home/categories/security

category focus

Security

Encryption, auth, and vulnerability scanning.

2506 스킬all categories

sorting

stars

current ordering strategy

query

all entries

refine the visible subset

security

skill-permissions

Skill permission analysis, one-time authorization, analyze skill permissions, batch authorization

aiskillstore

testing-security

open

security

security-audit

Security auditing and vulnerability assessment specialist. Use when conducting security reviews, analyzing code for vulnerabilities, performing OWASP assessments, or creating security audit reports.

aiskillstore

testing-security

open

security

Implement server-side validation with allowlists, specific error messages, type checking, and sanitization to prevent security vulnerabilities and ensure data integrity. Use this skill when creating or editing form request classes, when validating API inputs, when implementing validation rules in controllers or services, when writing client-side validation for user experience, when sanitizing user input to prevent injection attacks, when validating business rules, when implementing error message display, or when ensuring consistent validation across all application entry points.

aiskillstore

testing-security

open

security

authentication-logic

Guide to using Better Auth for client and server-side authentication.

aiskillstore

testing-security

open

security

gdpr-data-handling

Implement GDPR-compliant data handling with consent management, data subject rights, and privacy by design. Use when building systems that process EU personal data, implementing privacy controls, or conducting GDPR compliance reviews.

aiskillstore

testing-security

open

security

security-gate

Verify security considerations were addressed before shipping. Issues result in WARNINGS that strongly recommend fixing.

aiskillstore

testing-security

open

security

configuring-better-auth

Implement OAuth 2.1 / OIDC authentication using Better Auth with MCP assistance. Use when setting up a centralized auth server (SSO provider), implementing SSO clients in Next.js apps, configuring PKCE flows, or managing tokens with JWKS verification. Uses Better Auth MCP for guided setup. NOT when using simple session-only auth without OAuth/OIDC requirements.

aiskillstore

testing-security

open

security

crack-hashcat

Advanced password recovery and hash cracking tool supporting multiple algorithms and attack modes. Use when: (1) Performing authorized password auditing and security assessments, (2) Recovering passwords from captured hashes in forensic investigations, (3) Testing password policy strength and complexity, (4) Validating encryption implementations, (5) Conducting security research on cryptographic hash functions, (6) Demonstrating password weakness in penetration testing reports.

aiskillstore

testing-security

open

security

github-oauth-nango-integration

Use when implementing GitHub OAuth + GitHub App authentication with Nango - provides two-connection pattern for user login and repo access with webhook handling

aiskillstore

testing-security

open

security

jwt-auth

Use when implementing JWT authentication in FastAPI or Python projects. Triggers for: token generation, verification middleware, current user extraction, access token creation, token decoding, or role-based auth. NOT for: OAuth2 provider setup, OpenID Connect, or non-Python backends.

aiskillstore

testing-security

open

security

Security validation, vulnerability scanning, and compliance checking.

aiskillstore

testing-security

open

security

mtls-configuration

Configure mutual TLS (mTLS) for zero-trust service-to-service communication. Use when implementing zero-trust networking, certificate management, or securing internal service communication.

aiskillstore

testing-security

open

security

user-module

myfy UserModule for authentication with email/password, OAuth, sessions, and JWT. Use when working with UserModule, BaseUser, OAuth providers, login, registration, password reset, email verification, or user authentication.

psincraian

testing-security

open

security

security-practices

Security practices including secrets management, input validation, SSRF prevention, and production hardening. Use for security-sensitive code.

eser

testing-security

open

security

reviewing-security

OWASP API Security Top 10 (2023) と Rust セキュリティベストプラクティス。脆弱性検出。Use when: セキュリティ、脆弱性、OWASP、認証、認可、監査を依頼された時。

ryuichi1208

testing-security

open

security

neon-auth

Sets up Neon Auth for your application. Configures authentication, creates auth routes, and generates UI components. Use when adding authentication to Next.js, React SPA, or Node.js projects.