AI代码安全指南 - Project CodeGuard软件安全技能，防止常见漏洞

software-security by cosai-oasis/project-codeguard

104 周安装量

112 GitHub Stars

GitHub

安装命令

npx skills add https://github.com/cosai-oasis/project-codeguard --skill software-security

开发代码质量安全

🇨🇳中文介绍

软件安全技能（Project CodeGuard）

此技能提供全面的安全指导，以帮助 AI 编码代理生成安全的代码并防止常见漏洞。它基于 Project CodeGuard，这是一个开源、模型无关的安全框架，将默认安全实践嵌入到 AI 编码工作流中。

何时使用此技能

此技能应在以下情况下激活：

使用任何语言编写新代码时
审查或修改现有代码时
实现安全敏感功能（身份验证、加密、数据处理等）时
处理用户输入、数据库、API 或外部服务时
配置云基础设施、CI/CD 流水线或容器时
处理敏感数据、凭据或加密操作时

如何使用此技能

在编写或审查代码时：

始终应用规则：有些规则必须在每次代码操作时检查：
- codeguard-1-hardcoded-credentials.md - 切勿硬编码密钥、密码、API 密钥或令牌
- codeguard-1-crypto-algorithms.md - 仅使用现代、安全的加密算法
- codeguard-1-digital-certificates.md - 安全地验证和管理数字证书
上下文特定规则：根据正在实现功能的语言，使用下表从 /rules 目录应用相应规则：

语言

广告位招租

在这里展示您的产品或服务

触达数万 AI 开发者，精准高效

联系我们

🇺🇸English

Software Security Skill (Project CodeGuard)

This skill provides comprehensive security guidance to help AI coding agents generate secure code and prevent common vulnerabilities. It is based on Project CodeGuard , an open-source, model-agnostic security framework that embeds secure-by-default practices into AI coding workflows.

When to Use This Skill

This skill should be activated when:

Writing new code in any language
Reviewing or modifying existing code
Implementing security-sensitive features (authentication, cryptography, data handling, etc.)
Working with user input, databases, APIs, or external services
Configuring cloud infrastructure, CI/CD pipelines, or containers
Handling sensitive data, credentials, or cryptographic operations

How to Use This Skill

When writing or reviewing code:

Always-Apply Rules: Some rules MUST be checked on every code operation:

codeguard-1-hardcoded-credentials.md - Never hardcode secrets, passwords, API keys, or tokens
codeguard-1-crypto-algorithms.md - Use only modern, secure cryptographic algorithms
codeguard-1-digital-certificates.md - Validate and manage digital certificates securely

Context-Specific Rules: Apply rules from /rules directory based on the language of the feature being implemented using the table given below:

Language	Rule Files to Apply
apex	codeguard-0-input-validation-injection.md
c	codeguard-0-additional-cryptography.md, codeguard-0-api-web-services.md, codeguard-0-authentication-mfa.md, codeguard-0-authorization-access-control.md, codeguard-0-client-side-web-security.md, codeguard-0-data-storage.md, codeguard-0-file-handling-and-uploads.md, codeguard-0-framework-and-languages.md, codeguard-0-iac-security.md, codeguard-0-input-validation-injection.md, codeguard-0-logging.md, codeguard-0-safe-c-functions.md, codeguard-0-session-management-and-cookies.md, codeguard-0-xml-and-serialization.md
cpp	codeguard-0-safe-c-functions.md
d	codeguard-0-iac-security.md
docker	codeguard-0-devops-ci-cd-containers.md, codeguard-0-supply-chain-security.md
go	codeguard-0-additional-cryptography.md, codeguard-0-api-web-services.md, codeguard-0-authentication-mfa.md, codeguard-0-authorization-access-control.md, codeguard-0-file-handling-and-uploads.md, codeguard-0-input-validation-injection.md, codeguard-0-mcp-security.md, codeguard-0-session-management-and-cookies.md, codeguard-0-xml-and-serialization.md
html	codeguard-0-client-side-web-security.md, codeguard-0-input-validation-injection.md, codeguard-0-session-management-and-cookies.md
java	codeguard-0-additional-cryptography.md, codeguard-0-api-web-services.md, codeguard-0-authentication-mfa.md, codeguard-0-authorization-access-control.md, codeguard-0-file-handling-and-uploads.md, codeguard-0-framework-and-languages.md, codeguard-0-input-validation-injection.md, codeguard-0-mcp-security.md, codeguard-0-mobile-apps.md, codeguard-0-session-management-and-cookies.md, codeguard-0-xml-and-serialization.md

Proactive Security: Don't just avoid vulnerabilities-actively implement secure patterns:

Use parameterized queries for database access
Validate and sanitize all user input
Apply least-privilege principles
Use modern cryptographic algorithms and libraries
Implement defense-in-depth strategies

CodeGuard Security Rules

The security rules are available in the rules/ directory.

Usage Workflow

When generating or reviewing code, follow this workflow:

1. Initial Security Check

Before writing any code:

Check: Will this handle credentials? → Apply codeguard-1-hardcoded-credentials
Check: What language am I using? → Identify applicable language-specific rules
Check: What security domains are involved? → Load relevant rule files

2. Code Generation

While writing code:

Apply secure-by-default patterns from relevant Project CodeGuard rules
Add security-relevant comments explaining choices

3. Security Review

After writing code:

Review against implementation checklists in each rule
Verify no hardcoded credentials or secrets
Validate that all the rules have been successfully followed when applicable.
Explain which security rules were applied
Highlight security features implemented

Weekly Installs

Repository

cosai-oasis/pro…odeguard

GitHub Stars

First Seen

Feb 9, 2026

Security Audits

Gen Agent Trust HubPass SocketPass SnykPass

Installed on

github-copilot61

codex60

cursor59

opencode57

gemini-cli56

amp55

apex	codeguard-0-input-validation-injection.md
c	codeguard-0-additional-cryptography.md, codeguard-0-api-web-services.md, codeguard-0-authentication-mfa.md, codeguard-0-authorization-access-control.md, codeguard-0-client-side-web-security.md, codeguard-0-data-storage.md, codeguard-0-file-handling-and-uploads.md, codeguard-0-framework-and-languages.md, codeguard-0-iac-security.md, codeguard-0-input-validation-injection.md, codeguard-0-logging.md, codeguard-0-safe-c-functions.md, codeguard-0-session-management-and-cookies.md, codeguard-0-xml-and-serialization.md
cpp	codeguard-0-safe-c-functions.md
d	codeguard-0-iac-security.md
docker	codeguard-0-devops-ci-cd-containers.md, codeguard-0-supply-chain-security.md
go	codeguard-0-additional-cryptography.md, codeguard-0-api-web-services.md, codeguard-0-authentication-mfa.md, codeguard-0-authorization-access-control.md, codeguard-0-file-handling-and-uploads.md, codeguard-0-input-validation-injection.md, codeguard-0-mcp-security.md, codeguard-0-session-management-and-cookies.md, codeguard-0-xml-and-serialization.md
html	codeguard-0-client-side-web-security.md, codeguard-0-input-validation-injection.md, codeguard-0-session-management-and-cookies.md
java	codeguard-0-additional-cryptography.md, codeguard-0-api-web-services.md, codeguard-0-authentication-mfa.md, codeguard-0-authorization-access-control.md, codeguard-0-file-handling-and-uploads.md, codeguard-0-framework-and-languages.md, codeguard-0-input-validation-injection.md, codeguard-0-mcp-security.md, codeguard-0-mobile-apps.md, codeguard-0-session-management-and-cookies.md, codeguard-0-xml-and-serialization.md
javascript	codeguard-0-additional-cryptography.md, codeguard-0-api-web-services.md, codeguard-0-authentication-mfa.md, codeguard-0-authorization-access-control.md, codeguard-0-client-side-web-security.md, codeguard-0-cloud-orchestration-kubernetes.md, codeguard-0-data-storage.md, codeguard-0-devops-ci-cd-containers.md, codeguard-0-file-handling-and-uploads.md, codeguard-0-framework-and-languages.md, codeguard-0-iac-security.md, codeguard-0-input-validation-injection.md, codeguard-0-logging.md, codeguard-0-mcp-security.md, codeguard-0-mobile-apps.md, codeguard-0-privacy-data-protection.md, codeguard-0-session-management-and-cookies.md, codeguard-0-supply-chain-security.md
kotlin	codeguard-0-additional-cryptography.md, codeguard-0-authentication-mfa.md, codeguard-0-framework-and-languages.md, codeguard-0-mobile-apps.md
matlab	codeguard-0-additional-cryptography.md, codeguard-0-authentication-mfa.md, codeguard-0-mobile-apps.md, codeguard-0-privacy-data-protection.md
perl	codeguard-0-mobile-apps.md
php	codeguard-0-additional-cryptography.md, codeguard-0-api-web-services.md, codeguard-0-authentication-mfa.md, codeguard-0-authorization-access-control.md, codeguard-0-client-side-web-security.md, codeguard-0-file-handling-and-uploads.md, codeguard-0-framework-and-languages.md, codeguard-0-input-validation-injection.md, codeguard-0-session-management-and-cookies.md, codeguard-0-xml-and-serialization.md
powershell	codeguard-0-devops-ci-cd-containers.md, codeguard-0-iac-security.md, codeguard-0-input-validation-injection.md
python	codeguard-0-additional-cryptography.md, codeguard-0-api-web-services.md, codeguard-0-authentication-mfa.md, codeguard-0-authorization-access-control.md, codeguard-0-file-handling-and-uploads.md, codeguard-0-framework-and-languages.md, codeguard-0-input-validation-injection.md, codeguard-0-mcp-security.md, codeguard-0-session-management-and-cookies.md, codeguard-0-xml-and-serialization.md
ruby	codeguard-0-additional-cryptography.md, codeguard-0-api-web-services.md, codeguard-0-authentication-mfa.md, codeguard-0-authorization-access-control.md, codeguard-0-file-handling-and-uploads.md, codeguard-0-framework-and-languages.md, codeguard-0-iac-security.md, codeguard-0-input-validation-injection.md, codeguard-0-session-management-and-cookies.md, codeguard-0-xml-and-serialization.md
rust	codeguard-0-mcp-security.md
shell	codeguard-0-devops-ci-cd-containers.md, codeguard-0-iac-security.md, codeguard-0-input-validation-injection.md
sql	codeguard-0-data-storage.md, codeguard-0-input-validation-injection.md
swift	codeguard-0-additional-cryptography.md, codeguard-0-authentication-mfa.md, codeguard-0-mobile-apps.md
typescript	codeguard-0-additional-cryptography.md, codeguard-0-api-web-services.md, codeguard-0-authentication-mfa.md, codeguard-0-authorization-access-control.md, codeguard-0-client-side-web-security.md, codeguard-0-file-handling-and-uploads.md, codeguard-0-framework-and-languages.md, codeguard-0-input-validation-injection.md, codeguard-0-mcp-security.md, codeguard-0-session-management-and-cookies.md
vlang	codeguard-0-client-side-web-security.md
xml	codeguard-0-additional-cryptography.md, codeguard-0-api-web-services.md, codeguard-0-devops-ci-cd-containers.md, codeguard-0-framework-and-languages.md, codeguard-0-mobile-apps.md, codeguard-0-xml-and-serialization.md
yaml	codeguard-0-additional-cryptography.md, codeguard-0-api-web-services.md, codeguard-0-authorization-access-control.md, codeguard-0-cloud-orchestration-kubernetes.md, codeguard-0-data-storage.md, codeguard-0-devops-ci-cd-containers.md, codeguard-0-framework-and-languages.md, codeguard-0-iac-security.md, codeguard-0-logging.md, codeguard-0-privacy-data-protection.md, codeguard-0-supply-chain-security.md

AI代码安全指南 - Project CodeGuard软件安全技能，防止常见漏洞

🇨🇳中文介绍

软件安全技能（Project CodeGuard）

何时使用此技能

如何使用此技能

相关 Skills

CodeGuard 安全规则

使用工作流

1. 初始安全检查

2. 代码生成

3. 安全审查