alfadocs-security-review

Official

Ship AlfaDocs apps without security leaks.

Authoralfadocs
Version1.0.0
Installs0

System Documentation

What problem does it solve?

This Skill helps teams review an AlfaDocs-connected app before launch and catch security issues that could expose secrets, tokens, patient data, or tenant data.

Core Features & Use Cases

  • Secret and token review: Checks that credentials stay server-side and that the browser never receives AlfaDocs tokens.
  • Tenant and policy review: Verifies Supabase RLS, practice scoping, OAuth callback integrity, and webhook trust boundaries.
  • Safety and compliance review: Flags XSS, weak CSP, logging leaks, and missing consent controls before go-live.
  • Use case: Use it when a Lovable frontend and Supabase backend are about to ship and you need a final security pass that finds blockers, warnings, and exact fixes.

Quick Start

Ask me to perform a pre-ship security review of your AlfaDocs app and report blockers, warnings, and exact file-level fixes.

Dependency Matrix

Required Modules

None required

Components

Standard package

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: alfadocs-security-review
Download link: https://github.com/alfadocs/ai-harness-instructions/archive/main.zip#alfadocs-security-review

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 536,000+ vetted skills library on demand.