{"id":"e1e134b5-7d46-4206-8787-fd92f9a913a8","shortId":"dDLypp","kind":"skill","title":"404-frameworks-quarkus-security","tagline":"Use when you need to design, review, or improve security in Quarkus applications — including Quarkus Security with JWT/OIDC, basic auth, @RolesAllowed / @Authenticated / @PermitAll, SecurityIdentity, permission checks, path-based authorization in configuration, exception mapping ","description":"# Quarkus Security Guidelines\n\nApply Quarkus security best practices with secure-by-default API and service boundaries.\n\n**What is covered in this Skill?**\n\n- Quarkus security configuration for authentication mechanisms\n- Authorization with @RolesAllowed / @Authenticated / @PermitAll\n- Endpoint and resource protection strategy\n- Least-privilege role design\n- Secure denial/error handling behavior\n- Sensitive data protection in logs and responses\n\n**Scope:** Apply recommendations based on the reference rules and good/bad examples.\n\n## Constraints\n\nBefore applying security changes, ensure the project compiles. After improvements, run full verification.\n\n- **MANDATORY**: Run `./mvnw compile` or `mvn compile` before applying any change\n- **SAFETY**: If compilation fails, stop immediately\n- **VERIFY**: Run `./mvnw clean verify` or `mvn clean verify` after applying improvements\n- **BEFORE APPLYING**: Read the reference for detailed rules and examples\n\n## When to use this skill\n\n- Add Quarkus security support\n- Review Quarkus security configuration\n- Improve API authorization in Quarkus\n- Add JWT/OIDC security in Quarkus\n- Harden Quarkus authorization rules\n- Implement SecurityIdentity checks in Quarkus services\n\n## Workflow\n\n1. **Read reference and assess project context**\n\nRead `references/404-frameworks-quarkus-security.md` and inspect the current project setup before proposing changes.\n\n2. **Gather scope and decide target improvements**\n\nIdentify requested outcomes, constraints, and the minimum safe set of changes to apply.\n\n3. **Apply framework-aligned changes**\n\nImplement or refactor security-related configuration/code following the reference patterns and project conventions.\n\n4. **Run verification and report results**\n\nExecute appropriate build/tests and summarize what changed, what was verified, and any follow-up actions.\n\n## Reference\n\nFor detailed guidance, examples, and constraints, see [references/404-frameworks-quarkus-security.md](references/404-frameworks-quarkus-security.md).","tags":["404","frameworks","quarkus","security","cursor","rules","java","jabrena","agent-skills","ai-skills","claude","claude-code"],"capabilities":["skill","source-jabrena","skill-404-frameworks-quarkus-security","topic-agent-skills","topic-ai-skills","topic-claude","topic-claude-code","topic-claude-code-skills","topic-claude-code-subagents","topic-claude-skills","topic-cursor-agent","topic-cursor-ai","topic-cursor-skills","topic-cursorai","topic-github-copilot"],"categories":["cursor-rules-java"],"synonyms":[],"warnings":[],"endpointUrl":"https://skills.sh/jabrena/cursor-rules-java/404-frameworks-quarkus-security","protocol":"skill","transport":"skills-sh","auth":{"type":"none","details":{"cli":"npx skills add jabrena/cursor-rules-java","source_repo":"https://github.com/jabrena/cursor-rules-java","install_from":"skills.sh"}},"qualityScore":"0.631","qualityRationale":"deterministic score 0.63 from registry signals: · indexed on github topic:agent-skills · 362 github stars · SKILL.md body (2,018 chars)","verified":false,"liveness":"unknown","lastLivenessCheck":null,"agentReviews":{"count":0,"score_avg":null,"cost_usd_avg":null,"success_rate":null,"latency_p50_ms":null,"narrative_summary":null,"summary_updated_at":null},"enrichmentModel":"deterministic:skill-github:v1","enrichmentVersion":1,"enrichedAt":"2026-04-26T12:53:37.825Z","embedding":null,"createdAt":"2026-04-26T12:53:37.825Z","updatedAt":"2026-04-26T12:53:37.825Z","lastSeenAt":"2026-04-26T12:53:37.825Z","tsv":"'/mvnw':122,139 '1':193 '2':211 '3':231 '4':251 '404':1 'action':272 'add':164,177 'align':235 'api':53,173 'appli':43,96,108,128,147,150,230,232 'applic':18 'appropri':258 'assess':197 'auth':25 'authent':27,67,72 'author':35,69,174,184 'base':34,98 'basic':24 'behavior':87 'best':46 'boundari':56 'build/tests':259 'chang':110,130,210,228,236,263 'check':31,188 'clean':140,144 'compil':114,123,126,133 'configur':37,65,171 'configuration/code':243 'constraint':106,221,279 'context':199 'convent':250 'cover':59 'current':205 'data':89 'decid':215 'default':52 'denial/error':85 'design':11,83 'detail':155,275 'endpoint':74 'ensur':111 'exampl':105,158,277 'except':38 'execut':257 'fail':134 'follow':244,270 'follow-up':269 'framework':3,234 'framework-align':233 'frameworks-quarkus-secur':2 'full':118 'gather':212 'good/bad':104 'guidanc':276 'guidelin':42 'handl':86 'harden':182 'identifi':218 'immedi':136 'implement':186,237 'improv':14,116,148,172,217 'includ':19 'inspect':203 'jwt/oidc':23,178 'least':80 'least-privileg':79 'log':92 'mandatori':120 'map':39 'mechan':68 'minimum':224 'mvn':125,143 'need':9 'outcom':220 'path':33 'path-bas':32 'pattern':247 'permiss':30 'permital':28,73 'practic':47 'privileg':81 'project':113,198,206,249 'propos':209 'protect':77,90 'quarkus':4,17,20,40,44,63,165,169,176,181,183,190 'read':151,194,200 'recommend':97 'refactor':239 'refer':101,153,195,246,273 'references/404-frameworks-quarkus-security.md':201,281,282 'relat':242 'report':255 'request':219 'resourc':76 'respons':94 'result':256 'review':12,168 'role':82 'rolesallow':26,71 'rule':102,156,185 'run':117,121,138,252 'safe':225 'safeti':131 'scope':95,213 'secur':5,15,21,41,45,50,64,84,109,166,170,179,241 'secure-by-default':49 'security-rel':240 'securityident':29,187 'see':280 'sensit':88 'servic':55,191 'set':226 'setup':207 'skill':62,163 'skill-404-frameworks-quarkus-security' 'source-jabrena' 'stop':135 'strategi':78 'summar':261 'support':167 'target':216 'topic-agent-skills' 'topic-ai-skills' 'topic-claude' 'topic-claude-code' 'topic-claude-code-skills' 'topic-claude-code-subagents' 'topic-claude-skills' 'topic-cursor-agent' 'topic-cursor-ai' 'topic-cursor-skills' 'topic-cursorai' 'topic-github-copilot' 'use':6,161 'verif':119,253 'verifi':137,141,145,266 'workflow':192","prices":[{"id":"5b0c639c-a9bf-4e48-8a35-6bd44adbdd0c","listingId":"e1e134b5-7d46-4206-8787-fd92f9a913a8","amountUsd":"0","unit":"free","nativeCurrency":null,"nativeAmount":null,"chain":null,"payTo":null,"paymentMethod":"skill-free","isPrimary":true,"details":{"org":"jabrena","category":"cursor-rules-java","install_from":"skills.sh"},"createdAt":"2026-04-26T12:53:37.825Z"}],"sources":[{"listingId":"e1e134b5-7d46-4206-8787-fd92f9a913a8","source":"github","sourceId":"jabrena/cursor-rules-java/404-frameworks-quarkus-security","sourceUrl":"https://github.com/jabrena/cursor-rules-java/tree/main/skills/404-frameworks-quarkus-security","isPrimary":false,"firstSeenAt":"2026-04-26T12:53:37.825Z","lastSeenAt":"2026-04-26T12:53:37.825Z"}],"details":{"listingId":"e1e134b5-7d46-4206-8787-fd92f9a913a8","quickStartSnippet":null,"exampleRequest":null,"exampleResponse":null,"schema":null,"openapiUrl":null,"agentsTxtUrl":null,"citations":[],"useCases":[],"bestFor":[],"notFor":[],"kindDetails":{"org":"jabrena","slug":"404-frameworks-quarkus-security","github":{"repo":"jabrena/cursor-rules-java","stars":362,"topics":["agent-skills","ai-skills","claude","claude-code","claude-code-skills","claude-code-subagents","claude-skills","cursor-agent","cursor-ai","cursor-skills","cursorai","github-copilot","intellij-idea","java","prompting","system-prompts"],"license":"apache-2.0","html_url":"https://github.com/jabrena/cursor-rules-java","pushed_at":"2026-04-26T12:50:01Z","description":"A curated and opinionated collection of Skills and Agents to be used in modern SDLC workflows for Java Enterprise development with your favorite AI Agent harness.","skill_md_sha":"cdcdb364b3cf7dc486d33b965dee1886c5e5a8ae","skill_md_path":"skills/404-frameworks-quarkus-security/SKILL.md","default_branch":"main","skill_tree_url":"https://github.com/jabrena/cursor-rules-java/tree/main/skills/404-frameworks-quarkus-security"},"layout":"multi","source":"github","category":"cursor-rules-java","frontmatter":{"name":"404-frameworks-quarkus-security","license":"Apache-2.0","description":"Use when you need to design, review, or improve security in Quarkus applications — including Quarkus Security with JWT/OIDC, basic auth, @RolesAllowed / @Authenticated / @PermitAll, SecurityIdentity, permission checks, path-based authorization in configuration, exception mapping for auth failures, and sensitive-data-safe logging. This should trigger for requests such as Add Quarkus security support; Review Quarkus security configuration; Improve API authorization in Quarkus; Add JWT/OIDC security in Quarkus; Harden Quarkus authorization rules. Part of cursor-rules-java project"},"skills_sh_url":"https://skills.sh/jabrena/cursor-rules-java/404-frameworks-quarkus-security"},"updatedAt":"2026-04-26T12:53:37.825Z"}}