security-documentation▌
aj-geddes/useful-ai-prompts · updated Apr 8, 2026
Create comprehensive security documentation including policies, guidelines, compliance requirements, and best practices for secure application development and operations.
Security Documentation
Table of Contents
Overview
Create comprehensive security documentation including policies, guidelines, compliance requirements, and best practices for secure application development and operations.
When to Use
- Security policies
- Compliance documentation (SOC 2, GDPR, HIPAA)
- Security guidelines and best practices
- Incident response plans
- Access control policies
- Data protection policies
- Vulnerability disclosure policies
- Security audit reports
Quick Start
Minimal working example:
# Security Policy
**Version:** 2.0
**Last Updated:** 2025-01-15
**Review Schedule:** Quarterly
**Owner:** Security Team
**Contact:** security@example.com
## Table of Contents
1. [Overview](#overview)
2. [Scope](#scope)
3. [Authentication & Access Control](#authentication--access-control)
4. [Data Protection](#data-protection)
5. [Application Security](#application-security)
6. [Infrastructure Security](#infrastructure-security)
7. [Incident Response](#incident-response)
8. [Compliance](#compliance)
9. [Security Training](#security-training)
---
## 1. Overview
### Purpose
// ... (see reference guides for full implementation)
Reference Guides
Detailed implementations in the references/ directory:
| Guide | Contents |
|---|---|
| 1 Password Requirements | 1 Password Requirements |
| 2 Multi-Factor Authentication (MFA) | 2 Multi-Factor Authentication (MFA) |
| 3 Role-Based Access Control (RBAC) | 3 Role-Based Access Control (RBAC) |
| 1 Secure Coding Practices | 1 Secure Coding Practices |
| 2 Security Headers | 2 Security Headers, 3 API Security |
Best Practices
✅ DO
- Follow principle of least privilege
- Encrypt sensitive data
- Implement MFA everywhere
- Log security events
- Regular security audits
- Keep systems updated
- Document security policies
- Train employees regularly
- Have incident response plan
- Test backups regularly
❌ DON'T
- Store passwords in plaintext
- Skip input validation
- Ignore security headers
- Share credentials
- Hardcode secrets in code
- Skip security testing
- Ignore vulnerability reports
Discussion
Product Hunt–style comments (not star reviews)- No comments yet — start the thread.
Ratings
4.8★★★★★27 reviews- ★★★★★Nikhil Robinson· Dec 8, 2024
Useful defaults in security-documentation — fewer surprises than typical one-off scripts, and it plays nicely with `npx skills` flows.
- ★★★★★Chen Flores· Nov 27, 2024
I recommend security-documentation for anyone iterating fast on agent tooling; clear intent and a small, reviewable surface area.
- ★★★★★James Taylor· Oct 18, 2024
security-documentation reduced setup friction for our internal harness; good balance of opinion and flexibility.
- ★★★★★Li Ramirez· Sep 25, 2024
Registry listing for security-documentation matched our evaluation — installs cleanly and behaves as described in the markdown.
- ★★★★★Min Patel· Sep 25, 2024
security-documentation fits our agent workflows well — practical, well scoped, and easy to wire into existing repos.
- ★★★★★Piyush G· Sep 9, 2024
Keeps context tight: security-documentation is the kind of skill you can hand to a new teammate without a long onboarding doc.
- ★★★★★Shikha Mishra· Aug 28, 2024
security-documentation has been reliable in day-to-day use. Documentation quality is above average for community skills.
- ★★★★★Chen Johnson· Aug 16, 2024
security-documentation fits our agent workflows well — practical, well scoped, and easy to wire into existing repos.
- ★★★★★Isabella Ndlovu· Aug 16, 2024
Registry listing for security-documentation matched our evaluation — installs cleanly and behaves as described in the markdown.
- ★★★★★Ganesh Mohane· Aug 4, 2024
I recommend security-documentation for anyone iterating fast on agent tooling; clear intent and a small, reviewable surface area.
showing 1-10 of 27