Backend 842 installs

Security Review Skill

by affaan-m/everything-claude-code

Use this skill when adding authentication, handling user input, working with secrets, creating API endpoints, or implementing payment/sensitive features.…

Skill content

Comprehensive security checklist and patterns for authentication, input validation, secrets management, and sensitive operations.

- Covers 10 core security domains: secrets management, input validation, SQL injection prevention, authentication/authorization, XSS prevention, CSRF protection, rate limiting, sensitive data exposure, blockchain wallet verification, and dependency security

- Includes code examples for each vulnerability type with clear "never do this" and "always do this" patterns across TypeScript, SQL, and configuration

- Provides pre-deployment checklist with 16 verification items and automated security test examples for authentication, authorization, input validation, and rate limiting

- Supports multiple frameworks and platforms: Next.js, Supabase (with Row Level Security), Express, Solana blockchain, and standard Node.js environments

Security Review Skill

This skill ensures all code follows security best practices and identifies potential vulnerabilities.

When to Activate

- Implementing authentication or authorization

- Handling user input or file uploads

- Creating new API endpoints

- Working with secrets or credentials

- Implementing payment features

- Storing or transmitting sensitive data

- Integrating third-party APIs

Security Checklist

1. Secrets Management