What programming languages does Security Core support?

Security Core provides specialized security guidance, scripts, and configuration templates for TypeScript (Node.js), Python (FastAPI), and Rust (Axum/sqlx).

Can it help with CLI application security?

Yes, it specifically includes implementation patterns for OAuth 2.0 Device Authorization Flow, which is the standard for securing CLI, TUI, and desktop applications.

How does it assist with database security?

It offers detailed patterns for implementing Row Level Security (RLS) with Supabase and PostgreSQL, ensuring robust multi-tenant data isolation.

Does it perform automated security scans?

Yes, it includes an audit script that runs dependency vulnerability scanners (npm audit, pip-audit, cargo-audit) and detects hardcoded secrets in your codebase.

Security Core

Name: Security Core
Author: aaronbassett

byaaronbassett

0•

安全与测试

Secures applications across TypeScript, Python, and Rust with expert guidance on authentication, authorization, and OWASP best practices.

Security Core is a comprehensive toolkit for developers using Claude Code to build and harden production-grade applications. It provides specialized expertise for implementing complex security features like JWT authentication, OAuth Device Flow for CLI tools, and advanced authorization models including Supabase Row Level Security (RLS). By integrating automated auditing scripts and language-specific configuration templates, it empowers developers to proactively mitigate OWASP Top 10 risks and manage secrets securely throughout the development lifecycle.

主要功能

01Advanced authorization models covering RBAC, ABAC, and multi-tenant RLS.

02Automated security auditing for TypeScript, Python, and Rust dependencies.

03Comprehensive authentication patterns including JWT, sessions, and OAuth 2.0.

04Hardened configuration templates for security headers and rate limiting.

05Integrated OWASP Top 10 mitigation and security code review checklists.

060 GitHub stars

使用场景

01Hardening application infrastructure using production-ready middleware for security headers and CORS.

02Implementing secure authentication and authorization flows in new or existing web and CLI applications.

03Conducting automated security audits and manual code reviews to detect vulnerabilities and hardcoded secrets.

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add aaronbassett/claude-bell security-core

For use in Claude.ai and ChatGPT

Download Skill