security-checklist

Solid

Use this skill when implementing security measures or conducting security audits. Provides OWASP Top 10 mitigations, authentication patterns, input validation strategies, and compliance guidelines. Ensures applications are secure against common vulnerabilities.

AI & Automation 335 stars 29 forks Updated today

Install

View on GitHub

Quality Score: 85/100

Stars 20%
84
Recency 20%
100
Frontmatter 20%
70
Documentation 15%
100
Issue Health 10%
80
License 10%
0
Description 5%
100

Skill Content

# Security Checklist ## Overview This skill provides comprehensive security guidance for building secure applications. Whether performing a security audit, implementing new features, or hardening existing systems, this framework helps identify and mitigate common vulnerabilities. **When to use this skill:** - Conducting security audits or reviews - Implementing authentication and authorization - Validating and sanitizing user input - Handling sensitive data (PII, credentials, payment info) - Ensuring compliance (GDPR, HIPAA, SOC2) - Preparing for security assessments or penetration tests - Reviewing third-party dependencies for vulnerabilities ## Required Tools This skill requires the following tools to be installed on your system: ### For JavaScript/TypeScript Projects - **Node.js 18+** with npm - **Command:** `npm audit` - **Install:** Node.js comes with npm pre-installed ### For Python Projects - **Python 3.8+** with pip - **pip-audit:** Security scanner for Python dependencies - **Install:** `pip install pip-audit` - **Command:** `pip-audit` ### Optional (Advanced Security Scanning) - **Semgrep:** Static analysis tool - **Install (macOS):** `brew install semgrep` - **Install (pip):** `pip install semgrep` - **Command:** `semgrep --config=auto .` - **Bandit:** Python security linter - **Install:** `pip install bandit` - **Command:** `bandit -r .` - **TruffleHog:** Secrets detection - **Install (macOS):** `brew install trufflesecurity/trufflehog/tr...

Details

Author
aiskillstore
Repository
aiskillstore/marketplace
Created
5 months ago
Last Updated
today
Language
Python
License
None

Similar Skills

Semantically similar based on skill content — not just same category

AI & Automation Solid

security-checklist

Pre-deployment security audit for web applications, organized by OWASP Top 10:2025 categories. Use when reviewing code before shipping, auditing an existing application, or when users mention "security review," "ready to deploy," "going to production," or express concern about vulnerabilities. Covers access control, supply chain, cryptography, injection, auth, integrity, logging, and exception handling.

234 Updated yesterday
jamditis
API & Backend Listed

security-sentinel

Use when working with authentication, API routes, user input, or sensitive data. Audits code for security vulnerabilities based on OWASP Top 10. Critical for payment processing, auth systems, and data handling.

335 Updated today
aiskillstore
AI & Automation Listed

security-audit

Audit code and dependencies for security vulnerabilities. Use when reviewing PRs, checking dependencies, preparing for deployment, or when user mentions security, vulnerabilities, or audit.

0 Updated today
israel7852
AI & Automation Listed

security-audit

Detect common security vulnerabilities in code. Covers OWASP patterns, SQL injection, bare excepts, shell injection. Framework-agnostic.

335 Updated today
aiskillstore
AI & Automation Solid

security-review

Use this skill when adding authentication, handling user input, working with secrets, creating API endpoints, or implementing payment/sensitive features. Provides comprehensive security checklist and patterns.

199,470 Updated yesterday
affaan-m