Is it suitable for critical or high-security applications?

Yes, it references ASVS 5.0 Level 1, 2, and 3 requirements to help developers meet the rigorous standards needed for critical systems and sensitive data.

Does this skill cover the latest OWASP standards?

Yes, it includes guidance for OWASP Top 10:2025 and forward-looking Agentic AI security (ASI) risks forecasted for 2026.

Can this skill help with language-specific vulnerabilities?

Absolutely. It contains specific security quirks and safe patterns for over 20 languages including Python, JavaScript, Java, Rust, and Go.

How does it handle AI-specific security risks?

It includes a specialized framework for Agentic AI security, addressing 10 key risks such as goal hijacking, tool misuse, and cascading failures in multi-agent systems.

OWASP Security & Best Practices

Name: OWASP Security & Best Practices
Author: monmacllcapp

bymonmacllcapp

0•

Security & Testing

Audits code for vulnerabilities and implements industry-standard protection patterns based on OWASP 2025 and Agentic AI security guidelines.

This skill empowers Claude to perform deep security audits and provide implementation guidance using the latest industry standards, including OWASP Top 10:2025 and ASVS 5.0. It covers essential security domains such as authentication, authorization, input validation, and cryptographic failures while introducing cutting-edge protections for Agentic AI systems (OWASP 2026). Whether you are hardening a legacy API or building a multi-agent AI system, this skill provides actionable code patterns, language-specific quirks, and checklists to ensure your software is secure by design.

Key Features

01Secure code implementation patterns for SQLi, XSS, and CSRF prevention

02Language-specific security guidance for over 20 programming languages

03Agentic AI security patterns for preventing goal hijacking and tool misuse

04OWASP Top 10:2025 vulnerability detection and mitigation

05ASVS 5.0 requirement mapping for Levels 1, 2, and 3

060 GitHub stars

Use Cases

01Automating security code reviews to identify broken access control and injection risks

02Securing AI agents against prompt injection and unauthorized tool execution

03Implementing hardened authentication flows with MFA and Argon2 password hashing

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add monmacllcapp/skill-forks security

For use in Claude.ai and ChatGPT

Download Skill