From e5f09f38bf4f6596bdf0a77b49d62d77b1399de5 Mon Sep 17 00:00:00 2001 From: Agam More Date: Sat, 31 Jan 2026 18:02:24 -0600 Subject: [PATCH] Add owasp-security skill to Security & Web Testing Adds OWASP security skill covering: - OWASP Top 10:2025 quick reference - ASVS 5.0 verification requirements - OWASP Agentic AI Security (2026) ASI01-ASI10 risks - Security code review checklists - Language-specific security quirks for 20+ languages Co-Authored-By: Claude Opus 4.5 --- README.md | 1 + 1 file changed, 1 insertion(+) diff --git a/README.md b/README.md index c0805f5..5bd8fd7 100644 --- a/README.md +++ b/README.md @@ -100,6 +100,7 @@ ## 🛡 Security & Web Testing - [defense-in-depth](https://github.com/obra/superpowers/blob/main/skills/defense-in-depth) - Implement multi-layered testing and security best practices. - [ffuf_claude_skill](https://github.com/jthack/ffuf_claude_skill) - Integrate Claude with FFUF (fuzzing) and analyze results for vulnerabilities. +- [owasp-security](https://github.com/agamm/claude-code-owasp) - OWASP Top 10:2025, ASVS 5.0, and Agentic AI security (2026) with code review checklists, secure patterns, and language-specific quirks for 20+ languages. - [systematic-debugging](https://github.com/obra/superpowers/blob/main/skills/systematic-debugging) - Use when encountering any bug, test failure, or unexpected behavior, before proposing fixes - [Trail of Bits Security Skills](https://github.com/trailofbits/skills) - Security skills for static analysis with CodeQL/Semgrep, variant analysis, code auditing, and fix verification. - [varlock-claude-skill](https://github.com/wrsmith108/varlock-claude-skill) - Secure environment variable management ensuring secrets never appear in Claude sessions, terminals, logs, or git commits.