>_
🔒

Security

2492 skills in Testing & Security > Security

assume-cloudformation-role

Assume AWS IAM role for CloudFormation operations and set temporary credentials as environment variables. Use when working with CloudFormation stacks or when authentication setup is needed before AWS CloudFormation operations.

Daisuke897/dotfiles
0
0
Actualizado 5d ago

sandbox-architect

Analyze codebases to generate optimal Claude Code Sandbox configurations. Use this skill when users need to set up sandbox security settings for their projects. This skill should be triggered when users ask about sandbox configuration, security settings, or when setting up Claude Code for a new project. It analyzes the codebase stack (Node.js, Python, Rust, Go, PHP, etc.), detects dependencies, and generates appropriate sandbox and permission settings through an interactive Q&A process.

majiayu000/claude-skill-registry
0
0
Actualizado 5d ago

session-management-ssg-ssr

Expert skill for implementing session management in SSG (Static Site Generation) and SSR (Server-Side Rendering) contexts. Covers stateless authentication with JWT, database session management, client-side session handling, and security best practices for different rendering strategies. Use when implementing session management in static sites (SSG), handling authentication in server-side rendered applications (SSR), or implementing stateless authentication with JWT tokens.

MuhammedSuhaib/LevelUpSpeckit-Plus
0
0
Actualizado 5d ago

cloudflare-turnstile

This skill provides comprehensive knowledge for implementing Cloudflare Turnstile, the CAPTCHA-alternative bot protection system. It should be used when integrating bot protection into forms, login pages, signup flows, or any user-facing feature requiring spam/bot prevention. Turnstile runs invisible challenges in the background, maintaining excellent user experience while blocking automated traffic.Use when: Adding bot protection to forms, implementing login security, protecting API endpoints from abuse, migrating from reCAPTCHA/hCaptcha, encountering CSP errors with Turnstile, handling token validation failures, implementing E2E tests with Turnstile, integrating with React/Next.js/Hono applications, or debugging error codes 100*, 300*, 600*.Keywords: turnstile, captcha, bot protection, cloudflare challenge, siteverify, recaptcha alternative, spam prevention, form protection, cf-turnstile, turnstile widget, token validation, managed challenge, invisible challenge, @marsidev/react-turnstile, hono turnstil

jackspace/ClaudeSkillz
0
0
Actualizado 5d ago

code-reviewer

Expert code review for Python, microservices, security, and production best practices. Automatically activated when code review is needed to identify bugs, security issues, and quality problems.

tariron/saasodoo
0
1
Actualizado 5d ago

docusaurus-auth

Expert skill for implementing authentication in Docusaurus static sites. Handles FastAPI backend setup for authentication, JWT token management, and secure API communication. Includes setup for static site generation, client-side authentication, and user data protection. Use when adding authentication to Docusaurus static sites, implementing FastAPI backend for authentication services, or securing API routes with JWT tokens in static site context.

MuhammedSuhaib/LevelUpSpeckit-Plus
0
0
Actualizado 5d ago

security

Application security best practices including OWASP Top 10, authentication, and data protection.

kprsnt2/MyLocalCLI
0
0
Actualizado 5d ago

pre-deployment-security-check

Verifica que no haya credenciales, secrets o archivos sensibles antes de pushear a GitHub. Busca API keys hardcodeadas, .env con valores reales, y valida .gitignore.

alannreyes/bip2
0
0
Actualizado 5d ago

skill-architecture

Comprehensive guide for creating effective Claude Code skills with security best practices, CLI-specific features, and structural patterns. Use when creating skills, needing security guidance, understanding skill architecture, or learning best practices.

majiayu000/claude-skill-registry
0
0
Actualizado 5d ago

email

Email operations skill for sending, fetching, and reading emails via IMAP/SMTP.Uses curl with OpenSSL/LibreSSL for reliable TLS compatibility with Tencent Enterprise Mail and other providers.Credentials are securely stored in macOS Keychain.

majiayu000/claude-skill-registry
0
0
Actualizado 5d ago

openwebf-security-xss-sanitization

Marketplace

Review and mitigate XSS risks in WebF apps (sanitize HTML, validate input, avoid unsafe string rendering). Use when the user mentions XSS, sanitize HTML, innerHTML-like rendering, user-generated HTML, or “untrusted input”.

archview-ai/webf-plugin
0
0
Actualizado 5d ago

ci-cd-pipeline-design

Guide developers through CI/CD pipeline design including architecture patterns, stage design, and security considerations

rubrical-studios/process-docs
0
0
Actualizado 5d ago

ansible-vault-conventions

Ansible Vault file naming, encryption, and template conventions for managing secrets. Covers vault_ prefix patterns, entire-file encryption patterns, template file requirements, .gitignore rules, and setup workflows for consistent secret management across environments.

enuno/home-lab
0
0
Actualizado 5d ago

code-reviewing

Use when completing implementation, before escalating to human review, or when human checkpoint is reached - performs AI-assisted code review covering security, AI-specific issues, logic errors, and architecture to ensure humans see fresh analysis

Mharbulous/myskillium
0
0
Actualizado 5d ago

gke-cluster-configuration

Marketplace

Private GKE cluster setup, Workload Identity, and Shielded Nodes with Binary Authorization using Terraform.

adaptive-enforcement-lab/claude-skills
0
0
Actualizado 5d ago

risk-assessor

Perform comprehensive risk assessments on OSCAL systems including threat modeling, vulnerability analysis, risk scoring, and POA&M generation. Use this skill to evaluate security posture and prioritize remediation efforts.

euCann/OSCAL-GRC-SKILLS
0
0
Actualizado 5d ago

gh-cli

Use GitHub CLI (gh) to interact with GitHub repositories, pull requests, issues, CI/CD workflows, and security alerts. Use when the user asks about remote repository status, workflow runs, PR/issue management, or GitHub operations.

ymat19/dotfiles
0
0
Actualizado 5d ago

http-api-cloudbase

Use CloudBase HTTP API to access CloudBase platform features (database, authentication, cloud functions, cloud hosting, cloud storage, AI) via HTTP protocol from backends or scripts that are not using SDKs.

binggg/GALAXY-VORTEX
0
0
Actualizado 5d ago

risk-assessor

Security risk assessment from specifications, manuals, and design documents. Threat modeling (STRIDE/DREAD), asset identification, risk matrix generation, and CRA pre-compliance evaluation. Use for upstream security analysis before implementation. Triggers on: risk assessment, threat modeling, security review, design review, specification analysis, STRIDE, DREAD, attack tree, security requirements, pre-implementation security.

TakukiN/security_analysis_agent_skills
0
0
Actualizado 5d ago

oracle-dba

Oracle DBA and DevOps expertise for Autonomous Database (ADB) on OCI. This skill should be used when managing Oracle Autonomous Databases, writing optimized SQL/PLSQL, configuring security (TDE, Database Vault, Data Safe), implementing HA/DR (Data Guard, PITR), using OCI CLI for database operations, or integrating with Oracle MCP servers for AI-assisted database management. Covers Oracle Database versions 19c, 21c, 23ai, and 26ai.

majiayu000/claude-skill-registry
0
0
Actualizado 5d ago