How does this skill help prevent SQL injection?

It provides patterns for using parameterized queries and prepared statements to ensure user input is never interpolated directly into database commands.

Can I use this for secure password management?

Yes, it includes standard best practices for password hashing and verification using bcrypt, ensuring user secrets are stored securely.

What security headers are included in this guide?

The skill includes configurations for Helmet.js, specifically focusing on Content Security Policy (CSP) to mitigate XSS and data injection risks.

Does it support CSRF protection for web forms?

Yes, it provides specific implementation examples for integrating CSRF middleware and managing security tokens in both server-side and client-side code.

Security Implementation Guide

Name: Security Implementation Guide
Author: organvm-iv-taxis

byorganvm-iv-taxis

•

安全与测试

Implements production-ready security patterns for authentication, authorization, and common vulnerability prevention.

The Security Implementation Guide is a comprehensive skill designed to help developers bake security into their applications from the start. It provides standardized, production-grade patterns for critical security tasks such as input sanitization, SQL injection prevention, cross-site scripting (XSS) mitigation, and cross-site request forgery (CSRF) protection. Whether you are setting up secure password hashing with bcrypt, implementing rate limiting to prevent brute-force attacks, or configuring Content Security Policies, this skill offers the specific code snippets and best practices needed to protect modern web applications and APIs.

主要功能

01Cross-Site Request Forgery (CSRF) protection

022 GitHub stars

03Input validation and DOM sanitization patterns

04Secure authentication and password hashing implementations

05Rate limiting for API and login endpoints

06Content Security Policy (CSP) header configuration

使用场景

01Securing a Node.js/Express backend against common OWASP vulnerabilities

02Implementing safe user input handling in React and frontend applications

03Protecting login routes from brute-force and credential stuffing attacks

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add organvm-iv-taxis/a-i--skills security-implementation-guide

For use in Claude.ai and ChatGPT

主要功能

01Cross-Site Request Forgery (CSRF) protection

022 GitHub stars

03Input validation and DOM sanitization patterns

04Secure authentication and password hashing implementations

05Rate limiting for API and login endpoints

06Content Security Policy (CSP) header configuration

使用场景

01Securing a Node.js/Express backend against common OWASP vulnerabilities

02Implementing safe user input handling in React and frontend applications

03Protecting login routes from brute-force and credential stuffing attacks

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add organvm-iv-taxis/a-i--skills security-implementation-guide

For use in Claude.ai and ChatGPT