hubspot-security-basics

Featured

Apply HubSpot security best practices for tokens, scopes, and webhook verification. Use when securing private app tokens, implementing least privilege scopes, or validating HubSpot webhook signatures. Trigger with phrases like "hubspot security", "hubspot token rotation", "secure hubspot", "hubspot scopes", "hubspot webhook verify".

AI & Automation 2,266 stars 315 forks Updated today MIT

Install

View on GitHub

Quality Score: 99/100

Stars 20%
100
Recency 20%
100
Frontmatter 20%
70
Documentation 15%
100
Issue Health 10%
50
License 10%
100
Description 5%
100

Skill Content

# HubSpot Security Basics ## Overview Security best practices for HubSpot private app tokens, OAuth scopes, webhook signature verification, and secret management. ## Prerequisites - HubSpot private app or OAuth app configured - Understanding of environment variables and secret management ## Instructions ### Step 1: Least-Privilege Scopes Only request the scopes your integration actually uses: | Use Case | Required Scopes | |----------|----------------| | Read contacts | `crm.objects.contacts.read` | | Write contacts | `crm.objects.contacts.read`, `crm.objects.contacts.write` | | Read/write deals | `crm.objects.deals.read`, `crm.objects.deals.write` | | Marketing emails | `content` | | Forms | `forms` | | Contact lists | `crm.lists.read`, `crm.lists.write` | | Properties | `crm.schemas.contacts.read` | | Custom objects | `crm.objects.custom.read`, `crm.objects.custom.write`, `crm.schemas.custom.read` | | Webhooks | `automation` | **Never use:** Do not grant `all` scopes. If you regenerate a private app token, the old token is immediately revoked. ### Step 2: Token Storage ```bash # .env (NEVER commit) HUBSPOT_ACCESS_TOKEN=pat-na1-xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx HUBSPOT_WEBHOOK_SECRET=your-webhook-secret # .gitignore .env .env.local .env.*.local ``` ```typescript // Validate token is present at startup function validateConfig(): void { if (!process.env.HUBSPOT_ACCESS_TOKEN) { throw new Error('HUBSPOT_ACCESS_TOKEN is required. See .env.example'); } //...

Details

Author
jeremylongshore
Repository
jeremylongshore/claude-code-plugins-plus-skills
Created
7 months ago
Last Updated
today
Language
Python
License
MIT

Integrates with

Anthropic · AI

Similar Skills

Semantically similar based on skill content — not just same category

AI & Automation Featured

intercom-security-basics

Apply Intercom security best practices for tokens, webhook verification, and scopes. Use when securing access tokens, implementing webhook signature validation, or configuring least-privilege OAuth scopes. Trigger with phrases like "intercom security", "intercom secrets", "secure intercom", "intercom webhook signature", "intercom token rotation".

2,266 Updated today
jeremylongshore
AI & Automation Solid

hootsuite-security-basics

Apply Hootsuite security best practices for secrets and access control. Use when securing API keys, implementing least privilege access, or auditing Hootsuite security configuration. Trigger with phrases like "hootsuite security", "hootsuite secrets", "secure hootsuite", "hootsuite API key security".

2,266 Updated today
jeremylongshore
AI & Automation Solid

webflow-security-basics

Apply Webflow API security best practices — token management, scope least privilege, OAuth 2.0 secret rotation, webhook signature verification, and audit logging. Use when securing API tokens, implementing least privilege access, or auditing Webflow security configuration. Trigger with phrases like "webflow security", "webflow secrets", "secure webflow", "webflow API key security", "webflow token rotation".

2,266 Updated today
jeremylongshore
AI & Automation Featured

hubspot-policy-guardrails

Implement HubSpot lint rules, secret scanning, and CI policy checks. Use when setting up code quality rules for HubSpot integrations, preventing token leaks, or configuring CI guardrails. Trigger with phrases like "hubspot policy", "hubspot lint", "hubspot guardrails", "hubspot security check", "hubspot eslint rules".

2,266 Updated today
jeremylongshore
AI & Automation Featured

hubspot-install-auth

Install and configure HubSpot API client with authentication. Use when setting up a new HubSpot integration, configuring private app tokens, OAuth 2.0 flows, or initializing the @hubspot/api-client SDK. Trigger with phrases like "install hubspot", "setup hubspot auth", "hubspot access token", "configure hubspot API", "hubspot private app".

2,266 Updated today
jeremylongshore