@alirezarezvani/security-guidance

PreToolUse security-anti-pattern hook for Claude Code. Catches 12 common security risks (command injection, XSS, SQL injection, unsafe deserialization, GitHub Actions workflow injection, eval/new Function code injection) BEFORE the Edit/Write/MultiEdit operation completes. Session-state caching prevents duplicate warnings on the same file+rule combo. Stdlib only — no dependencies. Use when you want a safety net during Claude Code sessions that touch security-sensitive code (auth, payments, user input handling, IaC). Disable with ENABLE_SECURITY_REMINDER=0 if you need to perform a verified-safe operation that would otherwise trip a pattern. Triggers — "add security hook", "block unsafe code", "detect command injection before write", "prevent SQL injection patterns", "security warning hook".

View in AI SkillSafe app
0 downloads
0 stars
0 demos
SKILL.md

Embed badges

Add these to your README to show the skill's verification status.

SkillSafe verified badge
Verified badge
[![SkillSafe verified badge](https://api.skillsafe.ai/v1/badge/@alirezarezvani/security-guidance/verified)](https://skillsafe.ai/skill/@alirezarezvani/security-guidance/)
Installs badge
Installs badge
[![Installs badge](https://api.skillsafe.ai/v1/badge/@alirezarezvani/security-guidance/installs)](https://skillsafe.ai/skill/@alirezarezvani/security-guidance/)
Scan badge
Scan badge
[![Scan badge](https://api.skillsafe.ai/v1/badge/@alirezarezvani/security-guidance/scan)](https://skillsafe.ai/skill/@alirezarezvani/security-guidance/)
Eval pass rate badge
Eval pass rate
[![Eval pass rate badge](https://api.skillsafe.ai/v1/badge/@alirezarezvani/security-guidance/eval)](https://skillsafe.ai/skill/@alirezarezvani/security-guidance/)