security-review-owasp-identity-propagation-patterns

Community

Find identity and trust-boundary flaws fast.

Authorsjinks
Version1.0.0
Installs0

System Documentation

What problem does it solve?

This Skill helps reviewers detect identity confusion, recovery bypasses, weak challenge flows, and privilege escalation risks in systems that move identity across users, services, and sessions.

Core Features & Use Cases

  • End-to-end trust review: Trace how identity proof, credential handling, and authorization decisions flow through code, configuration, tests, and documentation.
  • Attack-path focus: Prioritize account takeover, broken trust propagation, unsafe fallback paths, and client-controlled claims or headers.
  • Review example: Use this Skill to assess a login, recovery, step-up, or service-to-service handoff and identify where an attacker could impersonate another user or gain unintended privileges.

Quick Start

Ask the skill to review the relevant identity flow, component, or files and return confirmed findings, review gaps, passed checks, and an overall assessment.

Dependency Matrix

Required Modules

None required

Components

Standard package

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: security-review-owasp-identity-propagation-patterns
Download link: https://github.com/sjinks/ai-owasp-skillset/archive/main.zip#security-review-owasp-identity-propagation-patterns

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 536,000+ vetted skills library on demand.