authz-security
OfficialAudit and enforce authorization in code.
Software Engineering#authorization#code-review#access-control#security-review#multitenancy#bfla#bola
Authorsuperagent-ai
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This skill turns the model into an authorization reviewer. Read the routes, controllers, resolvers, and data models; walk the detection passes; report each missing access-control check with a severity and a concrete, framework-correct fix. No tools to install, no app to run, no credentials — the analysis is the model reading the code.
Core Features & Use Cases
- Walks code to identify BOLA/BFLA/mass-assignment gaps across REST, GraphQL, and nested resources in multiple stacks.
- Produces framework-specific fix guidance, including owner checks, centralized policy usage, and denied-by-default patterns.
- Provides a per-endpoint checklist structure and reference to frameworks guidelines for reproducible audits.
Quick Start
Review a codebase and generate static findings with concrete fixes for authorization gaps.
Dependency Matrix
Required Modules
None requiredComponents
Standard package💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: authz-security Download link: https://github.com/superagent-ai/skills/archive/main.zip#authz-security Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 510,000+ vetted skills library on demand.