forge-caddy
CommunityHarden Caddy configs for real production traffic.
Software Engineering#security headers#reverse proxy#caddy#production hardening#json logging#tls acme
Authorf4rkh4d
Version1.0.0
Installs0
System Documentation
What problem does it solve?
Prevents production Caddyfiles from shipping with common security, reliability, and TLS mistakes that turn “it works” into an unsafe deployment.
Core Features & Use Cases
- Production Caddyfile guardrails: Ensures global options (email + admin off), safe defaults, and correct structure (one site block per domain).
- Secure HTTPS and TLS discipline: Avoids ACME staging leaks, requires mandatory email for ACME, and manages on_demand TLS with tenant validation.
- Operational hardening: Adds security header packs, structured JSON logging, reverse_proxy health checks, rate limiting patterns, and safe file_server usage.
Quick Start
Ask the agent to write a production-ready Caddyfile for your domains using forge-caddy’s rules, including global email/admin off, security headers, reverse_proxy health checks, and hardened logging.
Dependency Matrix
Required Modules
None requiredComponents
assetsscripts
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: forge-caddy Download link: https://github.com/f4rkh4d/forge-skill/archive/main.zip#forge-caddy Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.