Configures HTTP security headers to protect against XSS, clickjacking, and MIME sniffing attacks. Use when hardening web applications, passing security audits, or implementing Content Security Policy.
Configures HTTP security headers to protect web applications from common attacks like XSS, clickjacking, and MIME sniffing.
Why this plugin
Provides ready-to-use configurations for security headers, simplifying compliance with security standards and audits. Solves manual header implementation, reducing vulnerabilities and saving development time.
Prerequisites
Requires Claude Code CLI and access to the skills marketplace. No specific API keys needed, but requires a web application to apply headers to.
npx claudepluginhub secondsky/claude-skillsComplete collection of battle-tested Claude Code configs from an Anthropic hackathon winner - agents, skills, hooks, and rules evolved over 10+ months of intensive daily use
Multi-perspective code analysis covering architecture, security, and best practices
XSS prevention, CSRF protection, content security policies, mobile app security, and secure storage patterns
Essential developer skills including Git workflows, SQL optimization, error handling, code review, E2E testing, authentication, debugging, and monorepo management