The Agent Skills Directory

[SAFE]: The skill implements a robust authentication server using the standard python-fido2 and flask libraries.
[SAFE]: Data management is handled securely via parameterized SQLite queries, preventing SQL injection vulnerabilities.
[SAFE]: Sensitive operations, such as session key generation and user handle creation, utilize cryptographically secure random number generators (os.urandom and secrets.token_bytes).
[SAFE]: The implementation includes specific security checks, such as sign count regression detection to identify potentially cloned hardware keys.
[SAFE]: Audit logging is implemented for all critical authentication events, including registration, assertions, and recovery attempts.

implementing-hardware-security-key-authentication