cloudflare-workers-security

Enhances Cloudflare Workers security with authentication, CORS, rate limiting, and input validation to protect APIs from vulnerabilities.

Install this skill

84/100

Security score

The cloudflare-workers-security skill was audited on May 12, 2026 and we found 8 security issues across 3 threat categories. Review the findings below before installing.

Categories Tested

Security Issues

medium line 75

Template literal with variable interpolation in command context

SourceSKILL.md

75	const data = new TextEncoder().encode(`${headerB64}.${payloadB64}`);

medium line 109

Template literal with variable interpolation in command context

SourceSKILL.md

109	const client = await env.KV.get(`apikey:${keyHash}`, 'json');

low line 74

Base64 decode via atob()

SourceSKILL.md

74	const signature = Uint8Array.from(atob(signatureB64.replace(/-/g, '+').replace(/_/g, '/')), c => c.charCodeAt(0));

low line 81

Base64 decode via atob()

SourceSKILL.md

81	const payload = JSON.parse(atob(payloadB64.replace(/-/g, '+').replace(/_/g, '/')));

low line 181

External URL reference

SourceSKILL.md

181	const ALLOWED_ORIGINS = ['https://app.example.com', 'https://admin.example.com'];

low line 229

External URL reference

SourceSKILL.md

229	- Security: https://developers.cloudflare.com/workers/platform/security/

low line 230

External URL reference

SourceSKILL.md

230	- WAF: https://developers.cloudflare.com/waf/

low line 231

External URL reference

SourceSKILL.md

231	- Rate Limiting: https://developers.cloudflare.com/workers/runtime-apis/bindings/rate-limit/

Scanned on May 12, 2026

View Security Dashboard

Installation guide →

GitHub Stars 73

Rate this skill

Categorydevelopment

UpdatedMay 21, 2026

frontend api database backend-developer devops-sre security-engineer development

secondsky/claude-skills