Agent skills
security-practices

Agent skill

security-practices

Security practices including secrets management, input validation, SSRF prevention, and production hardening. Use for security-sensitive code.

View SKILL.md on GitHub Repository

Stars 163

Forks 31

Install this agent skill to your Project

npx add-skill https://github.com/majiayu000/claude-skill-registry/tree/main/skills/development/security-practices

SKILL.md

security-practices

Quick Start

All secrets in environment variables (never in config files)
Validate inputs at system boundaries
Sanitize error responses (no stack traces in production)
Use HTTPS for all external connections

Key Principles

Environment variables for all secrets
SSRF prevention (block internal IP ranges)
Development vs Production mode separation
Rigorous input validation

References

See rules.md for complete conventions.

Maintainer

majiayu000 Core maintainer

Source details

Full Name: majiayu000/claude-skill-registry
Branch: main
Path in repo: skills/development/security-practices
License: MIT License

Join Our Newsletter

Stay updated with the latest AI tools, news, and offers by subscribing to our weekly newsletter.

Didn't find tool you were looking for?