What is a Trojan Source attack and why is it relevant to Hebrew code?

A Trojan Source attack uses Unicode bidirectional characters to hide malicious code. In code containing Hebrew and English the risk is higher because RTL characters already exist legitimately in the codebase.

Is it mandatory to register a database with the Privacy Protection Authority?

With Amendment 13 (August 2025), the requirement was narrowed mainly to public bodies and data brokers with 10,000+ records. Most private companies are exempt, but consult a legal advisor to confirm.

What is the risk of leaking Israeli payment gateway keys?

Keys for Cardcom, Tranzila, or PayMe enable credit card charges. A leak could result in unauthorized charges and PCI DSS liability.

Is the Israeli Privacy Protection Law similar to GDPR?

Basic principles are similar, but differences are significant: GDPR requires a DPO, detailed legal basis, and higher fines. Israeli law was updated in Amendment 13 (2025) which added mandatory DPO appointment for certain entities.

How do you protect Israeli payment forms from CSRF?

Use a unique CSRF token per form, verify the token server-side, and set SameSite=Strict on session cookies. Especially important for Cardcom and Tranzila payment forms.

Before deciding whether to install, talk to the skill

Israeli AppSec Scanner

Verified94/100

Before deciding whether to install, talk to the skill

Security scanning guidance for Israeli web applications covering OWASP Top 10, Israeli Privacy Protection Authority (PPA) compliance, dependency vulnerability scanning, secrets detection, and secure coding patterns for Hebrew/RTL apps.

The Problem

Israeli developers build web applications without dedicated security scanning tools that account for the Israeli context: Hebrew input requiring special sanitization, Unicode bidirectional text attacks, Privacy Protection Law requirements, and leakage of Israeli service API keys. Without tailored scanning, vulnerabilities specific to Israeli applications remain undetected.

skills-il Security & Compliance|73installs270views

0Write a Review

1.0.2MITGitHub

73installs270views

0Write a Review

Updated: April 20, 2026|Tags:application-security vulnerability-scanning OWASP privacy cybersecurity israel

npx skills-il add skills-il/security-compliance --skill israeli-appsec-scanner -a claude-code

Install on Claude.ai, Claude Desktop, ChatGPT, Manus, or other platforms

1. Click "Download ZIP" to download the skill files.
2. Open Claude Desktop and go to Customize > Skills.
3. Click "+" and select "Upload a skill", then upload the ZIP file.
4. Start a new conversation. The skill will activate automatically when relevant.

Not sure how? Read the guide

When to Apply

When you want to perform a comprehensive security scan on an Israeli application
When you need to verify compliance with the Privacy Protection Law and 2017 regulations
When you want to detect leaked API keys for Israeli services like Cardcom or Tranzila
When testing a Hebrew-input application against XSS and SQL injection attacks
When preparing an application for SOC 2 or PCI DSS audit

Try These Prompts

Full Security Scan

Run a full security scan of my application against OWASP Top 10 with focus on Hebrew input and RTL attacks

Secrets Leak Check

Scan my project for leaked API keys of Israeli services like Cardcom, Tranzila, and Supabase

Privacy Law Compliance Check

Check if my application complies with the Israeli Privacy Protection Law and 2017 security regulations

Trojan Source Protection

Scan my codebase for hidden Unicode bidirectional characters that could alter code logic

Frequently Asked Questions

Related Skills

Israeli AI Compliance Kit

Trusted86/100

Author: skills-il

v1.0.2NewTrending

Guide Israeli ML teams through the AI governance and compliance stack: Ministry of Innovation December 2023 AI policy principles, Privacy Protection Law (PPL) and Amendment 13 applied to ML training data, sector-specific rules (Bank of Israel Directive 364, Ministry of Health AMAR medical-device AI), and EU AI Act exposure for Israeli exporters. Generates model cards, data statements, and DPIA templates tailored to Israeli context. Use when preparing AI governance docs, answering an enterprise customer's AI risk review, classifying a system under the EU AI Act, or building an internal responsible-AI checklist. Prevents costly compliance gaps when shipping AI to regulated markets. Do NOT use for general PPL policy (use israeli-privacy-shield), web app security (use israeli-appsec-scanner), or SOC/threat triage (use israeli-cybersecurity-ops).

Ask the Skill

0.0442

Claude CodeCursorCodex

Hebrew Legal Research

Trusted88/100

Author: skills-il

v1.1.1PopularTrending

Assist with Israeli legal research including legislation lookup, case law concepts, Hebrew legal terminology, and legal document preparation guidance. Use when user asks about Israeli law, "chok", "mishpat", "bagatz", court procedures, employment law, contract law, real estate law, or needs help with Hebrew legal terms. Covers civil, commercial, employment, and administrative law. Do NOT use for providing formal legal advice — always recommend consulting a licensed Israeli attorney (orech din). Do NOT use for non-Israeli legal systems.

Ask the Skill

0.01471,038

Claude CodeCursorGitHub Copilot+5

Israeli Privacy Shield

Trusted88/100

Author: skills-il

v1.2.0Popular

Israeli Privacy Protection Law compliance guidance including Amendment 13 (effective August 14, 2025), database registration, consent requirements, data security, cross-border transfers, breach notification, privacy protection officer appointment, and AI governance. Use when user asks about Israeli privacy law, "haganat pratiut", "tikun 13", data protection in Israel, GDPR compliance for Israeli companies, privacy policy requirements, or database registration. Covers the Privacy Protection Law 1981, Amendment 13, and 2017 Security Regulations. Do NOT use for EU GDPR-only questions without Israeli context.

Ask the Skill

0.0188587

Claude CodeCursorGitHub Copilot+5

Found an issue with this skill?

Want to build your own skill? Try the Skill Creator · Submit a Skill

Reviews (0)

No reviews yet. Be the first to write one!

Before deciding whether to install, talk to the skill

Israeli AppSec Scanner

Verified94/100

Before deciding whether to install, talk to the skill

The Problem

skills-il Security & Compliance|73installs270views

0Write a Review

1.0.2MITGitHub

73installs270views

0Write a Review

Updated: April 20, 2026|Tags:application-security vulnerability-scanning OWASP privacy cybersecurity israel

npx skills-il add skills-il/security-compliance --skill israeli-appsec-scanner -a claude-code

Install on Claude.ai, Claude Desktop, ChatGPT, Manus, or other platforms

1. Click "Download ZIP" to download the skill files.
2. Open Claude Desktop and go to Customize > Skills.
3. Click "+" and select "Upload a skill", then upload the ZIP file.
4. Start a new conversation. The skill will activate automatically when relevant.

Not sure how? Read the guide

When to Apply

When you want to perform a comprehensive security scan on an Israeli application
When you need to verify compliance with the Privacy Protection Law and 2017 regulations
When you want to detect leaked API keys for Israeli services like Cardcom or Tranzila
When testing a Hebrew-input application against XSS and SQL injection attacks
When preparing an application for SOC 2 or PCI DSS audit

Try These Prompts

Full Security Scan

Run a full security scan of my application against OWASP Top 10 with focus on Hebrew input and RTL attacks

Secrets Leak Check

Scan my project for leaked API keys of Israeli services like Cardcom, Tranzila, and Supabase

Privacy Law Compliance Check

Check if my application complies with the Israeli Privacy Protection Law and 2017 security regulations

Trojan Source Protection

Scan my codebase for hidden Unicode bidirectional characters that could alter code logic

Frequently Asked Questions

Related Skills

Israeli AI Compliance Kit

Trusted86/100

Author: skills-il

v1.0.2NewTrending

Ask the Skill

0.0442

Claude CodeCursorCodex

Hebrew Legal Research

Trusted88/100

Author: skills-il

v1.1.1PopularTrending

Ask the Skill

0.01471,038

Claude CodeCursorGitHub Copilot+5

Israeli Privacy Shield

Trusted88/100

Author: skills-il

v1.2.0Popular

Ask the Skill

0.0188587

Claude CodeCursorGitHub Copilot+5

Found an issue with this skill?

Want to build your own skill? Try the Skill Creator · Submit a Skill

Reviews (0)

No reviews yet. Be the first to write one!

Israeli AppSec Scanner

When to Apply

Try These Prompts

Developer & AI Agent Instructions

Security Analysis

Quality Score

Performance Data

Frequently Asked Questions

What is a Trojan Source attack and why is it relevant to Hebrew code?

What is a Trojan Source attack and why is it relevant to Hebrew code?

Is it mandatory to register a database with the Privacy Protection Authority?

Is it mandatory to register a database with the Privacy Protection Authority?

What is the risk of leaking Israeli payment gateway keys?

What is the risk of leaking Israeli payment gateway keys?

Is the Israeli Privacy Protection Law similar to GDPR?

Is the Israeli Privacy Protection Law similar to GDPR?

How do you protect Israeli payment forms from CSRF?

How do you protect Israeli payment forms from CSRF?

Related Skills

Israeli AI Compliance Kit

Hebrew Legal Research

Israeli Privacy Shield

Reviews (0)

Israeli AppSec Scanner

When to Apply

Try These Prompts

Developer & AI Agent Instructions

Security Analysis

Quality Score

Performance Data

Frequently Asked Questions

What is a Trojan Source attack and why is it relevant to Hebrew code?

What is a Trojan Source attack and why is it relevant to Hebrew code?

Is it mandatory to register a database with the Privacy Protection Authority?

Is it mandatory to register a database with the Privacy Protection Authority?

What is the risk of leaking Israeli payment gateway keys?

What is the risk of leaking Israeli payment gateway keys?

Is the Israeli Privacy Protection Law similar to GDPR?

Is the Israeli Privacy Protection Law similar to GDPR?

How do you protect Israeli payment forms from CSRF?

How do you protect Israeli payment forms from CSRF?

Related Skills

Israeli AI Compliance Kit

Hebrew Legal Research

Israeli Privacy Shield

Reviews (0)