Skills

application-security

Installation
SKILL.md

Security

Security is built-in, not bolted-on. Every feature, endpoint, and data flow must consider security implications.

OWASP Top 10 (2025)

# Vulnerability Prevention
1 Broken Access Control Verify permissions server-side, default deny
2 Security Misconfiguration Secure defaults, remove unused features
3 Software Supply Chain Failures SBOM, dependency scanning, signed builds
4 Cryptographic Failures Use TLS, hash passwords (argon2id), encrypt PII
5 Injection Parameterized queries, input validation
6 Insecure Design Threat modeling, security requirements
7 Authentication Failures Strong passwords, MFA, secure session mgmt
8 Software or Data Integrity Verify dependencies, sign releases
9 Logging and Alerting Failures Log security events, set up alerts
10 Mishandling Exceptional Conditions Fail securely, generic errors to clients
Installs
171
Repository
oakoss/agent-skills
GitHub Stars
12
First Seen
Feb 20, 2026
Security Audits
Gen Agent Trust HubPass
SocketPass
SnykPass
application-security — oakoss/agent-skills