Summary
A solid security checklist that walks through the basics: secrets management, input validation, SQL injection prevention, auth patterns, XSS, CSRF, and rate limiting. The examples are React/Next.js focused with Supabase and Zod, showing both the wrong way (hardcoded API keys, string concatenated SQL) and the right way (environment variables, parameterized queries). It's built as a pre-deployment review rather than a real-time analyzer, so you'd run through it manually before shipping. The coverage is practical but not exhaustive. Missing some newer concerns like dependency vulnerabilities or supply chain attacks, but it hits the common mistakes that actually cause breaches in typical web apps.
Install to Claude Code
npx -y skills add sickn33/antigravity-awesome-skills --skill cc-skill-security-review --agent claude-codeInstalls into .claude/skills of the current project.
Agent, run crypto. Access onchain data & trade routes via 1inch.
Install now →
On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.
Start earning →
Connect Claude to +800M contacts, +150M companies. Find & Enrich leads in chat.
Try For Free →
Integrate web data into your AI product. One API to scrape website & brand data.
Get API Key Now →Files
SKILL.md
Select a file.
Featured
Agent, run crypto. Access onchain data & trade routes via 1inch.
Install now →On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.
Start earning →Connect Claude to +800M contacts, +150M companies. Find & Enrich leads in chat.
Try For Free →Integrate web data into your AI product. One API to scrape website & brand data.
Get API Key Now →
