ReddRadar
Agent skill
access-control-patterns
[STUB - Not implemented] Access control auditing with IDOR detection, RBAC/ABAC patterns, and privilege escalation prevention. PROACTIVELY activate for: [TODO: Define on implementation]. Triggers: [TODO: Define on implementation]
Install this agent skill to your Project
npx add-skill https://github.com/majiayu000/claude-skill-registry/tree/main/skills/data/access-control-patterns
SKILL.md
Access Control Patterns
STUB: This skill is not yet implemented
This placeholder preserves the documented plugin structure. See parent plugin README for planned capabilities.
Planned Capabilities
- IDOR Detection: Identify Insecure Direct Object Reference vulnerabilities
- RBAC Patterns: Role-Based Access Control implementation guidance
- ABAC Patterns: Attribute-Based Access Control strategies
- Privilege Escalation Prevention: Detect and prevent unauthorized privilege elevation
- Ownership verification patterns
- Resource authorization best practices
Critical Pattern
// WRONG - no ownership check
const post = await db.posts.findById(params.id);
// CORRECT - verify ownership
const post = await db.posts.findById(params.id);
if (post.authorId !== session.userId) {
throw new ForbiddenError();
}
Implementation Status
- Core implementation
- References documentation
- Output templates
- Integration tests
Recommended Agent Skills
Expand your agent's capabilities with these related and highly-rated skills.
majiayu000/claude-skill-registry
agent-ops-spec
Manage specification documents in .agent/specs/. Use when user provides requirements, acceptance criteria, or feature descriptions that need to be tracked and validated against implementation.
majiayu000/claude-skill-registry
agent-ops-state
Maintain .agent state files. Use at session start, after meaningful steps, and before concluding: read/update constitution/memory/focus/issues/baseline consistently.
majiayu000/claude-skill-registry
agent-ops-spec
Manage specification documents in .agent/specs/. Use when user provides requirements, acceptance criteria, or feature descriptions that need to be tracked and validated against implementation.
majiayu000/claude-skill-registry
agent-ops-testing
Test strategy, execution, and coverage analysis. Use when designing tests, running test suites, or analyzing test results beyond baseline checks.
majiayu000/claude-skill-registry
agent-ops-testing
Test strategy, execution, and coverage analysis. Use when designing tests, running test suites, or analyzing test results beyond baseline checks.
majiayu000/claude-skill-registry
agent-ops-state
Maintain .agent state files. Use at session start, after meaningful steps, and before concluding: read/update constitution/memory/focus/issues/baseline consistently.
Didn't find tool you were looking for?