بنقرة واحدة
incident-response
Security incident detection, analysis, containment, and recovery per NIST SP 800-61r2 and ISO 27035
التثبيت باستخدام Codex أو Claude انسخ هذا Prompt والصقه في Codex أو Claude أو مساعد آخر ليراجع صفحة Skill ويثبّتها لك.
القائمة
Security incident detection, analysis, containment, and recovery per NIST SP 800-61r2 and ISO 27035
التثبيت باستخدام Codex أو Claude انسخ هذا Prompt والصقه في Codex أو Claude أو مساعد آخر ليراجع صفحة Skill ويثبّتها لك.
استنادا إلى تصنيف SOC المهني
C4 architecture model, security architecture, Mermaid diagrams, SECURITY_ARCHITECTURE.md, and comprehensive documentation per Hack23 Secure Development Policy
AI-augmented development controls, GitHub Copilot governance, LLM security, AI-generated code review per Hack23 Secure Development Policy
EU AI Act compliance, OWASP LLM security, responsible AI practices for parliamentary data and MCP server applications
Enforce code quality with ESLint, TypeScript strict mode, Knip unused detection, and quality gates for MCP servers
ISO 27001, NIST CSF 2.0, CIS Controls v8.1, EU CRA compliance mapping, multi-standard alignment per Hack23 ISMS policies
Contribution process with PR workflow, code review standards, commit conventions, and open source best practices
| name | incident-response |
| description | Security incident detection, analysis, containment, and recovery per NIST SP 800-61r2 and ISO 27035 |
| license | Apache-2.0 |
Establish procedures for detecting, analyzing, containing, and recovering from security incidents affecting MCP server projects.
| Severity | Examples | Response Time |
|---|---|---|
| 🔴 Critical | Secret exposure, RCE vulnerability | 4 hours |
| 🟠 High | Authentication bypass, data exposure | 24 hours |
| 🟡 Medium | XSS, CSRF, moderate vulnerability | 72 hours |
| 🟢 Low | Information disclosure, minor issues | 1 week |
# If secret exposed
# 1. Rotate immediately
# 2. Revoke old credentials
# 3. Review access logs
# If vulnerable dependency
npm audit fix
# or pin to safe version
npm install package@safe-version
Core policies:
Supporting policies: