security-best-practices-expert

Application security specialist covering OWASP top 10, secure coding, and vulnerability prevention

8 stars

Best use case

security-best-practices-expert is best used when you need a repeatable AI agent workflow instead of a one-off prompt.

Application security specialist covering OWASP top 10, secure coding, and vulnerability prevention

Teams using security-best-practices-expert should expect a more consistent output, faster repeated execution, less prompt rewriting.

When to use this skill

  • You want a reusable workflow that can be run more than once with consistent structure.

When not to use this skill

  • You only need a quick one-off answer and do not need a reusable workflow.
  • You cannot install or maintain the underlying files, dependencies, or repository context.

Installation

Claude Code / Cursor / Codex

$curl -o ~/.claude/skills/security-best-practices/SKILL.md --create-dirs "https://raw.githubusercontent.com/sandraschi/advanced-memory-mcp/main/skills/technical/security-best-practices/SKILL.md"

Manual Installation

  1. Download SKILL.md from GitHub
  2. Place it in .claude/skills/security-best-practices/SKILL.md inside your project
  3. Restart your AI agent — it will auto-discover the skill

How security-best-practices-expert Compares

Feature / Agentsecurity-best-practices-expertStandard Approach
Platform SupportNot specifiedLimited / Varies
Context Awareness High Baseline
Installation ComplexityUnknownN/A

Frequently Asked Questions

What does this skill do?

Application security specialist covering OWASP top 10, secure coding, and vulnerability prevention

Where can I find the source code?

You can find the source code on GitHub using the link provided at the top of the page.

SKILL.md Source

# Security Best Practices Expert
> **Status**: ✅ Research complete
> **Last validated**: 2025-11-11
> **Confidence**: 🟢 High — Research backed with Nov 2025 sources – track quarterly updates

## How to use this skill
1. Establish context using [modules/core-guidance.md](modules/core-guidance.md).
2. Embed security into delivery via [modules/secure-sdlc.md](modules/secure-sdlc.md).
3. Harden application layer using [modules/application-security.md](modules/application-security.md).
4. Protect cloud and infrastructure through [modules/cloud-and-infrastructure.md](modules/cloud-and-infrastructure.md).
5. Enhance detection & response with [modules/detection-and-response.md](modules/detection-and-response.md).
6. Maintain regulatory posture via [modules/compliance-and-governance.md](modules/compliance-and-governance.md).
7. Log improvement items in [modules/known-gaps.md](modules/known-gaps.md) and revisit [modules/research-checklist.md](modules/research-checklist.md) quarterly.

## Module overview
- [Core guidance](modules/core-guidance.md) — risk intake, threat landscape alignment, stakeholder mapping.
- [Secure SDLC](modules/secure-sdlc.md) — shift-left, tooling, secure delivery pipelines.
- [Application security](modules/application-security.md) — OWASP mitigations, dependency management, secure coding guidelines.
- [Cloud & infrastructure](modules/cloud-and-infrastructure.md) — IaC scanning, secrets, zero trust networking.
- [Detection & response](modules/detection-and-response.md) — logging, SIEM, incident response.
- [Compliance & governance](modules/compliance-and-governance.md) — policy enforcement, audit readiness.
- [Known gaps](modules/known-gaps.md) — active research backlog.
- [Research checklist](modules/research-checklist.md) — quarterly refresh workflow.

## Research status
- Content aligns with latest OWASP, NIST SSDF, NCCoE guidance, CIS v8.1, CNCF security SIG advisories, and 2025 cloud vendor best-practice updates.
- Next targeted review: 2026-02-15 (or earlier if OWASP publishes Top 10 refresh or NIST finalizes SSDF Rev.1).
- Known gaps reduced to niche areas (SBOM automation workflows, post-quantum crypto roadmap, AI security playbooks).

Related Skills

python-debugging-expert

8
from sandraschi/advanced-memory-mcp

Master debugger for Python code with expertise in common errors, performance issues, and debugging tools

performance-tuning-expert

8
from sandraschi/advanced-memory-mcp

Application performance specialist for profiling, optimization, and scaling strategies

spanish-cooking-expert

8
from sandraschi/advanced-memory-mcp

Comprehensive expertise in Spanish cuisine, from traditional tapas to modern paella techniques, regional specialties, and authentic ingredient selection

genetics-and-genomics-expert

8
from sandraschi/advanced-memory-mcp

Modern genetics expert covering Mendelian genetics, molecular genetics, genomics, and CRISPR technologies

phenomenology-and-existentialism-expert

8
from sandraschi/advanced-memory-mcp

Expert in phenomenological method and existentialist philosophy from Husserl through Sartre, Heidegger, and Merleau-Ponty

nominalism-vs-realism-debate-expert

8
from sandraschi/advanced-memory-mcp

Expert in the medieval problem of universals, covering Platonic realism, Aristotelian moderate realism, and Ockhamist nominalism with modern analytical perspectives

medieval-scholasticism-expert

8
from sandraschi/advanced-memory-mcp

Scholar of medieval philosophy covering Aquinas, Scotus, Ockham, and the synthesis of Aristotelian philosophy with Christian theology

ethics-and-moral-philosophy-expert

8
from sandraschi/advanced-memory-mcp

Comprehensive ethics expert covering virtue ethics, deontology, consequentialism, and applied ethical dilemmas

biblical-exegesis-expert

8
from sandraschi/advanced-memory-mcp

Scholar of biblical interpretation covering Hebrew Bible and New Testament with historical-critical and literary methods

ancient-greek-philosophy-expert

8
from sandraschi/advanced-memory-mcp

Expert in Pre-Socratics, Socrates, Plato, Aristotle, and Hellenistic schools including Stoicism, Epicureanism, and Skepticism

analytic-philosophy-expert

8
from sandraschi/advanced-memory-mcp

Expert in Anglo-American analytic tradition covering logic, language, mind, and epistemology from Frege to contemporary philosophy

tarot-reading-expert

8
from sandraschi/advanced-memory-mcp

Comprehensive tarot expert covering Major and Minor Arcana, spreads, symbolism, and interpretative frameworks from Rider-Waite to Thoth traditions