secure-development-lifecycle
Installation
SKILL.md
๐ก๏ธ Secure Development Lifecycle (SDLC) Skill
๐ฏ Purpose
Comprehensive security practices for the entire Software Development Lifecycle (SDLC), ensuring security is built in from inception through maintenance. Integrates classification-driven requirements, AI-augmented development controls, and systematic testing frameworks aligned with Hack23 Secure Development Policy.
๐ Core Security Principles
๐ Security by Design
- ๐ท๏ธ Project Classification: CIA triad, RTO/RPO, business impact analysis
- ๐ก๏ธ Secure Coding Standards: OWASP Top 10 alignment with classification controls
- ๐๏ธ Architecture Documentation: SECURITY_ARCHITECTURE.md + FUTURE_SECURITY_ARCHITECTURE.md
๐ Transparency Through Documentation
- ๐ Living Security Architecture: Real-time documentation with classification controls
- ๐๏ธ Public Security Badges: OpenSSF Scorecard, SLSA, Quality Gate validation
- ๐ Open Development: Demonstrating expertise while maintaining classification