How does it help with secret management?

It guides you on moving hardcoded keys to environment variables and ensures sensitive files are correctly ignored in your version control system.

Can this skill help prevent SQL injection?

Absolutely. It provides specific patterns for parameterized queries and warns against dangerous string concatenation in database operations.

Does this skill support blockchain security?

Yes, it includes specific patterns for Solana blockchain security, including wallet ownership verification and transaction validation.

When should I activate the Security Review skill?

Use this skill whenever you are implementing authentication, handling user inputs, creating new API endpoints, or working with sensitive data like payments and secrets.

Does it include automated security testing examples?

Yes, the skill provides templates for automated security tests covering authentication, authorization, and rate limiting to ensure your defenses are working.

Security Review Pro

Name: Security Review Pro
Author: saar120

bysaar120

0•

安全与测试

Conducts comprehensive security audits and implements best practices for authentication, data protection, and vulnerability prevention.

The Security Review skill empowers developers to build secure-by-default applications by providing specialized guidance on critical security domains. It acts as an automated security architect within Claude, offering expert patterns for secrets management, input validation, SQL injection prevention, and robust authentication. Whether you are building financial integrations, handling sensitive user data, or developing blockchain applications on Solana, this skill ensures your code follows industry-standard security protocols and helps prevent common vulnerabilities like XSS, CSRF, and data leaks through detailed checklists and implementation patterns.

主要功能

01Advanced input validation using schema-based verification and file upload filtering

02Secure authentication, authorization, and Row Level Security (RLS) implementation guides

03Proven prevention patterns for SQL injection, XSS, and CSRF attacks

04Automated hardcoded secrets detection and environment variable migration patterns

05Comprehensive security checklists for production-ready code deployment

060 GitHub stars

使用场景

01Validating and sanitizing complex user inputs to prevent injection attacks

02Conducting pre-deployment security audits for API endpoints and database queries

03Implementing secure user authentication and role-based access control systems

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add saar120/skillgate-registry security-review

For use in Claude.ai and ChatGPT

主要功能

01Advanced input validation using schema-based verification and file upload filtering

02Secure authentication, authorization, and Row Level Security (RLS) implementation guides

03Proven prevention patterns for SQL injection, XSS, and CSRF attacks

04Automated hardcoded secrets detection and environment variable migration patterns

05Comprehensive security checklists for production-ready code deployment

060 GitHub stars

使用场景

01Validating and sanitizing complex user inputs to prevent injection attacks

02Conducting pre-deployment security audits for API endpoints and database queries

03Implementing secure user authentication and role-based access control systems