Does this skill support GraphQL security?

Yes, this skill provides security patterns and guidance applicable to REST, GraphQL, and WebSocket-based API architectures.

Can I use this to review an existing codebase?

Yes, the skill is designed to assist in conducting security reviews, identifying vulnerabilities in legacy code, and suggesting modern remediation steps.

Which authentication methods are supported?

It covers a wide range of methods including JSON Web Tokens (JWT), OAuth 2.0, API keys, and multi-factor authentication (MFA) setup.

How does it help prevent SQL injection?

It provides implementation examples for parameterized queries, ORM usage with proper escaping, and strict input validation using schemas like Zod.

API Security Best Practices

Name: API Security Best Practices
Author: claudiodearaujo

byclaudiodearaujo

0•

보안 및 테스팅

Secures backend services by implementing robust authentication, authorization, input validation, and rate-limiting patterns.

This skill provides a comprehensive framework for developers to design and audit secure API architectures across REST, GraphQL, and WebSockets. It offers actionable implementation patterns for industry-standard security measures, including JWT authentication, OAuth 2.0, role-based access control (RBAC), and defenses against the OWASP API Top 10 vulnerabilities. By guiding the implementation of parameterized queries, request sanitization, and traffic throttling, this skill ensures that your application data remains protected and your infrastructure remains resilient against common cyber threats and injection attacks.

주요 기능

01Automated input validation and sanitization strategies

020 GitHub stars

03Protection patterns for SQL injection, XSS, and command injection

04Rate limiting and throttling configurations to mitigate DDoS risks

05Secure JWT and OAuth 2.0 authentication implementation guides

06Best practices for sensitive data encryption and secure headers

사용 사례

01Hardening existing API endpoints against common web vulnerabilities

02Designing secure authentication and RBAC systems for new microservices

03Conducting internal security audits and preparing for production deployments

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add claudiodearaujo/sistema-de-narra-o-de-livro-front api-security-best-practices

For use in Claude.ai and ChatGPT

Download Skill

주요 기능

01Automated input validation and sanitization strategies

020 GitHub stars

03Protection patterns for SQL injection, XSS, and command injection

04Rate limiting and throttling configurations to mitigate DDoS risks

05Secure JWT and OAuth 2.0 authentication implementation guides

06Best practices for sensitive data encryption and secure headers

사용 사례

01Hardening existing API endpoints against common web vulnerabilities

02Designing secure authentication and RBAC systems for new microservices

03Conducting internal security audits and preparing for production deployments

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add claudiodearaujo/sistema-de-narra-o-de-livro-front api-security-best-practices

For use in Claude.ai and ChatGPT

Download Skill