fondo-security-basics
jeremylongshore/claude-code-plugins-plus-skills
This skill provides comprehensive best practices for securing highly sensitive financial and tax data processed by SaaS platforms, such as handling SSNs, EINs, and bank details. It covers critical security mechanisms including API key lifecycle management, webhook signature verification (HMAC), robust input validation (Zod), and PII redaction to ensure compliance with standards like SOC 2 and industry best practices.