cwe-284-improper-access-control
OfficialSecure Java access control.
AuthorDevelopersCoffee
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill addresses vulnerabilities in Java applications where access to resources is not properly restricted, potentially leading to unauthorized data access or modification.
Core Features & Use Cases
- Vulnerability Identification: Detects insecure access control patterns in Java code, specifically focusing on CWE-284.
- Deterministic Remediation: Provides a secure, refactored code snippet to fix improper access control issues, often involving Spring Security annotations like
@PreAuthorize. - Use Case: When a security audit or SAST tool flags an endpoint for potential Insecure Direct Object Reference (IDOR), this skill can be used to automatically implement the necessary authorization checks.
Quick Start
Use the cwe-284-improper-access-control skill to secure the provided Java controller code against unauthorized access.
Dependency Matrix
Required Modules
None requiredComponents
references
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: cwe-284-improper-access-control Download link: https://github.com/DevelopersCoffee/java-cwe-security-skills/archive/main.zip#cwe-284-improper-access-control Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 223,000+ vetted skills library on demand.