security-review-owasp-third-party-payment-gateway-integration
CommunitySecure payment integrations faster
Software Engineering#owasp#idempotency#payment-security#fraud-detection#security-review#webhook-verification#gateway-integration
Authorsjinks
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill helps reviewers find weaknesses in third-party payment gateway integrations that could let attackers tamper with order values, spoof payment completion, replay transactions, or trigger fulfillment without verified payment state.
Core Features & Use Cases
- Order Integrity Review: Checks that prices, discounts, taxes, currencies, and product details are recalculated on the server from trusted data.
- Callback and Verification Review: Evaluates webhook signatures, callback authentication, redirect-return handling, and server-to-server confirmation before fulfillment.
- Replay and Fraud Controls: Assesses idempotency, duplicate transaction handling, logging, and fraud telemetry for suspicious payment activity.
Quick Start
Use the security-review-owasp-third-party-payment-gateway-integration skill to review the payment flow in the selected files and identify any place where untrusted input, callback trust, or fulfillment sequencing could be abused.
Dependency Matrix
Required Modules
None requiredComponents
Standard package💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: security-review-owasp-third-party-payment-gateway-integration Download link: https://github.com/sjinks/ai-owasp-skillset/archive/main.zip#security-review-owasp-third-party-payment-gateway-integration Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 537,000+ vetted skills library on demand.