← Back to Skills

Fortify Security

🌐Community
by gravito-framework · vlatest · Repository

Automatically identifies and remediates network vulnerabilities using Gravito's framework to strengthen system defenses.

Install on your platform

We auto-selected Claude Code based on this skill’s supported platforms.

1

Run in terminal (recommended)

terminal
claude mcp add fortify-security npx -- -y @trustedskills/fortify-security
2

Or manually add to ~/.claude/settings.json

~/.claude/settings.json
{
  "mcpServers": {
    "fortify-security": {
      "command": "npx",
      "args": [
        "-y",
        "@trustedskills/fortify-security"
      ]
    }
  }
}

Requires Claude Code (claude CLI). Run claude --version to verify your install.

About This Skill

What it does

The Fortify Security skill enables an AI agent to automatically identify and remediate network vulnerabilities within applications, leveraging the Gravito ecosystem. It focuses on strengthening system defenses by assessing risks, implementing security measures like PlanetFortify and PlanetSentinel, and enforcing security standards. This process aims to protect sensitive endpoints (authentication, administration, payments) while maintaining a positive developer experience.

When to use it

  • When you need to quickly identify and address potential vulnerabilities in your application's network defenses.
  • To implement robust authentication methods like JWT, Session, or Passkey using PlanetSentinel.
  • For configuring security headers with PlanetFortify to shield applications from threats.
  • To ensure compliance with CSP (Content Security Policy) best practices.

Key capabilities

  • Risk Assessment: Identifies sensitive endpoints and reviews existing CSP and CORS policies.
  • Shielding: Configures PlanetFortify for robust security headers.
  • Authentication: Implements PlanetSentinel for JWT, Session, or Passkey authentication.
  • Middleware Implementation: Adds rate-limiting and validation filters to critical routes.
  • CSP Enforcement: Promotes the use of Strict CSP policies.
  • CSRF Protection: Implements CSRF protection for stateful endpoints.
  • Dependency Vulnerability Auditing: Encourages regular audits of dependency vulnerabilities.

Example prompts

  • "Assess the security risks associated with my authentication endpoint."
  • "Implement JWT authentication using PlanetSentinel on this route: /api/users"
  • "Configure PlanetFortify to apply a default security policy snippet."

Tips & gotchas

  • This skill relies on components within the Gravito ecosystem (PlanetFortify, PlanetSentinel). Ensure these are available and configured correctly.
  • Strict CSP policies should be implemented cautiously; avoid unsafe-inline unless absolutely necessary.
  • Refer to the ./references/csp-best-practices.md file for detailed guidance on Content Security Policy best practices.
View Repository →

Tags

🛡️

TrustedSkills Verification

Unlike other registries that point to live repositories, TrustedSkills pins every skill to a verified commit hash. This protects you from malicious updates — what you install today is exactly what was reviewed and verified.

Security Audits

Gen Agent Trust HubPass
SocketPass
SnykPass

Details

Version
vlatest
License
Author
gravito-framework
Installs
31
Repository (canonical source) →

🌐 Community

Passed automated security scans.