원클릭으로 Manus에서 모든 스킬 실행

application-security

OWASP Top 10 with code examples, SAST/DAST tools, dependency scanning, CSP headers, and input validation patterns. Use when hardening applications, reviewing security posture, or implementing defensive coding practices.

Manus에서 실행

스타69

포크16

업데이트2026년 2월 28일 23:23

출처

travisjneuman

travisjneuman/.claude

GitHub 저장소 열기 Creator 저장소 보기

설치 명령

다운로드

Manus에서 실행

관련 직업SOC

SOC 직업 분류 기준

정보 보안 분석가컴퓨터 및 수학직·SOC 15-1212

SKILL.md

readonly

이 저장소의 다른 Skills

같은 저장소

ar-vr-xr

travisjneuman/.claude

AR/VR/XR development with Unity XR, WebXR, ARKit, ARCore, Meta Quest SDK, and spatial computing. Use when building augmented reality, virtual reality, mixed reality applications, or spatial experiences.

2026-03-2869

blockchain-web3

travisjneuman/.claude

Solidity smart contracts, Web3 development, DeFi protocols, NFTs, EVM chains, Hardhat/Foundry tooling, and blockchain security. Use when writing smart contracts, building dApps, auditing contract security, or integrating Web3 wallets.

2026-03-2869

compliance-engineering

travisjneuman/.claude

SOC2, HIPAA, GDPR, PCI-DSS, FedRAMP compliance implementation in code. Audit logging, data encryption, access controls, privacy by design, and regulatory requirement mapping. Use when implementing compliance controls, preparing for audits, or building privacy-compliant systems.

2026-03-2869

data-engineering

travisjneuman/.claude

ETL/ELT pipelines, data warehousing (BigQuery, Snowflake, Redshift), stream processing (Kafka, Spark Streaming), orchestration (Airflow, Dagster, Prefect), dbt transformations, and data lake architecture. Use when building data pipelines, designing warehouse schemas, or implementing real-time data processing.

2026-03-2869

devex-sdk-design

travisjneuman/.claude

Developer experience (DX) engineering, SDK design patterns, API ergonomics, CLI tooling design, documentation-driven development, and developer onboarding. Use when designing SDKs, improving API ergonomics, building developer tools, or creating developer documentation.

2026-03-2869

edge-computing

travisjneuman/.claude

Edge computing with Cloudflare Workers, Deno Deploy, Bun, Vercel Edge Functions, AWS Lambda@Edge, and edge databases (Turso, D1, DynamoDB Global Tables). Use when building low-latency edge applications, edge-side rendering, or globally distributed compute.

2026-03-2869

Tool	Language	Usage
ESLint security plugins	JS/TS	`eslint-plugin-security`, `@microsoft/eslint-plugin-sdl`
Semgrep	Multi	`semgrep --config=auto .`
Bandit	Python	`bandit -r src/`
gosec	Go	`gosec ./...`
cargo-audit	Rust	`cargo audit`

Tool	Purpose	Usage
OWASP ZAP	Web app scanning	Proxy-based scanner, API scan mode
Nuclei	Vulnerability scanning	Template-based scanner
Burp Suite	Manual + automated	Professional penetration testing

Tool	Language	Usage
ESLint security plugins	JS/TS	`eslint-plugin-security`, `@microsoft/eslint-plugin-sdl`
Semgrep	Multi	`semgrep --config=auto .`
Bandit	Python	`bandit -r src/`
gosec	Go	`gosec ./...`
cargo-audit	Rust	`cargo audit`

Tool	Purpose	Usage
OWASP ZAP	Web app scanning	Proxy-based scanner, API scan mode
Nuclei	Vulnerability scanning	Template-based scanner
Burp Suite	Manual + automated	Professional penetration testing

application-security

Application Security Skill

OWASP Top 10 (2021) with Code Examples

A01: Broken Access Control

A02: Cryptographic Failures

A03: Injection

A07: Cross-Site Scripting (XSS)

Content Security Policy (CSP)

Recommended Headers

SAST/DAST Tooling

Static Analysis (SAST)

Dynamic Analysis (DAST)

Dependency Scanning

Input Validation Patterns

Server-Side Validation (Always Required)

Rate Limiting

Security Checklist

Related Resources

Application Security Skill

OWASP Top 10 (2021) with Code Examples

A01: Broken Access Control

A02: Cryptographic Failures

A03: Injection

A07: Cross-Site Scripting (XSS)

Content Security Policy (CSP)

Recommended Headers

SAST/DAST Tooling

Static Analysis (SAST)

Dynamic Analysis (DAST)

Dependency Scanning

Input Validation Patterns

Server-Side Validation (Always Required)

Rate Limiting

Security Checklist

Related Resources

name	application-security
description	OWASP Top 10 with code examples, SAST/DAST tools, dependency scanning, CSP headers, and input validation patterns. Use when hardening applications, reviewing security posture, or implementing defensive coding practices.