>_
🔒

Security

2492 skills in Testing & Security > Security

information-security-manager-iso27001

Senior Information Security Manager specializing in ISO 27001 and ISO 27002 implementation for HealthTech and MedTech companies. Provides ISMS implementation, cybersecurity risk assessment, security controls management, and compliance oversight. Use for ISMS design, security risk assessments, control implementation, and ISO 27001 certification activities.

nimeshgurung/artifact-hub-collections
0
0
Aktualisiert 1d ago

security-review

Perform enterprise security review of the codebase

thoreinstein/opencode-config
0
0
Aktualisiert 1d ago

rwsdk-routing-middleware

Use when building rwsdk applications with route handling, middleware, authentication guards, HTTP method routing, context sharing, and type-safe link generation - covers defineApp, route patterns, interrupters, and Documents

kcc989/logoer
0
0
Aktualisiert 1d ago

supabase-patterns

Critical reference for all Supabase database operations. Use this whenever reading from or writing to the database to ensure correct client usage (supabaseServer vs supabase), schema names, and query patterns. CRITICAL for security.

majiayu000/claude-skill-registry
0
0
Aktualisiert 1d ago

iterative-quality-enhancer

Marketplace

Implements Anthropic's Evaluator-Optimizer pattern where one LLM generates solutions and another provides evaluative feedback in an iterative loop. Use when quality can be demonstrably improved through articulated feedback cycles. Evaluates across 5 dimensions (functionality, performance, code quality, security, documentation) with up to 5 improvement iterations.

inchan/cc-skills
0
0
Aktualisiert 1d ago

dependency-audit-assistant

Reviews package dependencies for security vulnerabilities, outdated versions, and license compliance. Use when user asks about dependencies, security audits, or before releases.

majiayu000/claude-skill-registry
0
0
Aktualisiert 1d ago

Reviewing Authentication and Authorization Security

Marketplace

Use when reviewing authentication or authorization code. Provides comprehensive security guidance on JWT validation, token exchange, OAuth 2.0/2.1 compliance, PKCE, Resource Indicators, MCP authorization, session management, and API authentication. Covers critical vulnerabilities including token forwarding, audience validation, algorithm confusion, confused deputy attacks, and authentication bypass. Invoke when analyzing any authentication, authorization, or access control code changes.

bbrowning/bbrowning-claude-marketplace
0
1
Aktualisiert 1d ago

rubber-duck

Explain code like teaching a junior dev on day 1. Forces detailed analysis to catch hidden bugs, edge cases, security issues, and performance problems.

aquantumofdonuts/sonoplex
0
0
Aktualisiert 1d ago

convex-patterns

Convex backend patterns with security, validation, and performance best practices

majiayu000/claude-skill-registry
0
0
Aktualisiert 1d ago

gh-cli-setup

Use when gh CLI is not installed, not configured, or authentication fails - provides installation steps, authentication methods, and troubleshooting for all platforms

majiayu000/claude-skill-registry
0
0
Aktualisiert 1d ago

dokploy-security-hardening

Security best practices for Dokploy templates: secrets management, network isolation, least privilege, image security, and hardening recommendations.

majiayu000/claude-skill-registry
0
0
Aktualisiert 1d ago

container-scanner

Scans containers and Dockerfiles for security issues. Wraps Hadolint for Dockerfile linting and Trivy for container image scanning. Use when user asks to "scan Dockerfile", "lint Dockerfile", "container security", "image scan", "Dockeră‚»ă‚­ăƒ„ăƒȘティ", "コンテナă‚čキャン".

majiayu000/claude-skill-registry
0
0
Aktualisiert 1d ago

doc-coauthoring

Guide users through a structured workflow for co-authoring documentation. Use when user wants to write documentation, proposals, technical specs, decision docs, or similar structured content. This workflow helps users efficiently transfer context, refine content through iteration, and verify the doc works for readers. Trigger when user mentions writing docs, creating proposals, drafting specs, or similar documentation tasks.

yurake/skills
0
0
Aktualisiert 1d ago

api-routes

Next.js API route development patterns for the digital marketplace including authentication, error handling, validation, and RESTful conventions. Use when creating new API endpoints or modifying existing routes.

code-craka/afilo-nextjs-shopify-app
0
0
Aktualisiert 1d ago

compliance-check-agent

Verifies code and configurations comply with security standards and regulations

Unicorn/Radium
0
0
Aktualisiert 1d ago

ai-security

Automatically applies when securing AI/LLM applications. Ensures prompt injection detection, PII redaction for AI contexts, output filtering, content moderation, and secure prompt handling.

majiayu000/claude-skill-registry
0
0
Aktualisiert 1d ago

security-review

èȘèšŒă€ăƒŠăƒŒă‚¶ăƒŒć…„ćŠ›ă€æ©ŸćŻ†ăƒ‡ăƒŒă‚żă‚’æ‰±ă†éš›ă«äœżç”šă€‚OWASP Top 10ă‚’ă‚«ăƒăƒŒă€‚

TakumiOkayasu/dotfile-work
0
0
Aktualisiert 1d ago

abp-api-implementation

Implement REST APIs in ABP Framework with AppServices, DTOs, pagination, filtering, and authorization. Use when building API endpoints for ABP applications.

majiayu000/claude-skill-registry
0
0
Aktualisiert 1d ago

qashier-cli

Use the qashier-cli tool to manage Google OAuth authentication, switch between staging/production environments, and extract Firestore documents. Invoke when user mentions qashier-cli, authentication issues, environment switching, Firestore data extraction, or needs to verify auth status.

majiayu000/claude-skill-registry
0
0
Aktualisiert 1d ago

auth-system

Auth system (Clerk + Convex + anonymous JWT) guidelines and planned permissions/upgrade behavior.

raythurnvoid/experiment--t3-chat
0
0
Aktualisiert 1d ago