Authorization Matrix — community Authorization Matrix, brightpath-coder, community, ide skills, Claude Code, Cursor, Windsurf

v1.0.0
GitHub

About this Skill

Perfect for Security-focused AI Agents needing comprehensive authorization and authentication checks in their codebase. Build and verify an authorization matrix mapping roles to endpoints — detect unprotected routes, missing ownership checks, and scope misconfigurations

cdalsoniii cdalsoniii
[0]
[0]
Updated: 3/12/2026

Killer-Skills Review

Decision support comes first. Repository text comes second.

Reviewed Landing Page Review Score: 9/11

Killer-Skills keeps this page indexable because it adds recommendation, limitations, and review signals beyond the upstream repository text.

Original recommendation layer Concrete use-case guidance Explicit limitations and caution Quality floor passed for review Locale and body language aligned
Review Score
9/11
Quality Score
52
Canonical Locale
en
Detected Body Locale
en

Perfect for Security-focused AI Agents needing comprehensive authorization and authentication checks in their codebase. Build and verify an authorization matrix mapping roles to endpoints — detect unprotected routes, missing ownership checks, and scope misconfigurations

Core Value

Empowers agents to verify endpoint authentication, authorization, and ownership checks using route configuration and middleware analysis, ensuring secure interactions with RESTful APIs and protecting against unauthorized access.

Ideal Agent Persona

Perfect for Security-focused AI Agents needing comprehensive authorization and authentication checks in their codebase.

Capabilities Granted for Authorization Matrix

Validating authentication middleware changes
Generating complete authorization matrices from codebases
Debugging endpoint ownership checks

! Prerequisites & Limits

  • Requires access to route configuration files
  • Needs path to middleware directory
  • Limited to codebases with explicit authentication and authorization implementations

Source Boundary

The section below is imported from the upstream repository and should be treated as secondary evidence. Use the Killer-Skills review above as the primary layer for fit, risk, and installation decisions.

After The Review

Decide The Next Action Before You Keep Reading Repository Material

Killer-Skills should not stop at opening repository instructions. It should help you decide whether to install this skill, when to cross-check against trusted collections, and when to move into workflow rollout.

Install Path

Start With Installation And Validation

If this skill is worth continuing with, the next step is to confirm the install command, CLI write path, and environment validation.
Trusted Recheck

Cross-Check Against Trusted Picks

If you are still comparing multiple skills or vendors, go back to the trusted collection before amplifying repository noise.
Workflow

Move To Workflow Collections For Team Rollout

When the goal shifts from a single skill to team handoff, approvals, and repeatable execution, move into workflow collections.
Labs Demo

Browser Sandbox Environment

⚡️ Ready to unleash?

Experience this Agent in a zero-setup browser environment powered by WebContainers. No installation required.

Boot Container Sandbox

FAQ & Installation Steps

These questions and steps mirror the structured data on this page for better search understanding.

? Frequently Asked Questions

What is Authorization Matrix?

Perfect for Security-focused AI Agents needing comprehensive authorization and authentication checks in their codebase. Build and verify an authorization matrix mapping roles to endpoints — detect unprotected routes, missing ownership checks, and scope misconfigurations

How do I install Authorization Matrix?

Run the command: npx killer-skills add cdalsoniii/brightpath-coder/Authorization Matrix. It works with Cursor, Windsurf, VS Code, Claude Code, and 19+ other IDEs.

What are the use cases for Authorization Matrix?

Key use cases include: Validating authentication middleware changes, Generating complete authorization matrices from codebases, Debugging endpoint ownership checks.

Which IDEs are compatible with Authorization Matrix?

This skill is compatible with Cursor, Windsurf, VS Code, Trae, Claude Code, OpenClaw, Aider, Codex, OpenCode, Goose, Cline, Roo Code, Kiro, Augment Code, Continue, GitHub Copilot, Sourcegraph Cody, and Amazon Q Developer. Use the Killer-Skills CLI for universal one-command installation.

Are there any limitations for Authorization Matrix?

Requires access to route configuration files. Needs path to middleware directory. Limited to codebases with explicit authentication and authorization implementations.

How To Install

  1. 1. Open your terminal

    Open the terminal or command line in your project directory.

  2. 2. Run the install command

    Run: npx killer-skills add cdalsoniii/brightpath-coder/Authorization Matrix. The CLI will automatically detect your IDE or AI agent and configure the skill.

  3. 3. Start using the skill

    The skill is now active. Your AI agent can use Authorization Matrix immediately in the current project.

Upstream Repository Material

The section below is imported from the upstream repository and should be treated as secondary evidence. Use the Killer-Skills review above as the primary layer for fit, risk, and installation decisions.

Upstream Source

Authorization Matrix

Install Authorization Matrix, an AI agent skill for AI agent workflows and automation. Works with Claude Code, Cursor, and Windsurf with one-command setup.

SKILL.md
Readonly
Upstream Repository Material
The section below is imported from the upstream repository and should be treated as secondary evidence. Use the Killer-Skills review above as the primary layer for fit, risk, and installation decisions.
Supporting Evidence

Authorization Matrix Skill

Build a complete authorization matrix from the codebase and verify every endpoint has appropriate authentication, authorization, and ownership checks.

Trigger Conditions

  • Route configuration changes
  • Auth middleware changes
  • New handlers are added
  • User invokes with "auth matrix" or "authorization-matrix"

Input Contract

  • Required: Path to route configuration (main.go or router files)
  • Required: Path to middleware directory
  • Optional: Path to handler files for ownership check verification

Output Contract

  • Complete route → auth requirement matrix
  • List of unprotected routes (missing auth middleware)
  • List of routes missing account ownership verification
  • Comparison against the whitelist in rule 121

Tool Permissions

  • Read: Route config, middleware, handler files
  • Write: None (read-only analysis)
  • Search: Grep for Use(middleware.Auth, GetUserID, RequireScope, AccountOwnership

Execution Steps

  1. Extract all routes: Parse route registration to build complete endpoint list with HTTP method and path
  2. Identify auth middleware: Find which route groups use auth middleware
  3. Check whitelist: Compare unauthenticated routes against the whitelist in rule 121
  4. Verify ownership: For account-scoped routes (/accounts/:id/*), verify ownership middleware is applied
  5. Report: Produce authorization matrix with pass/fail per check

Success Criteria

  • All routes outside the whitelist are authenticated
  • All account-scoped routes verify ownership
  • All financial endpoints require appropriate scopes
  • No route bypasses auth through misconfiguration

References

  • .cursor/rules/121-route-auth-enforcement.mdc
  • .cursor/rules/042-security-authorization.mdc

Related Skills

Looking for an alternative to Authorization Matrix or another community skill for your workflow? Explore these related open-source skills.

View All

openclaw-release-maintainer

Logo of openclaw
openclaw

Your own personal AI assistant. Any OS. Any Platform. The lobster way. 🦞

333.8k
0
AI

widget-generator

Logo of f
f

Generate customizable widget plugins for the prompts.chat feed system

149.6k
0
AI

flags

Logo of vercel
vercel

The React Framework

138.4k
0
Browser

pr-review

Logo of pytorch
pytorch

Tensors and Dynamic neural networks in Python with strong GPU acceleration

98.6k
0
Developer