一键导入
security-threat-checklist
Apply this skill for ALL security-relevant work: reviewing or writing code, designing architecture, implementing auth, handling secrets, deploying contracts, building APIs, or doing infra changes. Trigger whenever the task touches: auth/login, payments/withdrawals, contracts, API endpoints, secrets/config, database writes, admin operations, upgradeability, indexer/replay logic, or frontend that talks to wallets. Also trigger when user asks about "is this secure?", "security review", "threat model", or "what could go wrong?". When in doubt, apply this skill — security is cheaper before shipping.
用 Codex 或 Claude 帮你安装 复制这段 Prompt,粘贴到 Codex、Claude 或其他助手里,让它检查 Skill 页面并帮你完成安装。