Spring Boot Security Review

Name: Spring Boot Security Review
Rating: 44 (1 reviews)
Author: loulanyue

Trust Score 44/100

A checklist and practical snippets for securing Spring Boot services: authentication, authorization, input validation, CSRF, secrets management, headers, rate l

triggers:spring securityspringboot securityauthnauthzvalidate inputsecrets management

GitHub SKILL.md

What it does

Provides actionable best-practice guidance and code examples for securing Java Spring Boot applications. Covers authentication patterns (JWT, sessions), authorization, input validation, SQL injection avoidance, password hashing, CSRF posture, secret management, security headers, CORS, rate limiting and dependency scanning.

When to use it

Activate this skill when building or reviewing Spring Boot APIs or web apps: adding auth, securing endpoints, validating inputs, configuring CORS/CSRF, or preparing a release where dependency CVE scanning and secrets checks are required.

What's included

Scripts: none in the skill directory, but the SKILL.md contains code snippets and a release checklist.
References: linked original English SKILL and repo navigation; step-by-step snippets for common tasks.
Instructions: concrete code examples for Jwt filters, PasswordEncoder beans, CORS config, rate-limiting filter, and a release checklist.

Compatible agents

Useful for agents that can offer code review and generate/modify Java code or configuration (Copilot-style assistants, Claude Code, Codex).

Audit Summary

Spring Boot Security Review skill - a checklist and snippets for securing Spring Boot services. The skill_md_body was null in the database and the GitHub source URL returns 404, making the actual content completely inaccessible. No scripts were bundled. The description and tags suggest a useful security checklist, but without accessible content the skill cannot be evaluated or used.

Watch Out

Source URL returns 404 - content is inaccessible
skill_md_body is null in database

Notes

Content unreachable: GitHub URL https://github.com/loulanyue/awesome-claude-notes/blob/main/docs/zh-TW/skills/springboot-security/SKILL.md returns 404. The skill appears to be from a repo that no longer exists or has been restructured. Low scores reflect inability to verify any content, not malicious intent.

Information

Repository: awesome-claude-notes
Stars: 150
Installs: 0

Trust Score

Overall44

Security65

Code Quality20

Architecture25

Usefulness45

Related Skills

Reverse Engineer

Provides step-by-step guidance and best practices for binary reverse engineering: static analysis, dynamic tracing, disassembly, and documentation workflows for

Sandbox0 Integration

Guidance and templates for integrating Sandbox0 sandboxing into AI agents — CLI/SDK patterns, templates, volumes, network policy, and deployment choices.

Clerk Vue Patterns

Vue 3 integration patterns for Clerk: composables, router guards, and Pinia auth store integration.

CTF Write-up Generator

Generate a concise, reproducible submission-style CTF writeup with a one-path solution script, metadata, and a short checklist for fast verification.

Cognitive Accessibility Specialist

Audits content, forms and authentication flows for cognitive accessibility (WCAG 2.2 / COGA) and gives prioritized remediation and plain-language guidance.

Azure External Attack Surface Management

Provides expert guidance for Azure External Attack Surface Management (EASM): quotas, configuration, integrations, and exporting inventory to analytics platform

Node.js Best Practices

Guidelines and decision-making for Node.js architecture, runtime, async patterns, security, validation, and testing to inform framework and system choices.

radar — Smart Contract AST & Security Analysis

Multi-framework AST generator and static analysis tool for smart contracts (Rust/Anchor/Stylus and Solidity/Foundry) with a template DSL for writing detection r

Back to Skills