Secure Code Guardian
Skill Verifiziert AktivUse when implementing authentication/authorization, securing user input, or preventing OWASP Top 10 vulnerabilities — including custom security implementations such as hashing passwords with bcrypt/argon2, sanitizing SQL queries with parameterized statements, configuring CORS/CSP headers, validating input with Zod, and setting up JWT tokens. Invoke for authentication, authorization, input validation, encryption, OWASP Top 10 prevention, secure session management, and security hardening. For pre-built OAuth/SSO integrations or standalone security audits, consider a more specialized skill.
Implement robust security measures in code, including authentication, authorization, input validation, and preventing OWASP Top 10 vulnerabilities.
Funktionen
- Password hashing with bcrypt/argon2
- Parameterized SQL queries
- Input validation with Zod
- JWT implementation and validation
- Security header configuration (CSP, HSTS)
- Rate limiting for authentication endpoints
- OWASP Top 10 prevention strategies
Anwendungsfälle
- Implementing secure user authentication and authorization flows.
- Validating and sanitizing all user-provided input to prevent injection attacks.
- Configuring security headers like CSP and HSTS.
- Writing code that adheres to best practices for preventing OWASP Top 10 vulnerabilities.
Nicht-Ziele
- Providing pre-built OAuth/SSO integrations.
- Performing standalone security audits.
- Handling low-level network security configurations.
Installation
Zuerst Marketplace hinzufügen
/plugin marketplace add jeffallan/claude-skills/plugin install claude-skills@fullstack-dev-skillsQualitätspunktzahl
VerifiziertVertrauenssignale
Ähnliche Erweiterungen
Auth0 Express OAuth2 JWT Bearer
100Use when adding Auth0 token validation to Express or Node.js APIs - integrates express-oauth2-jwt-bearer SDK to protect Node.js API endpoints with JWT Bearer authentication, scope-based RBAC, claim validation, and optional DPoP support
Auth0 Nuxt
100Use when implementing Auth0 authentication in Nuxt 3/4 applications, configuring session management, protecting routes with middleware, or integrating API access tokens - provides setup patterns, composable usage, and security best practices for the @auth0/auth0-nuxt SDK
Better Auth Authentication
99Better Auth authentication flows for TypeScript apps. Use when enabling email/password auth, configuring social providers, or implementing sign-up, sign-in, and verification flows.
Security Checklist
98Security best practices for Micronaut/Kotlin backend including authentication, authorization, input validation, and OWASP prevention. Use when implementing auth, validating inputs, or reviewing security.
Netlify Identity
100Verwenden Sie dies, wenn die Aufgabe Authentifizierung, Benutzerregistrierungen, Anmeldungen, Passwortwiederherstellung, OAuth-Anbieter, rollenbasierte Zugriffskontrolle oder den Schutz von Routen und Funktionen beinhaltet. Verwenden Sie immer `@netlify/identity`. Verwenden Sie niemals `netlify-identity-widget` oder `gotrue-js` – diese sind veraltet.
Mongodb Mcp Setup
100Anleitung für Benutzer zur Konfiguration wichtiger MongoDB MCP-Serveroptionen. Verwenden Sie diese Skill, wenn ein Benutzer den MongoDB MCP-Server installiert hat, aber die erforderlichen Umgebungsvariablen nicht konfiguriert wurden oder wenn er nach der Verbindung zu MongoDB/Atlas fragt und die Anmeldeinformationen nicht eingerichtet sind.