什么是 security-and-hardening?
在处理用户输入、身份验证、数据存储或外部集成时使用。在构建接受不受信任的数据、管理用户会话或与第三方服务交互的任何功能时使用。 来源:addyosmani/agent-skills。
·security-and-hardening
!
security-and-hardening
✓在处理用户输入、身份验证、数据存储或外部集成时使用。在构建接受不受信任的数据、管理用户会话或与第三方服务交互的任何功能时使用。
如何安装 security-and-hardening
通过命令行快速安装 security-and-hardening AI 技能到你的开发环境
- 打开终端: 打开你的终端或命令行工具(如 Terminal、iTerm、Windows Terminal 等)
- 运行安装命令: 复制并运行以下命令:npx skills add https://github.com/addyosmani/agent-skills --skill security-and-hardening
- 验证安装: 安装完成后,技能将自动配置到你的 AI 编程环境中,可以在 Claude Code、Cursor 或 OpenClaw 中使用
来源:addyosmani/agent-skills。
SKILL.md
查看原文Security-first development practices for web applications. Treat every external input as hostile, every secret as sacred, and every authorization check as mandatory. Security isn't a phase — it's a constraint on every line of code that touches user data, authentication, or external systems.
| "This is an internal tool, security doesn't matter" | Internal tools get compromised. Attackers target the weakest link. | | "We'll add security later" | Security retrofitting is 10x harder than building it in. Add it now. | | "No one would try to exploit this" | Automated scanners will find it. Security by obscurity is not security. |
| "The framework handles security" | Frameworks provide tools, not guarantees. You still need to use them correctly. | | "It's just a prototype" | Prototypes become production. Security habits from day one. |
可引用信息
为搜索与 AI 引用准备的稳定字段与命令。
- 安装命令
npx skills add https://github.com/addyosmani/agent-skills --skill security-and-hardening- 分类
- !安全工具
- 认证
- ✓
- 收录时间
- 2026-02-24
- 更新时间
- 2026-03-10
快速解答
如何安装 security-and-hardening?
打开你的终端或命令行工具(如 Terminal、iTerm、Windows Terminal 等) 复制并运行以下命令:npx skills add https://github.com/addyosmani/agent-skills --skill security-and-hardening 安装完成后,技能将自动配置到你的 AI 编程环境中,可以在 Claude Code、Cursor 或 OpenClaw 中使用
这个 Skill 的源码在哪?
https://github.com/addyosmani/agent-skills