Can it help with modern authentication like Passkeys?

Yes, it includes detailed references for WebAuthn, FIDO2, and OAuth 2.1 flows for secure, passwordless identity management.

How does this skill help with OWASP compliance?

It provides a baseline checklist and specific implementation strategies to mitigate the Top 10 most critical web application security risks.

Does it cover infrastructure security?

Yes, it guides users through hardening via WAF, SIEM, container security, and supply chain protection protocols.

Is it useful for data protection and encryption?

Absolutely, it offers guidance on symmetric/asymmetric encryption, KMS integration, and advanced topics like post-quantum cryptography.

Security & Compliance Advisor

Name: Security & Compliance Advisor
Author: rnavarych

byrnavarych

•

Security & Testing

Provides expert guidance on application security, identity management, and defensive architecture patterns following industry standards.

This skill transforms Claude into a specialized security consultant, offering actionable advice on OWASP Top 10 mitigation, identity and access management (IAM), and secure architecture design. It covers a wide range of domains including modern authentication flows like OAuth 2.1 and Passkeys, advanced encryption techniques, and supply chain security. Whether you are implementing Zero Trust principles, conducting a security posture review, or setting up automated SAST/DAST scanning, this skill provides the necessary references and implementation patterns to ensure your application remains resilient against evolving threats.

Key Features

0111 GitHub stars

02Comprehensive OWASP Top 10 vulnerability mitigation guidance

03Secure architecture design for Zero Trust and supply chain protection

04Detailed authorization modeling including RBAC, ABAC, and ReBAC

05Implementation patterns for OAuth 2.1, OIDC, and FIDO2/Passkeys

06Standards-based cryptographic guidance for KMS and TLS integration

Use Cases

01Designing and implementing secure identity providers and authentication flows

02Hardening application infrastructure with WAF, SIEM, and container security

03Conducting architectural security reviews and vulnerability assessments

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add rnavarych/alpha-engineer security-advisor

For use in Claude.ai and ChatGPT

Key Features

0111 GitHub stars

02Comprehensive OWASP Top 10 vulnerability mitigation guidance

03Secure architecture design for Zero Trust and supply chain protection

04Detailed authorization modeling including RBAC, ABAC, and ReBAC

05Implementation patterns for OAuth 2.1, OIDC, and FIDO2/Passkeys

06Standards-based cryptographic guidance for KMS and TLS integration

Use Cases

01Designing and implementing secure identity providers and authentication flows

02Hardening application infrastructure with WAF, SIEM, and container security

03Conducting architectural security reviews and vulnerability assessments

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add rnavarych/alpha-engineer security-advisor

For use in Claude.ai and ChatGPT