Skill

mcp-security

Enforces 5-layer security for MCP servers and multi-agent pipelines: input validation, prompt injection prevention, SQL/NoSQL validation, user context propagation, and RBAC/ABAC authorization.

Python

SQL

security

npx claudepluginhub jpoutrin/product-forge --plugin security-compliance

Tool Access

This skill uses the workspace's default tool permissions.

Preview

This skill enforces security best practices for MCP servers and multi-agent pipelines.

SKILL.md

Similar Skills

mcp-security

Audits MCP tool handlers and schemas for vulnerabilities like shell injection, arbitrary file access, hardcoded secrets, and unconstrained inputs. Use when defining MCP servers or Claude Code extensions with FS/shell/network access.

soundcheck

webmcp-security

Audits and implements WebMCP security: permission model, honest descriptions, data minimization, input validation, fingerprinting prevention, fraud mitigations. Use for tool implementations.

8 tools

webmcp-browser-agents

protect-mcp-governance

37.1k

Governs AI agent MCP tool calls with Cedar policies for access control, shadow-to-enforce rollout, and Ed25519 signed receipt verification.

antigravity-awesome-skills

Stats

Parent Repo Stars7

Parent Repo Forks0

Last CommitFeb 4, 2026

Actions

View Source View Plugin View on GitHub View README

Help us improve

Share bugs, ideas, or general feedback.

MCP Security Skill

This skill enforces security best practices for MCP servers and multi-agent pipelines.

5-Layer Defense Architecture

Input Validation - Sanitize all user inputs

Prompt Injection Prevention - Detect and block injection attempts

SQL/NoSQL Validation - Prevent query injection

User Context Propagation - Maintain identity through pipeline

Authorization (RBAC/ABAC) - Enforce access controls

Prompt Injection Prevention

# Always validate and sanitize inputs def sanitize_input(user_input: str) -> str: # Remove potential injection patterns # Escape special characters # Limit length pass # Never directly concatenate user input into prompts # ❌ Bad prompt = f"Process this: {user_input}" # ✅ Good prompt = sanitize_input(user_input) validated_prompt = validate_against_schema(prompt)

User Context Propagation

@dataclass class UserContext: user_id: str roles: list[str] permissions: list[str] tenant_id: str # Pass context through all pipeline stages async def process_request(context: UserContext, request: Request): # Validate permissions at each step if not has_permission(context, "read:data"): raise AuthorizationError()

Authorization Patterns

RBAC (Role-Based Access Control)

ROLE_PERMISSIONS = { "admin": ["read", "write", "delete", "admin"], "editor": ["read", "write"], "viewer": ["read"], }

ABAC (Attribute-Based Access Control)

def can_access(user: User, resource: Resource) -> bool: return ( user.department == resource.department and user.clearance >= resource.sensitivity )

Security Checklist

All user inputs validated and sanitized

Prompt injection patterns detected

SQL queries parameterized

User context propagated through pipeline

Authorization checked at each step

Sensitive data encrypted

Audit logging enabled

MCP Security Skill

This skill enforces security best practices for MCP servers and multi-agent pipelines.

5-Layer Defense Architecture

Input Validation - Sanitize all user inputs
Prompt Injection Prevention - Detect and block injection attempts
SQL/NoSQL Validation - Prevent query injection
User Context Propagation - Maintain identity through pipeline
Authorization (RBAC/ABAC) - Enforce access controls

Prompt Injection Prevention

# Always validate and sanitize inputs
def sanitize_input(user_input: str) -> str:
    # Remove potential injection patterns
    # Escape special characters
    # Limit length
    pass

# Never directly concatenate user input into prompts
# ❌ Bad
prompt = f"Process this: {user_input}"

# ✅ Good
prompt = sanitize_input(user_input)
validated_prompt = validate_against_schema(prompt)

User Context Propagation

@dataclass
class UserContext:
    user_id: str
    roles: list[str]
    permissions: list[str]
    tenant_id: str

# Pass context through all pipeline stages
async def process_request(context: UserContext, request: Request):
    # Validate permissions at each step
    if not has_permission(context, "read:data"):
        raise AuthorizationError()

Authorization Patterns

RBAC (Role-Based Access Control)

ROLE_PERMISSIONS = {
    "admin": ["read", "write", "delete", "admin"],
    "editor": ["read", "write"],
    "viewer": ["read"],
}

ABAC (Attribute-Based Access Control)

def can_access(user: User, resource: Resource) -> bool:
    return (
        user.department == resource.department
        and user.clearance >= resource.sensitivity
    )

Security Checklist

All user inputs validated and sanitized
Prompt injection patterns detected
SQL queries parameterized
User context propagated through pipeline
Authorization checked at each step
Sensitive data encrypted
Audit logging enabled