security-review-owasp-identity-propagation-patterns
CommunityFind identity and trust-boundary flaws fast.
Software Engineering#authorization#authentication#owasp#security review#identity#account takeover#trust boundary
Authorsjinks
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill helps reviewers detect identity confusion, recovery bypasses, weak challenge flows, and privilege escalation risks in systems that move identity across users, services, and sessions.
Core Features & Use Cases
- End-to-end trust review: Trace how identity proof, credential handling, and authorization decisions flow through code, configuration, tests, and documentation.
- Attack-path focus: Prioritize account takeover, broken trust propagation, unsafe fallback paths, and client-controlled claims or headers.
- Review example: Use this Skill to assess a login, recovery, step-up, or service-to-service handoff and identify where an attacker could impersonate another user or gain unintended privileges.
Quick Start
Ask the skill to review the relevant identity flow, component, or files and return confirmed findings, review gaps, passed checks, and an overall assessment.
Dependency Matrix
Required Modules
None requiredComponents
Standard package💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: security-review-owasp-identity-propagation-patterns Download link: https://github.com/sjinks/ai-owasp-skillset/archive/main.zip#security-review-owasp-identity-propagation-patterns Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 536,000+ vetted skills library on demand.