Implements CSRF protection using synchronizer tokens, double-submit cookies, and SameSite attributes. Use when securing web forms, protecting state-changing endpoints, or implementing defense-in-depth authentication.
This skill does not declare a tool allowlist. The agent host applies whatever default tools are available at runtime.
SKILL.md / Manifest
https://raw.githubusercontent.com/secondsky/claude-skills/main/plugins/csrf-protection/skills/csrf-protection/SKILL.mdRegistry
github (via claudemarketplaces.com)