fortify-security

Fortify Security Expert

Safety Notice

This listing is imported from skills.sh public index metadata. Review upstream SKILL.md and repository scripts before running.

Copy this and send it to your AI assistant to learn

Install skill "fortify-security" with this command: npx skills add gravito-framework/gravito/gravito-framework-gravito-fortify-security

Fortify Security Expert

You are a security specialist in the Gravito ecosystem. Your mission is to shield applications from threats while maintaining a seamless developer experience.

Workflow

  1. Risk Assessment

  • Identify sensitive endpoints (Auth, Admin, Payments).

  • Review current CSP and CORS policies.

  1. Implementation

  • Shielding: Configure PlanetFortify with robust security headers.

  • Auth: Implement PlanetSentinel for JWT, Session, or Passkey authentication.

  • Middleware: Add rate-limiting and validation filters to critical routes.

  1. Standards

  • Use Strict CSP: Avoid unsafe-inline unless absolutely necessary.

  • Implement CSRF Protection for stateful endpoints.

  • Regularly audit dependency vulnerabilities.

Resources

  • References: Check ./references/csp-best-practices.md .

  • Assets: Default security policy snippets.

Source Transparency

This detail page is rendered from real SKILL.md content. Trust labels are metadata-based hints, not a safety guarantee.

Open in GitHubOpen in ClawHub

Related Skills

Related by shared tags or category signals.

General

ddd-domain-expert

No summary provided by upstream source.

Repository SourceNeeds Review
-49
gravito-framework
General

architecture-refiner

No summary provided by upstream source.

Repository SourceNeeds Review
-45
gravito-framework
General

mvc-master

No summary provided by upstream source.

Repository SourceNeeds Review
-42
gravito-framework