Can it prevent command injection vulnerabilities?

Yes, it specifically scans for dangerous shell execution patterns and replaces them with secure alternatives like execFile without shell interpretation.

Does this skill provide security documentation?

Yes, it generates several key documents including SECURITY-ARCHITECTURE.md, THREAT-MODEL.md, and a detailed CVE-REMEDIATION-PLAN.md.

How does this skill handle identified CVEs?

The skill creates a structured remediation plan that includes updating dependencies, modifying vulnerable code segments, and validating fixes through a dedicated security testing framework.

What security standards does the Architect implement?

It focuses on industry best practices such as bcrypt with 12 rounds for hashing, Zod for schema-based input validation, and secure path resolution to prevent traversal.

Security Architect & CVE Remediation

Name: Security Architect & CVE Remediation
Author: nbossn

bynbossn

0•

セキュリティとテスト

Conducts comprehensive security overhauls, threat modeling, and vulnerability remediation to establish secure-by-default software architectures.

The agent-v3-security-architect skill empowers Claude to act as a senior security lead, specializing in the identification and resolution of critical vulnerabilities like command injection, path traversal, and weak cryptographic practices. It provides a structured framework for threat modeling and security audits, offering automated remediation plans for specific CVEs while establishing reusable secure coding patterns. This skill is ideal for projects requiring a complete security overhaul or teams looking to implement industry-standard protections like Zod-based input validation, bcrypt hashing, and secure path sanitization.

主な機能

01Migration from weak hashing (SHA-256) to modern bcrypt standards

02Automated CVE remediation and vulnerability patching for legacy systems

03Implementation of secure-by-default coding patterns and input validation

04Comprehensive threat modeling and attack surface analysis documentation

05Safe command execution enforcement to prevent injection attacks

060 GitHub stars

ユースケース

01Establishing standardized security boundaries and RBAC for agentic workflows

02Performing a full-scale security audit and overhaul during major version upgrades

03Remediating high-priority security vulnerabilities identified in dependency scans

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add nbossn/claude-code-base agent-v3-security-architect

For use in Claude.ai and ChatGPT

主な機能

01Migration from weak hashing (SHA-256) to modern bcrypt standards

02Automated CVE remediation and vulnerability patching for legacy systems

03Implementation of secure-by-default coding patterns and input validation

04Comprehensive threat modeling and attack surface analysis documentation

05Safe command execution enforcement to prevent injection attacks

060 GitHub stars

ユースケース

01Establishing standardized security boundaries and RBAC for agentic workflows

02Performing a full-scale security audit and overhaul during major version upgrades

03Remediating high-priority security vulnerabilities identified in dependency scans