How does it improve input validation?

The skill implements Zod schemas to define strict data structures, ensuring that all inputs are validated for type, format, and length before processing.

Can this skill prevent path traversal attacks?

Yes, it includes a dedicated path sanitization pattern that resolves and validates user-provided paths against an allowed prefix to prevent unauthorized file access.

How is the success of the security overhaul measured?

Success is verified through high security scores in npm audits, 100% resolution of target CVEs, and maintaining over 95% test coverage on security-critical code.

What specific vulnerabilities does this skill address?

It specifically targets critical issues including vulnerable dependencies (CVE-1), weak SHA-256 password hashing (CVE-2), and hardcoded credentials (CVE-3).

V3 Security Overhaul

Name: V3 Security Overhaul
Author: nbossn

bynbossn

0•

Seguridad y Pruebas

Implements a comprehensive security architecture overhaul for Claude-flow v3 by remediating critical CVEs and enforcing secure-by-default development patterns.

The V3 Security Overhaul skill is designed to transform Claude-flow v3 applications into hardened, production-ready systems by addressing specific high-priority vulnerabilities and establishing modern security standards. It automates the migration from legacy hashing to Bcrypt, integrates Zod for robust input validation, and implements safeguards against path traversal and command injection. This skill is essential for developers looking to audit their codebases against known CVEs and adopt a security-first architecture using specialized AI security agents.

Características Principales

010 GitHub stars

02Integration with TDD London School security testing frameworks

03Secure path sanitization logic to prevent directory traversal attacks

04Automated implementation of Zod-based input validation schemas

05Safe command execution workflows to mitigate shell injection risks

06Critical CVE remediation for dependency, hashing, and credential vulnerabilities

Casos de Uso

01Establishing secure coding patterns in greenfield AI-driven projects

02Automating the remediation of npm audit findings and critical CVEs

03Hardening legacy Claude-flow v3 applications against modern security threats

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add nbossn/claude-code-base v3-security-overhaul

For use in Claude.ai and ChatGPT

Características Principales

010 GitHub stars

02Integration with TDD London School security testing frameworks

03Secure path sanitization logic to prevent directory traversal attacks

04Automated implementation of Zod-based input validation schemas

05Safe command execution workflows to mitigate shell injection risks

06Critical CVE remediation for dependency, hashing, and credential vulnerabilities

Casos de Uso

01Establishing secure coding patterns in greenfield AI-driven projects

02Automating the remediation of npm audit findings and critical CVEs

03Hardening legacy Claude-flow v3 applications against modern security threats

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add nbossn/claude-code-base v3-security-overhaul

For use in Claude.ai and ChatGPT