Can it help me fix specific OWASP vulnerabilities?

Yes, it includes specialized references for mitigating SQL injection, XSS, CSRF, XXE, and insecure deserialization attacks.

Does this skill handle network or cloud infrastructure security?

No, this skill is specifically designed for application-level security, including API hardening, authentication flows, and code-level vulnerability prevention.

Is it compatible with Java-based security frameworks?

Yes, it offers extensive support for Spring Security, including filter chain configuration, role-mapping, and debugging auth failures.

Which authentication protocols does it cover?

It provides deep expertise in JWT, OAuth 2.0, OpenID Connect (OIDC), and session-based authentication methods.

Security Expert

Name: Security Expert
Author: peterstorm

bypeterstorm

0•

Seguridad y Pruebas

Secures APIs and applications by implementing robust authentication, authorization, and vulnerability mitigation strategies.

The Security Expert skill provides comprehensive guidance for developers looking to harden their applications against common vulnerabilities and implement complex identity management systems. It specializes in OAuth 2.0/OIDC flows, Keycloak configuration, and Spring Security setups, while offering specific remediation strategies for OWASP Top 10 threats like SQL injection, XSS, and CSRF. Whether you are performing a security audit or debugging authentication failures, this skill ensures your codebase adheres to industry-standard security patterns and best practices.

Características Principales

01Secure secrets management and industry-standard password hashing practices

02Mitigation patterns for OWASP Top 10 vulnerabilities like SQLi, XSS, and XXE

030 GitHub stars

04Comprehensive authentication implementation for OAuth 2.0, OIDC, and JWT

05Detailed Keycloak and Spring Security configuration guidance

06Advanced authorization modeling including RBAC and ABAC policies

Casos de Uso

01Implementing a secure OAuth2 login flow using Keycloak and Spring Boot

02Performing a security review of an existing API to identify and fix injection vulnerabilities

03Debugging complex JWT validation errors and role-mapping issues in microservices

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add peterstorm/.dotfiles security-expert

For use in Claude.ai and ChatGPT

Download Skill