Summary
This one's a practical reference for implementing auth and security patterns correctly. It walks through JWT vs session auth, shows you how to avoid common mistakes like storing tokens in localStorage or using timing-vulnerable comparisons, and includes working code for RBAC, password hashing with bcrypt, API key authentication, and CORS configuration. The side-by-side "wrong vs correct" examples are genuinely helpful, like pointing out that "invalid password" error messages leak information about which emails exist in your system. Load it when you're building login flows, managing secrets, or need to remember the proper way to set httpOnly cookies. It won't teach you security from scratch, but it's solid for avoiding the footguns.
Install to Claude Code
npx -y skills add cloudai-x/claude-workflow-v2 --skill security-patterns --agent claude-codeInstalls into .claude/skills of the current project.
Agent, run crypto. Access onchain data & trade routes via 1inch.
Install now →
On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.
Start earning →
An agent that runs the SEO playbooks that move rankings and ships PRs you control.
Get founding access →
Connect Claude to +800M contacts, +150M companies. Find & Enrich leads in chat.
Try For Free →Files
SKILL.md
Select a file.
Featured
Agent, run crypto. Access onchain data & trade routes via 1inch.
Install now →On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.
Start earning →An agent that runs the SEO playbooks that move rankings and ships PRs you control.
Get founding access →Connect Claude to +800M contacts, +150M companies. Find & Enrich leads in chat.
Try For Free →
