploitation paths like session hijacking and credential theft. Expects you to come in with some existing knowledge of JavaScript execution contexts, the DOM, and how to use browser dev tools or Burp Suite. The skill is part of a repository with 39.5K GitHub stars, though it's worth noting the security audits show mixed results with a Snyk fail. Realistically, this is for penetration testers and security engineers doing client-side vulnerability assessments, not something you'd run casually against production apps you don't own.
npx skills add https://github.com/sickn33/antigravity-awesome-skills --skill cross-site-scripting-and-html-injection-testing