security-review-owasp-oauth

Community

Review OAuth flows for takeover risks

Authorsjinks
Version1.0.0
Installs0

System Documentation

What problem does it solve?

This Skill helps reviewers find OAuth design and implementation flaws that can lead to account takeover, identity confusion, privilege escalation, or broken trust propagation.

Core Features & Use Cases

  • Reviews login, recovery, step-up, and session-adjacent OAuth flows for weak identity proof and unsafe fallback paths.
  • Checks how identity and authorization context moves across services, background jobs, and delegated actions.
  • Supports code, configuration, tests, documentation, and operational controls with evidence-based findings rather than generic advice.

Quick Start

Use the security-review-owasp-oauth skill to review the attached OAuth flow and call out confirmed weaknesses in identity proof, recovery, trust propagation, and privilege enforcement.

Dependency Matrix

Required Modules

None required

Components

Standard package

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: security-review-owasp-oauth
Download link: https://github.com/sjinks/ai-owasp-skillset/archive/main.zip#security-review-owasp-oauth

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 536,000+ vetted skills library on demand.