DiscordSign up
SKILLS.SH

senior-security

Comprehensive security toolkit for threat modeling, penetration testing, security auditing, and cryptography implementation. Three core automated scripts: Threat Modeler for scaffolding and best practices, Security Auditor for deep analysis and recommendations, and Pentest Automator for expert-level testing automation Includes reference documentation covering security architecture patterns, penetration testing workflows, and cryptography implementation with code examples and anti-patterns Supports multiple tech stacks across TypeScript, Python, Go, and mobile platforms with integrations for Docker, Kubernetes, AWS, GCP, and Azure Built-in quality checks, performance metrics, and automated fixes with configurable templates for security assessments and compliance auditing

INSTALLATION
npx skills add https://github.com/davila7/claude-code-templates --skill senior-security
Run in your project or agent environment. Adjust flags if your CLI version differs.

SKILL.md

Senior Security

Complete toolkit for senior security with modern tools and best practices.

Quick Start

Main Capabilities

This skill provides three core capabilities through automated scripts:

# Script 1: Threat Modeler

python scripts/threat_modeler.py [options]

# Script 2: Security Auditor

python scripts/security_auditor.py [options]

Script 3: Pentest Automator

python scripts/pentest_automator.py [options]

## Core Capabilities

### 1. Threat Modeler

Automated tool for threat modeler tasks.

**Features:**

- Automated scaffolding

- Best practices built-in

- Configurable templates

- Quality checks

**Usage:**

python scripts/threat_modeler.py <project-path> [options]


### 2. Security Auditor

Comprehensive analysis and optimization tool.

**Features:**

- Deep analysis

- Performance metrics

- Recommendations

- Automated fixes

**Usage:**

python scripts/security_auditor.py <target-path> [--verbose]


### 3. Pentest Automator

Advanced tooling for specialized tasks.

**Features:**

- Expert-level automation

- Custom configurations

- Integration ready

- Production-grade output

**Usage:**

python scripts/pentest_automator.py [arguments] [options]


## Reference Documentation

### Security Architecture Patterns

Comprehensive guide available in `references/security_architecture_patterns.md`:

- Detailed patterns and practices

- Code examples

- Best practices

- Anti-patterns to avoid

- Real-world scenarios

### Penetration Testing Guide

Complete workflow documentation in `references/penetration_testing_guide.md`:

- Step-by-step processes

- Optimization strategies

- Tool integrations

- Performance tuning

- Troubleshooting guide

### Cryptography Implementation

Technical reference guide in `references/cryptography_implementation.md`:

- Technology stack details

- Configuration examples

- Integration patterns

- Security considerations

- Scalability guidelines

## Tech Stack

**Languages:** TypeScript, JavaScript, Python, Go, Swift, Kotlin
**Frontend:** React, Next.js, React Native, Flutter
**Backend:** Node.js, Express, GraphQL, REST APIs
**Database:** PostgreSQL, Prisma, NeonDB, Supabase
**DevOps:** Docker, Kubernetes, Terraform, GitHub Actions, CircleCI
**Cloud:** AWS, GCP, Azure

## Development Workflow

### 1. Setup and Configuration

Install dependencies

npm install

or

pip install -r requirements.txt

Configure environment

cp .env.example .env


### 2. Run Quality Checks

Use the analyzer script

python scripts/security_auditor.py .

Review recommendations

Apply fixes


### 3. Implement Best Practices

Follow the patterns and practices documented in:

- `references/security_architecture_patterns.md`

- `references/penetration_testing_guide.md`

- `references/cryptography_implementation.md`

## Best Practices Summary

### Code Quality

- Follow established patterns

- Write comprehensive tests

- Document decisions

- Review regularly

### Performance

- Measure before optimizing

- Use appropriate caching

- Optimize critical paths

- Monitor in production

### Security

- Validate all inputs

- Use parameterized queries

- Implement proper authentication

- Keep dependencies updated

### Maintainability

- Write clear code

- Use consistent naming

- Add helpful comments

- Keep it simple

## Common Commands

Development

npm run dev

npm run build

npm run test

npm run lint

Analysis

python scripts/security_auditor.py .

python scripts/pentest_automator.py --analyze

Deployment

docker build -t app:latest .

docker-compose up -d

kubectl apply -f k8s/

BrowserAct

Let your agent run on any real-world website

Bypass CAPTCHA & anti-bot for free. Start local, scale to cloud.

Explore BrowserAct Skills →

Related skills

azure-compliance
3/3

Azure compliance scanning, Key Vault expiration auditing, and resource configuration validation. Runs azqr (Azure Quick Review) for comprehensive compliance assessment against best practices across subscriptions and resource groups Monitors Key Vault keys, secrets, and certificates for expiration dates and identifies items without expiration policies Detects orphaned, misconfigured, and non-compliant resources using Resource Graph queries Classifies findings by priority (Critical, High, Medium, Low) with remediation guidance for each issue

Verified authormicrosoft
SKILLS.SH
293K1.1K
2026-05-22
openclaw-secure-linux-cloud
1/3

Use when self-hosting OpenClaw on a cloud server, hardening a remote OpenClaw gateway, choosing between SSH tunneling, Tailscale, or reverse-proxy exposure, or…

xixu-me
SKILLS.SH
150K53
2026-05-22
entra-agent-id
3/3

Provision Microsoft Entra Agent Identity Blueprints, BlueprintPrincipals, and per-instance Agent Identities via Microsoft Graph, and configure OAuth 2.0 token…

Verified authormicrosoft
SKILLS.SH
59.1K1.1K
2026-05-21
firebase-security-rules-auditor
3/3

A skill to evaluate how secure Firestore security rules are. Use this when Firestore security rules are updated to ensure that the generated rules are…

firebase
SKILLS.SH
23.5K292
2026-05-21

Stop writing automation&scrapers

Install the CLI. Run your first Skill in 30 seconds. Scale when you're ready.

Start free
free · no credit card