Summary
This handles the security fundamentals you need for Cloudflare Workers: JWT and API key authentication, input validation with Zod, rate limiting, CORS configuration, and security headers. It includes working code for verifying tokens with crypto.subtle, hashing API keys, and a practical checklist of the top 10 vulnerabilities like SQL injection, XSS, and secrets exposure. Use it when you're building an API that needs auth, debugging CORS errors, or hardening a worker against common attacks. The templates give you drop-in middleware for auth and rate limiting. Honestly, it's less about novel techniques and more about having the boilerplate done right so you don't ship something with missing headers or weak token validation.
Install to Claude Code
npx -y skills add secondsky/claude-skills --skill cloudflare-workers-security --agent claude-codeInstalls into .claude/skills of the current project.
Keep your Mac awake while Claude Code and 40+ AI agents run. Sleeps when they're idle.
One time payment $9 →
Integrate web data into your AI product. One API to scrape website & brand data.
Get API Key Now →
Agent, run crypto. Access onchain data & trade routes via 1inch.
Install now →
On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.
Start earning →
Files
SKILL.md
Select a file.
Featured
Keep your Mac awake while Claude Code and 40+ AI agents run. Sleeps when they're idle.
One time payment $9 →Integrate web data into your AI product. One API to scrape website & brand data.
Get API Key Now →Agent, run crypto. Access onchain data & trade routes via 1inch.
Install now →On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.
Start earning →
