Is this skill compatible with Supabase?

Yes, it includes specific guidance for implementing Row Level Security (RLS) policies and secure session management within the Supabase ecosystem.

Does it support blockchain development?

Yes, it includes specialized validation steps for Solana, including public key verification, signature checks, and transaction integrity audits.

Can it help with frontend security?

Absolutely. It provides patterns for HTML sanitization with DOMPurify, Content Security Policy (CSP) headers, and secure React rendering to prevent XSS.

How does this skill prevent SQL injection?

It enforces the use of parameterized queries and ORM safety patterns, strictly forbidding string concatenation within database queries to block injection vectors.

Does it provide automated secret detection?

It provides a comprehensive checklist and pattern library to ensure secrets are never hardcoded and are correctly managed via environment variables and .gitignore.

Security Review & Hardening

Name: Security Review & Hardening
Author: arabicapp

byarabicapp

•

보안 및 테스팅

Performs comprehensive security audits and implements industry-standard protection patterns for web applications and blockchain integrations.

The Security Review skill acts as a rigorous safety framework for Claude Code, ensuring that generated and refactored code adheres to modern security best practices. It provides structured guidance for managing sensitive secrets, implementing robust input validation via Zod, and preventing critical vulnerabilities like SQL injection, XSS, and CSRF. Beyond standard web security, it includes specialized modules for Solana blockchain verification and secure Supabase configurations, making it an essential tool for developers building production-grade, secure-by-design applications.

주요 기능

01Robust input validation patterns using Zod and secure file upload verification.

02Advanced protection strategies for SQL injection, XSS, and CSRF attacks.

03Comprehensive security checklists covering the OWASP Top 10 vulnerabilities.

04Secure authentication guidance including HttpOnly cookies and Row Level Security (RLS).

05Specialized blockchain security for Solana wallet and transaction validation.

061 GitHub stars

사용 사례

01Implementing secure authentication and authorization flows in Supabase or PostgreSQL environments.

02Auditing code for sensitive data exposure in logs and ensuring proper environment variable usage.

03Hardening a Next.js or Node.js API before production deployment to prevent data leaks.

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add arabicapp/everything-claude-code security-review

For use in Claude.ai and ChatGPT

Download Skill