secure-headers-csp-builder
CommunitySecure your site with smart CSP.
AuthorCamilo8902
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill helps implement robust security headers and a Content Security Policy (CSP) for web applications, preventing common attacks like XSS and clickjacking, with a safe, phased rollout strategy.
Core Features & Use Cases
- Security Headers: Automatically adds essential headers like
X-Frame-Options,X-Content-Type-Options,Referrer-Policy, andStrict-Transport-Security. - Content Security Policy (CSP): Configures a CSP to control which resources (scripts, styles, images, etc.) are allowed to load, significantly reducing the attack surface.
- Safe Rollout: Implements CSP first in
report-onlymode to catch violations without breaking the site, followed by a gradual enforcement rollout. - Use Case: A developer needs to harden their Express.js application against cross-site scripting (XSS) and other injection attacks. They can use this Skill to generate and apply a comprehensive set of security headers and a well-defined CSP.
Quick Start
Use the secure-headers-csp-builder skill to add security headers and a report-only CSP to your Express application.
Dependency Matrix
Required Modules
None requiredComponents
scriptsreferencesassets
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: secure-headers-csp-builder Download link: https://github.com/Camilo8902/GabyCosmetics/archive/main.zip#secure-headers-csp-builder Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 223,000+ vetted skills library on demand.