security-review-owasp-third-party-payment-gateway-integration

Community

Secure payment integrations faster

Authorsjinks
Version1.0.0
Installs0

System Documentation

What problem does it solve?

This Skill helps reviewers find weaknesses in third-party payment gateway integrations that could let attackers tamper with order values, spoof payment completion, replay transactions, or trigger fulfillment without verified payment state.

Core Features & Use Cases

  • Order Integrity Review: Checks that prices, discounts, taxes, currencies, and product details are recalculated on the server from trusted data.
  • Callback and Verification Review: Evaluates webhook signatures, callback authentication, redirect-return handling, and server-to-server confirmation before fulfillment.
  • Replay and Fraud Controls: Assesses idempotency, duplicate transaction handling, logging, and fraud telemetry for suspicious payment activity.

Quick Start

Use the security-review-owasp-third-party-payment-gateway-integration skill to review the payment flow in the selected files and identify any place where untrusted input, callback trust, or fulfillment sequencing could be abused.

Dependency Matrix

Required Modules

None required

Components

Standard package

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: security-review-owasp-third-party-payment-gateway-integration
Download link: https://github.com/sjinks/ai-owasp-skillset/archive/main.zip#security-review-owasp-third-party-payment-gateway-integration

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 537,000+ vetted skills library on demand.