Does it support password security?

Absolutely, it provides implementation patterns for high-entropy password hashing using bcrypt with configurable salt rounds.

How does this skill prevent SQL injection?

It enforces the use of parameterized queries and prevents direct interpolation of user input into database commands to ensure data safety.

Can it help with front-end security?

Yes, it includes patterns for DOM sanitization and setting secure Content Security Policy (CSP) headers to mitigate XSS risks.

Is it compatible with Express.js?

Yes, it includes specific implementations for popular Express-based middleware such as csurf and express-rate-limit.

What vulnerability types does this skill address?

It primarily addresses major threats including Cross-Site Scripting (XSS), Cross-Site Request Forgery (CSRF), SQL Injection, and Brute Force attacks.

Security Implementation Guide

Name: Security Implementation Guide
Author: organvm-iv-taxis

byorganvm-iv-taxis

•

安全与测试

Implements production-ready security patterns to protect web applications against common vulnerabilities like XSS, CSRF, and SQL injection.

The Security Implementation Guide is a specialized Claude Code skill designed to integrate robust security best practices directly into the development workflow. It provides standardized implementations for critical tasks such as secure password hashing with bcrypt, input sanitization via DOMPurify, rate limiting for API endpoints, and comprehensive CSRF protection. This skill is essential for developers building production-grade web applications who need to ensure their codebases adhere to modern security standards and protect against the OWASP Top 10 vulnerabilities.

主要功能

01Cross-Site Scripting (XSS) and CSRF protection implementations

022 GitHub stars

03Secure input validation and sanitization using DOMPurify

04SQL injection prevention via parameterized query patterns

05Automated Content Security Policy (CSP) header configuration

06Robust authentication workflows including secure password hashing and rate limiting

使用场景

01Hardening an existing API against rate-limiting and injection attacks

02Securing a new user registration and login system

03Implementing modern security headers and sanitization for a React application

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add organvm-iv-taxis/a-i--skills security-implementation-guide

For use in Claude.ai and ChatGPT

Download Skill