web-security
// OWASP Top 10, security headers, CSP, XSS prevention, and vulnerability prevention.
$ git log --oneline --stat
stars:384
forks:73
updated:March 4, 2026
SKILL.mdreadonly
SKILL.md Frontmatter
nameweb-security
descriptionOWASP Top 10, security headers, CSP, XSS prevention, and vulnerability prevention.
allowed-toolsRead, Write, Edit, Bash, Glob, Grep
Web Security Skill
Expert assistance for web application security.
Capabilities
- Implement security headers
- Configure CSP
- Prevent XSS/CSRF
- Secure authentication
- Handle sensitive data
Security Headers
// Next.js
const securityHeaders = [
{ key: 'X-DNS-Prefetch-Control', value: 'on' },
{ key: 'Strict-Transport-Security', value: 'max-age=63072000; includeSubDomains' },
{ key: 'X-XSS-Protection', value: '1; mode=block' },
{ key: 'X-Frame-Options', value: 'SAMEORIGIN' },
{ key: 'X-Content-Type-Options', value: 'nosniff' },
{ key: 'Referrer-Policy', value: 'origin-when-cross-origin' },
];
Target Processes
- security-audit
- security-implementation
- owasp-compliance