KS
Killer-Skills

Authorization Matrix — Categories.community

v1.0.0
GitHub

About this Skill

Perfect for Security-focused AI Agents needing comprehensive authorization auditing and authentication checks. BrightPath CLI — multi-provider AI agent orchestrator

cdalsoniii cdalsoniii
[0]
[0]
Updated: 3/4/2026

Quality Score

Top 5%
47
Excellent
Based on code quality & docs
Installation
SYS Universal Install (Auto-Detect)
Cursor IDE Windsurf IDE VS Code IDE
> npx killer-skills add cdalsoniii/brightpath-coder

Agent Capability Analysis

The Authorization Matrix MCP Server by cdalsoniii is an open-source Categories.community integration for Claude and other AI agents, enabling seamless task automation and capability expansion.

Ideal Agent Persona

Perfect for Security-focused AI Agents needing comprehensive authorization auditing and authentication checks.

Core Value

Empowers agents to verify endpoint authentication, authorization, and ownership checks through a complete authorization matrix, utilizing route configuration and middleware analysis, and supporting triggers like route configuration changes and auth middleware updates.

Capabilities Granted for Authorization Matrix MCP Server

Automating authorization audits for multi-provider AI agent orchestrators like BrightPath CLI
Generating comprehensive authorization matrices from codebases
Debugging authentication and authorization issues in route configurations and middleware

! Prerequisites & Limits

  • Requires access to route configuration files (e.g., main.go or router files)
  • Needs path to middleware directory
  • Limited to triggering conditions like route configuration changes, auth middleware changes, or user invocation with specific commands
Project
SKILL.md
1.7 KB
.cursorrules
1.2 KB
package.json
240 B
Ready
UTF-8

# Tags

[No tags]
SKILL.md
Readonly

Authorization Matrix Skill

Build a complete authorization matrix from the codebase and verify every endpoint has appropriate authentication, authorization, and ownership checks.

Trigger Conditions

  • Route configuration changes
  • Auth middleware changes
  • New handlers are added
  • User invokes with "auth matrix" or "authorization-matrix"

Input Contract

  • Required: Path to route configuration (main.go or router files)
  • Required: Path to middleware directory
  • Optional: Path to handler files for ownership check verification

Output Contract

  • Complete route → auth requirement matrix
  • List of unprotected routes (missing auth middleware)
  • List of routes missing account ownership verification
  • Comparison against the whitelist in rule 121

Tool Permissions

  • Read: Route config, middleware, handler files
  • Write: None (read-only analysis)
  • Search: Grep for Use(middleware.Auth, GetUserID, RequireScope, AccountOwnership

Execution Steps

  1. Extract all routes: Parse route registration to build complete endpoint list with HTTP method and path
  2. Identify auth middleware: Find which route groups use auth middleware
  3. Check whitelist: Compare unauthenticated routes against the whitelist in rule 121
  4. Verify ownership: For account-scoped routes (/accounts/:id/*), verify ownership middleware is applied
  5. Report: Produce authorization matrix with pass/fail per check

Success Criteria

  • All routes outside the whitelist are authenticated
  • All account-scoped routes verify ownership
  • All financial endpoints require appropriate scopes
  • No route bypasses auth through misconfiguration

References

  • .cursor/rules/121-route-auth-enforcement.mdc
  • .cursor/rules/042-security-authorization.mdc

Related Skills

Looking for an alternative to Authorization Matrix or building a Categories.community AI Agent? Explore these related open-source MCP Servers.

View All

widget-generator

Logo of f
f

widget-generator is an open-source AI agent skill for creating widget plugins that are injected into prompt feeds on prompts.chat. It supports two rendering modes: standard prompt widgets using default PromptCard styling and custom render widgets built as full React components.

149.6k
0
Design

chat-sdk

Logo of lobehub
lobehub

chat-sdk is a unified TypeScript SDK for building chat bots across multiple platforms, providing a single interface for deploying bot logic.

73.0k
0
Communication

zustand

Logo of lobehub
lobehub

The ultimate space for work and life — to find, build, and collaborate with agent teammates that grow with you. We are taking agent harness to the next level — enabling multi-agent collaboration, effortless agent team design, and introducing agents as the unit of work interaction.

72.8k
0
Communication

data-fetching

Logo of lobehub
lobehub

The ultimate space for work and life — to find, build, and collaborate with agent teammates that grow with you. We are taking agent harness to the next level — enabling multi-agent collaboration, effortless agent team design, and introducing agents as the unit of work interaction.

72.8k
0
Communication