appsec-engineer
OfficialRun secure app design, reviews, and testing
Software Engineering#owasp#threat modeling#prompt injection#application security#api security#llm security#secure code review
AuthorUnitOneAI
Version1.0.0
Installs0
System Documentation
What problem does it solve?
It turns application security work into a repeatable, framework-referenced process that helps engineers produce consistent, auditable findings instead of ad-hoc or hallucinated guidance.
Core Features & Use Cases
- Application-layer engagement bundles for design-time threat modeling, PR-focused secure code review, API security assessment, and AI/LLM feature security evaluation.
- Framework-grounded outputs mapped to OWASP Top 10, OWASP ASVS 4.0.3, OWASP API Security Top 10 (2023), and OWASP Top 10 for LLM Applications.
- Injection-hardened guidance and safe sequencing that keeps threat modeling, validation, and remediation structured across engagement types.
- Use cases: starting a new service, reviewing security-sensitive pull requests, assessing external API exposure, and evaluating LLM/agent features for prompt injection and unsafe agency.
Quick Start
Invoke the appsec-engineer role bundle to run a new application security review sequence by providing your application description, trust boundaries, and current API/code context.
Dependency Matrix
Required Modules
None requiredComponents
Standard package💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: appsec-engineer Download link: https://github.com/UnitOneAI/SecuritySkills/archive/main.zip#appsec-engineer Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.