Stats
Actions
Tags
From f5-core
Provides application security best practices and patterns for authentication, authorization, OWASP Top 10, API security, data protection, and infrastructure.
How this skill is triggered — by the user, by Claude, or both
Slash command
/f5-core:securityThis skill is limited to the following tools:
The summary Claude sees in its skill listing — used to decide when to auto-load this skill
Security knowledge essential for building secure applications,
api-security/api-keys.mdapi-security/cors.mdapi-security/input-validation.mdapi-security/rate-limiting.mdauthentication/jwt-tokens.mdauthentication/mfa.mdauthentication/oauth2-oidc.mdauthentication/passwordless.mdauthentication/session-management.mdauthorization/abac.mdauthorization/access-control.mdauthorization/permissions.mdauthorization/rbac.mdcompliance/gdpr.mdcompliance/pci-dss.mdcompliance/security-audit.mddata-protection/data-masking.mddata-protection/encryption.mddata-protection/hashing.mddata-protection/secrets-management.mdSecurity knowledge essential for building secure applications, protecting user data, and preventing common vulnerabilities.
┌─────────────────────────────────────────────┐
│ Application Security │
│ ┌─────────────────────────────────────────┐│
│ │ Authentication & AuthZ ││
│ │ ┌───────────────────────────────────┐ ││
│ │ │ Input Validation │ ││
│ │ │ ┌─────────────────────────────┐ │ ││
│ │ │ │ Data Protection │ │ ││
│ │ │ └─────────────────────────────┘ │ ││
│ │ └───────────────────────────────────┘ ││
│ └─────────────────────────────────────────┘│
│ Infrastructure Security │
└─────────────────────────────────────────────┘
"Security is not a product, but a process." - Bruce Schneier
Always assume:
| Threat | Primary Defense | Secondary Defense |
|---|---|---|
| SQL Injection | Parameterized queries | Input validation |
| XSS | Output encoding | CSP headers |
| CSRF | CSRF tokens | SameSite cookies |
| Auth bypass | Strong authentication | Session management |
| Data breach | Encryption | Access control |
npx claudepluginhub fujigo-software/f5-framework-claude --plugin f5-coreAuto-discovers security skills for authentication, authorization, input validation, security headers, vulnerability assessment, and secrets management in app security and OWASP tasks.
Provides cross-cutting security guidance covering OWASP standards, threat modeling, authentication, cryptography, supply chain security, and AI security. Use for application security strategy and secure development lifecycle.
Guides application security reviews and implementation covering OWASP Top 10, input validation, auth, secrets management, and antipatterns.