unicode-security-anti-pattern
CommunitySecure Unicode handling
Software Engineering#security#input validation#normalization#anti-pattern#unicode#confusable characters
Authorigbuend
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill protects against vulnerabilities arising from improper handling of Unicode characters, preventing issues like username spoofing, phishing, and validation bypasses.
Core Features & Use Cases
- Confusable Character Detection: Identifies characters that look alike but are different (e.g., Latin 'a' vs. Cyrillic 'а').
- Normalization: Ensures consistent string representation by handling precomposed vs. combining characters.
- Zero-Width Character Stripping: Removes non-printing characters that can hide malicious content or alter string lengths.
- Bidirectional Text Protection: Mitigates attacks that reorder text display to obfuscate file names or commands.
- Use Case: Securely authenticate users by ensuring that usernames like "admin" and "аdmin" (with a Cyrillic 'a') are treated distinctly or rejected, preventing account takeovers.
Quick Start
Normalize and sanitize the provided username string to prevent Unicode-based attacks.
Dependency Matrix
Required Modules
unicodedatare
Components
referencesscripts
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: unicode-security-anti-pattern Download link: https://github.com/igbuend/grimbard/archive/main.zip#unicode-security-anti-pattern Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 223,000+ vetted skills library on demand.