From sumik
REQUIRED after all code implementations. Automatically load when implementation is complete to run CodeGuard security check. Covers input validation, secrets management, OWASP top 10 countermeasures, authentication/authorization patterns, web penetration testing (reconnaissance, attack techniques, bypass methods), and serverless security (IAM/storage/functions across AWS/GCP/Azure, 17 threat categories, supply chain attacks). Use when implementing any code, handling external input, or developing serverless applications (Lambda, Cloud Run, Azure Functions). For dynamic authorization model design (ABAC/ReBAC/Cedar), use implementing-dynamic-authorization instead. For organizational AI development security strategy (trust frameworks, governance, AI-BOM), use securing-ai-development instead. For security logging patterns and compliance logging, use implementing-observability.
npx claudepluginhub sumik5/sumik-claude-plugin --plugin sumikThis skill uses the workspace's default tool permissions.
詳細な手順・ガイドラインは `INSTRUCTIONS.md` を参照してください。
INSTRUCTIONS.mdreferences/ADVANCED-TOPICS.mdreferences/ATTACK-TECHNIQUES.mdreferences/AUTH-SECRETS.mdreferences/INPUT-VALIDATION.mdreferences/OWASP-TOP10.mdreferences/RECONNAISSANCE.mdreferences/SECURE-HEADERS.mdreferences/SL-AWS-IAM.mdreferences/SL-AWS-LAMBDA.mdreferences/SL-AZURE-FUNCTIONS.mdreferences/SL-CODE-ANALYSIS.mdreferences/SL-GCP-COMPUTE.mdreferences/SL-GCP-STORAGE.mdreferences/SL-SERVERLESS-GUIDE.mdreferences/SL-THREATS.mdGuides Next.js Cache Components and Partial Prerendering (PPR) with cacheComponents enabled. Implements 'use cache', cacheLife(), cacheTag(), revalidateTag(), static/dynamic optimization, and cache debugging.
Guides building MCP servers enabling LLMs to interact with external services via tools. Covers best practices, TypeScript/Node (MCP SDK), Python (FastMCP).
Generates original PNG/PDF visual art via design philosophy manifestos for posters, graphics, and static designs on user request.
詳細な手順・ガイドラインは INSTRUCTIONS.md を参照してください。