Secrets

The insecure-defaults skill helps spot fail-open configuration patterns that let software run with unsafe settings instead of stopping. Use it for a Security Audit of production code, deployment configs, and secret-handling logic to catch weak auth, hardcoded secrets, and permissive defaults.

azure-keyvault-secrets-rust is a Rust skill for Azure Key Vault Secrets. It covers storing, reading, updating, deleting, and listing secret metadata with the official azure_security_keyvault_secrets crate, plus authentication, AZURE_KEYVAULT_URL setup, and practical guidance for backend development.

azure-keyvault-py is a Python Azure Key Vault skill for secrets, keys, and certificates. It helps backend development teams choose the right client, install the right packages, configure Azure credentials and environment variables, and follow a practical azure-keyvault-py guide for secure runtime access.

azure-security-keyvault-secrets-java is a Java Azure Key Vault Secrets skill for backend development. Use it to install dependencies, set up authentication, and generate code for storing, reading, updating, deleting, and recovering secrets in Azure-backed services.

The credentials skill helps locate, identify, and normalize API keys and environment variables from centralized access files like Access.txt. Use it for credentials install, credentials usage, and workflow setup when secrets are stored in one place and need clear env var mapping.

varlock is a secure environment variable management skill for Claude Code workflows. It helps you work with secrets, API keys, credentials, and .env files without exposing values in terminals, logs, diffs, or model context. Use varlock when you need safe validation, masking, and guarded access control workflows.

detecting-supply-chain-attacks-in-ci-cd skill for auditing GitHub Actions and CI/CD configs. It helps find unpinned actions, script injection, dependency confusion, secret exposure, and risky permissions for Security Audit workflows. Use it to review a repo, workflow file, or suspicious pipeline change with clear findings and fixes.

security skill for OWASP patterns, secrets management, and security testing. Use it to review auth, user input, API keys, env vars, and repo hygiene, especially for Security Audit work.

azure-keyvault-secrets-ts helps backend developers manage Azure Key Vault secrets in TypeScript with @azure/keyvault-secrets and @azure/identity. Use it to install, configure auth, and safely store, read, update, delete, list, or recover secrets in Node.js services.