mcp-security
MCP Security Skill
This skill enforces security best practices for MCP servers and multi-agent pipelines.
5-Layer Defense Architecture
- Input Validation - Sanitize all user inputs
- Prompt Injection Prevention - Detect and block injection attempts
- SQL/NoSQL Validation - Prevent query injection
- User Context Propagation - Maintain identity through pipeline
- Authorization (RBAC/ABAC) - Enforce access controls
Prompt Injection Prevention
# Always validate and sanitize inputs
def sanitize_input(user_input: str) -> str:
# Remove potential injection patterns
# Escape special characters
More from jpoutrin/product-forge
rfc-specification
RFC (Request for Comments) specification writing with objective technical analysis. Use when creating technical specifications, design documents, or architecture proposals that require structured evaluation of options and trade-offs.
11generate-tasks
Convert PRD to structured task list with automatic linking
6brainstorm-solution
Structured brainstorming for technical solutions
5typescript-import-style
Merge-friendly import formatting (one-per-line, alphabetical). Auto-loads when writing TypeScript/JavaScript imports to minimize merge conflicts in parallel development. Enforces consistent grouping and sorting.
5typescript-code-review
TypeScript and React code review guidelines (type safety, React patterns, performance). Auto-loads when reviewing TypeScript/React code.
5zod
Zod schema validation patterns and type inference. Auto-loads when validating schemas, parsing data, validating forms, checking types at runtime, or using z.object/z.string/z.infer in TypeScript.
5