Vibe Index
🎯

security-audit

🎯Skill

from decebals/claude-code-java

VibeIndex|
What it does
|

Java security audit checklist covering OWASP Top 10, input validation, injection prevention, and secure coding practices. Works with Spring, Quarkus, Jakarta EE, and plain Java.

πŸ“¦

Same repository

decebals/claude-code-java(18 items)

security-audit

Installation

Vibe Index InstallInstalls to .claude/skills/
npx vibeindex add decebals/claude-code-java --skill security-audit
skills.sh Install⚠ Installs to .agents/skills/
npx skills add decebals/claude-code-java --skill security-audit
Manual InstallCopy SKILL.md content and save to the path below
~/.claude/skills/security-audit/SKILL.md

SKILL.md

112Installs
-
AddedMar 6, 2026
View on GitHubBack to Skills

More from this repository10

🎯
java-code-review🎯Skill

"review this code", "check this PR". Part of decebals/claude-code-java.

🎯
clean-code🎯Skill

A collection of reusable Claude Code skills for Java developers, providing token-efficient workflows for code reviews, testing, commits, architecture decisions, and other common Java/Maven development tasks.

🎯
design-patterns🎯Skill

A reusable Claude Code skill for Java developers that provides structured workflows for applying design patterns, conducting code reviews, testing, and making architecture decisions, with a focus on token efficiency and reproducible patterns in Java/Maven projects.

🎯
solid-principles🎯Skill

A Java skill that provides a comprehensive SOLID principles checklist with code examples for reviewing and refactoring class design. Covers Single Responsibility, Open/Closed, Liskov Substitution, Interface Segregation, and Dependency Inversion with violation examples and refactored solutions.

🎯
spring-boot-patterns🎯Skill

An agent skill providing Spring Boot best practices and patterns for creating controllers, services, repositories, REST APIs, exception handling, JPA entity design, and project structure following standard Java conventions.

🎯
java-migration🎯Skill

Guide for upgrading Java projects between major versions (8 to 11 to 17 to 21 to 25), helping modernize legacy Java projects with version-specific migration steps.

🎯
concurrency-review🎯Skill

Reviews Java concurrency code for thread safety, race conditions, deadlocks, and modern patterns including Virtual Threads, CompletableFuture, and @Async. Helps catch timing-dependent bugs before they reach production by validating shared state access and synchronization.

🎯
architecture-review🎯Skill

Analyzes Java project architecture at the macro level including package structure, module boundaries, dependency direction, and layering to evaluate clean architecture principles compliance.

🎯
performance-smell-detection🎯Skill

Detects potential code-level performance smells in Java covering streams, collections, boxing, regex, and object creation patterns. Provides a severity-ranked checklist with modern Java 21/25 context, emphasizing measurement over premature optimization.

🎯
api-contract-review🎯Skill

Audits REST API design for HTTP semantics, versioning, backward compatibility, and response consistency, catching issues like wrong HTTP verbs, entity leaks, inconsistent naming, and missing versioning.