security-review-owasp-transaction-authorization
CommunityCatch auth bypasses before attackers do.
Software Engineering#owasp#security review#privilege escalation#account takeover#trust boundaries#transaction authorization#identity proof
Authorsjinks
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill helps reviewers assess transaction authorization flows for weak identity proof, broken trust propagation, recovery bypasses, and privilege escalation risks.
Core Features & Use Cases
- Security Review Guidance: Evaluates code, configuration, tests, and documentation for account takeover, identity confusion, and authorization failures.
- Flow and Trust Boundary Analysis: Traces credentials, session-adjacent steps, step-up checks, and service-to-service identity context end to end.
- Finding Prioritization: Focuses on confirmed weaknesses with concrete evidence and separates them from review gaps when controls are not visible.
- Use Case: A reviewer can inspect authentication, recovery, and delegated action workflows to determine whether an attacker could impersonate another user or bypass a critical authorization step.
Quick Start
Ask this skill to review the relevant transaction authorization flow, component, or file set and return confirmed findings with evidence, review gaps, passed checks, and an overall assessment.
Dependency Matrix
Required Modules
None requiredComponents
Standard package💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: security-review-owasp-transaction-authorization Download link: https://github.com/sjinks/ai-owasp-skillset/archive/main.zip#security-review-owasp-transaction-authorization Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 536,000+ vetted skills library on demand.