guidewire-security-basics
Implement security best practices for Guidewire InsuranceSuite including OAuth2, JWT handling, API roles, secure Gosu coding, and data protection. Trigger with phrases like "guidewire security", "oauth2 guidewire", "jwt token", "api roles", "secure gosu code", "guidewire authentication".
Install with Tessl CLI
npx tessl i github:jeremylongshore/claude-code-plugins-plus-skills --skill guidewire-security-basics83
Does it follow best practices?
If you maintain this skill, you can automatically optimize it using the tessl CLI to improve its score:
npx tessl skill review --optimize ./path/to/skillValidation for skill structure
Evaluation results
100%
6%Integration Service Token Manager
OAuth2 token manager with caching and concurrency control
client_credentials grant
100%
100%
60-second expiry buffer
100%
100%
Concurrent refresh guard
100%
100%
Promise cleanup
100%
100%
Cached token reuse
100%
100%
Token validity check
100%
100%
No hardcoded credentials
100%
100%
clearTokens method
0%
100%
POST to /oauth/token
100%
100%
x-www-form-urlencoded body
100%
100%
Without context: $0.4915 · 1m 57s · 26 turns · 27 in / 7,611 out tokens
With context: $0.6776 · 2m 10s · 29 turns · 28 in / 7,941 out tokens
100%
38%Secure API Gateway Middleware
JWT validation with JWKS and RBAC middleware
jwks-rsa library
100%
100%
JWKS caching enabled
100%
100%
JWKS cacheMaxAge 10 min
100%
100%
JWKS rate limiting
0%
100%
RS256 algorithm
100%
100%
Issuer validation
100%
100%
Audience validation
100%
100%
kid extraction before key fetch
0%
100%
SecurityContext attachment
40%
100%
Bearer token extraction
100%
100%
requireRole 403 response
0%
100%
Local key cache by kid
0%
100%
Without context: $0.7904 · 5m 20s · 29 turns · 29 in / 14,761 out tokens
With context: $0.7826 · 3m 16s · 33 turns · 374 in / 10,259 out tokens
100%
35%Policyholder Data Access Module
Secure Gosu coding: input validation, SQL injection prevention, PII masking, audit logging
Query API usage
100%
100%
No string-concatenated queries
100%
100%
validateInput called before query
0%
100%
Dangerous chars stripped
0%
100%
Max length 255
0%
100%
SSN mask format
100%
100%
SECURITY_AUDIT log prefix
37%
100%
Audit log fields
50%
100%
PLSecurityRules check
100%
100%
SecurityException on denial
100%
100%
Package declaration
100%
100%
Without context: $0.3296 · 1m 38s · 17 turns · 18 in / 5,485 out tokens
With context: $0.5375 · 1m 42s · 22 turns · 179 in / 5,785 out tokens
- Evaluated
- Agent
- Claude Code
Table of Contents
Is this your skill?
If you maintain this skill, you can claim it as your own. Once claimed, you can manage eval scenarios, bundle related skills, attach documentation or rules, and ensure cross-agent compatibility.