fullstack-guardian

Solid

Builds security-focused full-stack web applications by implementing integrated frontend and backend components with layered security at every level. Covers the complete stack from database to UI, enforcing auth, input validation, output encoding, and parameterized queries across all layers. Use when implementing features across frontend and backend, building REST APIs with corresponding UI, connecting frontend components to backend endpoints, creating end-to-end data flows from database to UI, or implementing CRUD operations with UI forms. Distinct from frontend-only, backend-only, or API-only skills in that it simultaneously addresses all three perspectives—Frontend, Backend, and Security—within a single implementation workflow. Invoke for full-stack feature work, web app development, authenticated API routes with views, microservices, real-time features, monorepo architecture, or technology selection decisions.

API & Backend 9,537 stars 808 forks Updated 1 weeks ago MIT

Install

View on GitHub

Quality Score: 94/100

Stars 20%
100
Recency 20%
90
Frontmatter 20%
70
Documentation 15%
100
Issue Health 10%
50
License 10%
100
Description 5%
100

Skill Content

# Fullstack Guardian Security-focused full-stack developer implementing features across the entire application stack. ## Core Workflow 1. **Gather requirements** - Understand feature scope and acceptance criteria 2. **Design solution** - Consider all three perspectives (Frontend/Backend/Security) 3. **Write technical design** - Document approach in `specs/{feature}_design.md` 4. **Security checkpoint** - Run through `references/security-checklist.md` before writing any code; confirm auth, authz, validation, and output encoding are addressed 5. **Implement** - Build incrementally, testing each component as you go 6. **Hand off** - Pass to Test Master for QA, DevOps for deployment ## Reference Guide Load detailed guidance based on context: | Topic | Reference | Load When | |-------|-----------|-----------| | Design Template | `references/design-template.md` | Starting feature, three-perspective design | | Security Checklist | `references/security-checklist.md` | Every feature - auth, authz, validation | | Error Handling | `references/error-handling.md` | Implementing error flows | | Common Patterns | `references/common-patterns.md` | CRUD, forms, API flows | | Backend Patterns | `references/backend-patterns.md` | Microservices, queues, observability, Docker | | Frontend Patterns | `references/frontend-patterns.md` | Real-time, optimization, accessibility, testing | | Integration Patterns | `references/integration-patterns.md` | Type sharing, deployment, architecture decis...

Details

Author
Jeffallan
Repository
Jeffallan/claude-skills
Created
7 months ago
Last Updated
1 weeks ago
Language
Python
License
MIT

Integrates with

REST API · API

Similar Skills

Semantically similar based on skill content — not just same category

AI & Automation Listed

fullstack-guardian

Use when implementing features across frontend and backend, building APIs with UI, or creating end-to-end data flows. Invoke for feature implementation, API development, UI building, cross-stack work.

2 Updated today
zacklecon
Web & Frontend Solid

fullstack-dev

Full-stack backend architecture and frontend-backend integration guide. TRIGGER when: building a full-stack app, creating REST API with frontend, scaffolding backend service, building todo app, building CRUD app, building real-time app, building chat app, Express + React, Next.js API, Node.js backend, Python backend, Go backend, designing service layers, implementing error handling, managing config/auth, setting up API clients, implementing auth flows, handling file uploads, adding real-time features (SSE/WebSocket), hardening for production. DO NOT TRIGGER when: pure frontend UI work, pure CSS/styling, database schema only.

496 Updated 1 months ago
vibeeval
AI & Automation Solid

secure-code-guardian

Use when implementing authentication/authorization, securing user input, or preventing OWASP Top 10 vulnerabilities — including custom security implementations such as hashing passwords with bcrypt/argon2, sanitizing SQL queries with parameterized statements, configuring CORS/CSP headers, validating input with Zod, and setting up JWT tokens. Invoke for authentication, authorization, input validation, encryption, OWASP Top 10 prevention, secure session management, and security hardening. For pre-built OAuth/SSO integrations or standalone security audits, consider a more specialized skill.

9,537 Updated 1 weeks ago
Jeffallan
AI & Automation Listed

secure-code-guardian

Use when implementing authentication/authorization, securing user input, or preventing OWASP Top 10 vulnerabilities. Invoke for authentication, authorization, input validation, encryption, OWASP Top 10 prevention.

2 Updated today
zacklecon
Web & Frontend Solid

senior-fullstack

Comprehensive fullstack development skill for building complete web applications with React, Next.js, Node.js, GraphQL, and PostgreSQL. Includes project scaffolding, code quality analysis, architecture patterns, and complete tech stack guidance. Use when building new projects, analyzing code quality, implementing design patterns, or setting up development workflows.

27,705 Updated today
davila7