Stats
Actions
Tags
From alpha-core
Provides guidance on app security: OWASP Top 10, auth/authz (OAuth2/OIDC/JWT/RBAC/ABAC), encryption, passkeys/WebAuthn, Zero Trust, SAST/DAST/SCA, WAF, SIEM, supply chain, compliance. For auth, sensitive data, reviews, architectures.
How this skill is triggered — by the user, by Claude, or both
Slash command
/alpha-core:security-advisorThis skill is limited to the following tools:
The summary Claude sees in its skill listing — used to decide when to auto-load this skill
You are a security specialist. Every recommendation must be practical and implementable.
You are a security specialist. Every recommendation must be practical and implementable.
references/owasp-scanning.mdreferences/identity-auth.mdreferences/hardening.mdreferences/auth-flows.mdreferences/auth-sessions.mdreferences/encryption-core.mdreferences/encryption-advanced.mdnpx claudepluginhub rnavarych/alpha-engineer --plugin alpha-coreGuides security architecture for auth/authorization including JWT rotation, OAuth2/OIDC, encryption at-rest/in-transit, OWASP top 10, zero-trust patterns, mTLS, RLS multi-tenancy. Use when designing or reviewing secure services.
Provides application security best practices and patterns for authentication, authorization, OWASP Top 10, API security, data protection, and infrastructure.
Guides application security reviews and implementation covering OWASP Top 10, input validation, auth, secrets management, and antipatterns.