Skills
.Work. You
Rest

fleet-security

Community

HMAC-secure fleet messaging with replay protection.

Software Engineering#security#fleet#replay-protection#hmac#peer-validation#session-sanitization
Authorsupportersimulator
Version1.0.0
Installs0

System Documentation

What problem does it solve?

All fleet messages can be HMAC-SHA256 signed for authentication, preventing tampering, impersonation, and enabling replay protection. The security layer also provides peer identity validation and session gold sanitization to protect sensitive metadata.

Core Features & Use Cases

  • HMAC-SHA256 Message Signing: Each outbound message includes an _hmac signature and _signed_ts timestamp to ensure integrity and authenticity.
  • Replay Prevention: Messages with aged timestamps are rejected to thwart replay attacks.
  • Peer Identity Validation: Inbound messages are filtered against a known-peers allowlist to block unknown sources.
  • HTTP Peer IP Validation: Public HTTP endpoints validate peer IPs, while loopback remains allowed.
  • Session Gold Sanitization: Before publishing, sensitive fields are stripped, leaving only safe metadata.

Quick Start

Enable HMAC across all fleet nodes and verify the health endpoint to ensure signatures are active.

Dependency Matrix

Required Modules

None required

Components

Standard package

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: fleet-security
Download link: https://github.com/supportersimulator/multi-fleet/archive/main.zip#fleet-security

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.