from awesome-claude-notes150
A checklist and practical snippets for securing Spring Boot services: authentication, authorization, input validation, CSRF, secrets management, headers, rate l
Provides actionable best-practice guidance and code examples for securing Java Spring Boot applications. Covers authentication patterns (JWT, sessions), authorization, input validation, SQL injection avoidance, password hashing, CSRF posture, secret management, security headers, CORS, rate limiting and dependency scanning.
Activate this skill when building or reviewing Spring Boot APIs or web apps: adding auth, securing endpoints, validating inputs, configuring CORS/CSRF, or preparing a release where dependency CVE scanning and secrets checks are required.
Useful for agents that can offer code review and generate/modify Java code or configuration (Copilot-style assistants, Claude Code, Codex).
This skill has not been reviewed by our automated audit pipeline yet.
