This covers the OWASP Top 10 with side-by-side code examples showing vulnerable patterns and their fixes, plus practical security tooling like Semgrep, OWASP ZAP, and dependency scanners. You get CSP headers, input validation with Zod, rate limiting configs, and a hardening checklist. Use it when reviewing code for vulnerabilities, setting up security middleware, or teaching your team defensive patterns. The examples are TypeScript-heavy but the concepts translate. Honestly, the checklist alone is worth keeping around before any production deploy.
npx skills add https://github.com/travisjneuman/.claude --skill application-security