Skip to content
BeClaude

outskill-owasp-security-review

New
8GitHub TrendingGeneralby harshith-vaddiparthy

A Claude Code skill: launch-gate security review against the OWASP Top 10 (2025) for Next.js + Supabase + OpenAI apps, explained in plain language. Built from a verified 25-subagent audit.

Summary

js, Supabase, and OpenAI.

  • It translates complex security findings into plain language, helping developers identify and fix vulnerabilities before deployment.
  • Built from a verified 25-subagent audit, it ensures thorough coverage of the most critical web application risks.

Install & Usage

1
Create the skills directory
mkdir -p .claude/skills
2
Download the skill file
mkdir -p .claude/skills && curl -o .claude/skills/outskill-owasp-security-review.md https://raw.githubusercontent.com/harshith-vaddiparthy/outskill-owasp-security-review/main/SKILL.md
3
Invoke in Claude Code
/outskill-owasp-security-review

Use Cases

Review a Next.js API route for injection vulnerabilities like SQLi or XSS before merging a pull request.
Audit Supabase Row Level Security policies to ensure proper access controls and prevent data leaks.
Check OpenAI API key handling and prompt injection risks in a chatbot feature.
Validate authentication and session management in a Next.js app using Supabase Auth.
Scan for misconfigurations in environment variables or third-party service integrations.
Assess compliance with OWASP Top 10 2025 for a new feature release in a production-bound app.

Usage Examples

1

/outskill-owasp-security-review review the auth flow in pages/api/auth/[...nextauth].ts

2

Run a security audit on my Supabase database schema and RLS policies for the user_profiles table.

3

Check my Next.js app for OWASP Top 10 vulnerabilities, focusing on OpenAI API usage in chat route.

View source on GitHub
securitycode-reviewagent

Security Audits

LicenseUnknownSourceWarnRepositoryPass

Frequently Asked Questions

What is outskill-owasp-security-review?

This skill performs a launch-gate security review against the OWASP Top 10 (2025) for applications built with Next.js, Supabase, and OpenAI. It translates complex security findings into plain language, helping developers identify and fix vulnerabilities before deployment. Built from a verified 25-subagent audit, it ensures thorough coverage of the most critical web application risks.

How to install outskill-owasp-security-review?

To install outskill-owasp-security-review: create the skills directory (mkdir -p .claude/skills), then run: mkdir -p .claude/skills && curl -o .claude/skills/outskill-owasp-security-review.md https://raw.githubusercontent.com/harshith-vaddiparthy/outskill-owasp-security-review/main/SKILL.md. Finally, /outskill-owasp-security-review in Claude Code.

What is outskill-owasp-security-review best for?

outskill-owasp-security-review is a skill categorized under General. It is designed for: security, code-review, agent. Created by harshith-vaddiparthy.

What can I use outskill-owasp-security-review for?

outskill-owasp-security-review is useful for: Review a Next.js API route for injection vulnerabilities like SQLi or XSS before merging a pull request.; Audit Supabase Row Level Security policies to ensure proper access controls and prevent data leaks.; Check OpenAI API key handling and prompt injection risks in a chatbot feature.; Validate authentication and session management in a Next.js app using Supabase Auth.; Scan for misconfigurations in environment variables or third-party service integrations.; Assess compliance with OWASP Top 10 2025 for a new feature release in a production-bound app..