principle-security
CommunityDesign secure systems before coding.
Software Engineering#authorization#authentication#input-validation#secrets-management#security-by-design#trust-boundary#cryptography-hygiene
Authorlugassawan
Version1.0.0
Installs0
System Documentation
What problem does it solve?
It helps you prevent common security vulnerabilities by making threat thinking, validation, and access control decisions at design time instead of patching them later.
Core Features & Use Cases
- Trust-boundary-driven validation: Identify where data crosses trust levels and enforce validation at the boundary with re-validation on every hop.
- Correct access control design: Separate authentication from authorization, enforce default-deny, and prevent confused-deputy privilege escalation.
- Secure secrets handling: Keep secrets out of source and logs, design rotation from day one, and use placeholder-only examples.
- Defense in depth with least privilege: Apply fail-closed defaults, layered controls, minimal permissions, and smallest attack surface.
- Cryptography misuse resistance: Prefer safe constructions and constant-time comparisons, with attention to key management and secure defaults.
Quick Start
Ask the skill to review your proposed auth, trust boundaries, input validation approach, and secrets/crypto plan and to highlight the highest-risk gaps and design fixes.
Dependency Matrix
Required Modules
None requiredComponents
Standard package💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: principle-security Download link: https://github.com/lugassawan/swe-workbench/archive/main.zip#principle-security Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.