Skill

role-database:database-security

Security hardening across all database engines. Authentication (SCRAM, certificate, LDAP, Kerberos), authorization (RBAC, RLS, column-level), encryption at rest and in transit (TDE, TLS/SSL), audit logging (pgAudit, MySQL audit, MongoDB audit), SQL injection prevention, network security, data masking, compliance (PCI DSS, HIPAA, GDPR, SOX). Use when hardening database security, implementing access controls, or meeting compliance requirements.

Install

npx claudepluginhub rnavarych/alpha-engineer --plugin role-database

Tool Access

This skill is limited to using the following tools:

ReadGrepGlobBash

Preview

Load from `references/` based on what's needed:

Supporting Assets

references/auth-authorization.mdreferences/encryption-network-compliance.md

SKILL.md

Similar Skills

skill-lookup

Searches, retrieves, and installs Agent Skills from prompts.chat registry using MCP tools like search_skills and get_skill. Activates for finding skills, browsing catalogs, or extending Claude.

prompts.chat

157.6k

prompt-lookup

Searches prompts.chat for AI prompt templates by keyword or category, retrieves by ID with variable handling, and improves prompts via AI. Use for discovering or enhancing prompts.

prompts.chat

157.6k

agent-harness-construction

Designs and optimizes AI agent action spaces, tool definitions, observation formats, error recovery, and context for higher task completion rates.

everything-claude-code

156.2k

Stats

Parent Repo Stars9

Parent Repo Forks0

Last CommitMar 3, 2026

Actions

View Source View Plugin View on GitHub View README

role-database:database-security

Reference Files

Load from references/ based on what's needed:

references/auth-authorization.md

Authentication methods comparison (SCRAM, certificates, LDAP, IAM) across PostgreSQL, MySQL, MongoDB, Redis. PostgreSQL pg_hba.conf patterns, password policy guidance. RBAC with least-privilege role setup in PostgreSQL. Row Level Security policies (tenant isolation, admin override, FORCE RLS). Column-level security via REVOKE and views. Audit logging: pgAudit config, MySQL Enterprise audit, MongoDB audit filter. Load when: configuring authentication, setting up access controls, or implementing audit logging.

references/encryption-network-compliance.md

TLS/SSL configuration for PostgreSQL and MySQL (TLSv1.3). Encryption at rest comparison table (TDE, WiredTiger, cloud KMS). Column-level encryption with pgcrypto (encrypt/decrypt examples). SQL injection prevention: parameterized queries and defense layers. Network security best practices (private subnet, security groups, PrivateLink). Static and dynamic data masking. Compliance requirements table (PCI DSS, HIPAA, GDPR, SOX, SOC 2). Load when: configuring encryption, hardening network access, or meeting compliance requirements.

Database Security

Reference Files

Load from references/ based on what's needed: