Adoption

Agent Skills are supported by leading AI development tools.

VS Code Gemini CLI GitHub Goose Amp Cursor Claude Code Letta OpenCode Claude OpenAI Codex Factory VS Code Gemini CLI GitHub Goose Amp Cursor Claude Code Letta OpenCode Claude OpenAI Codex Factory

renatocaliari/cali-server-security

Name: cali-server-security
Author: renatocaliari

skills/local/cali-server-security/SKILL.md

npx skillsauth add renatocaliari/agent-sync-public-skills cali-server-security

Clean

TrivyContainer and dependency vulnerability scanner

Clean

SemgrepStatic code analysis for vulnerabilities

Clean

mcp-scan (Snyk)Model Context Protocol security validation

Skipped

Snyk (dep)Open source security scanning

Skipped

Socket.devSupply chain security analysis

Skipped

VirusTotalMulti-engine malware detection

Skipped

CrowdStrikeAdvanced threat intelligence

Skipped

OSV-ScannerOpen Source Vulnerability database check

Skipped

OWASP Dep-Check

Server Security Audit & Hardening

6-layer security model for private servers behind Tailscale.

Security Layers

Internet → CloudFlare → UFW → Tailscale → SSH → Docker → App

| Layer | Purpose | Tool | |---|---|---| | 1. CloudFlare | CDN, DDoS, SSL, WAF, hide real IP | CloudFlare DNS + Tunnel | | 2. UFW | Port filtering, default deny | UFW firewall | | 3. Tailscale | WireGuard tunnel, private network | Tailscale | | 4. SSH | Authentication, access control | OpenSSH / Tailscale SSH | | 5. Docker | Container isolation, socket security | Docker Engine | | 6. Application | Process isolation, env vars, volumes | Docker Compose |

Required Stack

# Server packages
tailscale          # WireGuard tunnel
ufw                # Firewall
docker             # Container runtime
docker-compose     # Multi-container apps
fail2ban           # (optional) Brute-force protection

# SSH config
openssh-server     # SSH daemon

Audit Commands

Layer 2: UFW

sudo ufw status verbose
# Check:
#   Status: active
#   Default: deny (incoming), allow (outgoing)
#   Only tailscale0 ports allowed (22, 2222)
#   80/tcp and 443/tcp allowed (for web)

Layer 3: Tailscale

tailscale status
# Check:
#   Server listed with correct IP
#   SSH enabled
#   Correct tags assigned

tailscale set --ssh=true  # ensure SSH enabled

Layer 4: SSH

# Check critical settings
grep -E "PermitRootLogin|PasswordAuthentication|X11Forwarding|MaxAuthTries|LoginGraceTime" /etc/ssh/sshd_config

# Expected:
#   PermitRootLogin no
#   PasswordAuthentication no
#   X11Forwarding no
#   MaxAuthTries 3
#   LoginGraceTime 30

# Check deploy user
id deploy
cat /home/deploy/.ssh/authorized_keys
# Verify: command= restricts to docker compose only
# Verify: no-agent-forwarding, no-port-forwarding, no-X11-forwarding

Layer 5: Docker

# Socket permissions
ls -la /var/run/docker.sock
# Expected: srw-rw---- root docker

# No insecure registries
cat /etc/docker/daemon.json | grep insecure
# Expected: nothing or empty

# Containers not exposing ports on 0.0.0.0
sudo ss -tlnp | grep -E "0\.0\.0\.0:(3001|3002|4040|9122|9111)"
# Expected: nothing

Layer 6: Application

# Check container isolation
docker ps --format "{{.Names}}: {{.Ports}}"
# Expected: no 0.0.0.0 bindings for internal services

# Check volumes
docker inspect <container> | grep -A5 "Mounts"
# Expected: named volumes or specific host paths, not /

Vulnerability Categories

Critical (fix immediately)

| Issue | Risk | Fix | |---|---|---| | PermitRootLogin yes | Root SSH access | Set to no | | PasswordAuthentication yes | Brute force risk | Set to no |

Medium (fix soon)

| Issue | Risk | Fix | |---|---|---| | X11Forwarding yes | Display hijacking | Set to no | | Processes on 0.0.0.0 | Port exposure | Bind to 127.0.0.1 or tailscale0 | | No fail2ban | No brute-force protection | Install + configure |

Low (consider)

| Issue | Risk | Fix | |---|---|---| | No AllowUsers | Any user can SSH | Add AllowUsers deploy | | No log monitoring | Missed intrusion attempts | Set up log alerts |

Hardening Checklist

SSH Hardening

# Add to /etc/ssh/sshd_config
PermitRootLogin no
PasswordAuthentication no
X11Forwarding no
MaxAuthTries 3
LoginGraceTime 30
AllowUsers deploy

# Restart SSH
sudo systemctl restart ssh

UFW Hardening

# Verify rules
sudo ufw status numbered

# Remove any overly permissive rules
sudo ufw delete <rule-number>

# Rate limiting (optional)
sudo ufw limit 22/tcp

Docker Hardening

# Restrict socket access
sudo chmod 660 /var/run/docker.sock
sudo chown root:docker /var/run/docker.sock

# No privileged containers
docker inspect <container> | grep Privileged
# Expected: false

# Read-only rootfs (optional)
docker run --read-only ...

fail2ban (optional)

sudo apt install fail2ban
sudo systemctl enable fail2ban

# Configure
cat > /etc/fail2ban/jail.local << 'EOF'
[sshd]
enabled = true
port = 22,2222
filter = sshd
logpath = /var/log/auth.log
maxretry = 3
bantime = 3600
EOF

sudo systemctl restart fail2ban

Examples

Example 1: Full audit

# Run all checks
echo "=== UFW ===" && sudo ufw status verbose
echo "=== SSH ===" && grep -E "PermitRootLogin|PasswordAuthentication|X11Forwarding" /etc/ssh/sshd_config
echo "=== Tailscale ===" && tailscale status
echo "=== Docker ===" && docker ps --format "{{.Names}}: {{.Ports}}"
echo "=== Ports ===" && sudo ss -tlnp | grep -E "0\.0\.0\.0"

Example 2: Fix critical vulnerabilities

# Fix SSH (run as root)
sudo sed -i 's/PermitRootLogin yes/PermitRootLogin no/' /etc/ssh/sshd_config
sudo sed -i 's/PasswordAuthentication yes/PasswordAuthentication no/' /etc/ssh/sshd_config
sudo sed -i 's/X11Forwarding yes/X11Forwarding no/' /etc/ssh/sshd_config
sudo systemctl restart ssh

Example 3: Check for exposed ports

# Find processes listening on 0.0.0.0
sudo ss -tlnp | grep "0\.0\.0\.0" | awk '{print $NF, $4}'
# Should only show: sshd (22), caddy (80,443)

Edge Cases

Server is public (no Tailscale)

UFW must allow SSH on standard port (22) from specific IPs
Consider fail2ban for brute-force protection
Use key-based auth only (no passwords)

Multiple deploy users

Each user needs separate command= in authorized_keys
Use AllowUsers to whitelist all deploy users
Verify each user's Docker group membership

Root access needed temporarily

Use sudo from deploy user instead of PermitRootLogin
Add deploy user to sudoers: deploy ALL=(ALL) NOPASSWD: /usr/bin/docker
Never leave PermitRootLogin yes permanently

Container exposes ports

Check docker-compose.yml for ports: section
Bind to 127.0.0.1:host_port instead of host_port:host_port
Use UFW to block if needed

Test Cases

Should

[ ] UFW active with default deny incoming
[ ] SSH only accessible via Tailscale (port 22, 2222)
[ ] PermitRootLogin set to no
[ ] PasswordAuthentication set to no
[ ] Deploy user is non-root with docker group
[ ] Deploy SSH key has command= restriction
[ ] Docker socket owned by root:docker
[ ] No processes listening on 0.0.0.0 for internal services

Should NOT

[ ] Root should NOT be able to SSH directly
[ ] Password auth should NOT be enabled
[ ] Internal services should NOT bind to 0.0.0.0
[ ] Deploy user should NOT have shell access
[ ] Docker socket should NOT be world-readable

renatocaliari/cali-server-security

skills/local/cali-server-security/SKILL.md

[Cali] Server security audit and hardening for private servers behind Tailscale. Use when: auditing server security, hardening SSH/firewall/Docker, checking for vulnerabilities, setting up fail2ban, reviewing port exposure, or responding to security alerts. Covers 6 layers: CloudFlare, UFW, Tailscale, SSH, Docker, Application. Triggers: "server security", "security audit", "harden server", "SSH hardening", "firewall rules", "UFW config", "fail2ban", "port security", "Docker security", "vulnerability check", "security review".

1 stars

testing

Updated May 29, 2026

$ install --global

skillsauth

npx skillsauth add renatocaliari/agent-sync-public-skills cali-server-security

Install this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.

Security Scan Results

3 of 9 scanners reported clean

Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.

Scanners Passed

Scanners in report

Clean

TrivyContainer and dependency vulnerability scanner

95%

Clean

SemgrepStatic code analysis for vulnerabilities

95%

Clean

mcp-scan (Snyk)Model Context Protocol security validation

95%

Skipped

Snyk (dep)Open source security scanning

50%

Skipped

Socket.devSupply chain security analysis

50%

Skipped

VirusTotalMulti-engine malware detection

50%

Skipped

CrowdStrikeAdvanced threat intelligence

50%

Skipped

OSV-ScannerOpen Source Vulnerability database check

50%

Skipped

OWASP Dep-Check

50%

Last scanned: May 29, 2026, 4:17 AM184.1s3 files scanned

SKILL.md

name:: cali-server-security
description:: >
Use when:: auditing server security, hardening SSH/firewall/Docker, checking for
security alerts. Covers 6 layers:: CloudFlare, UFW, Tailscale, SSH, Docker, Application.
Triggers:: server security", "security audit", "harden server", "SSH hardening",
frequency:: rare
category:: infra
context-cost:: low
disable-model-invocation:: true

Server Security Audit & Hardening

6-layer security model for private servers behind Tailscale.

Security Layers

Internet → CloudFlare → UFW → Tailscale → SSH → Docker → App

Required Stack

# Server packages
tailscale          # WireGuard tunnel
ufw                # Firewall
docker             # Container runtime
docker-compose     # Multi-container apps
fail2ban           # (optional) Brute-force protection

# SSH config
openssh-server     # SSH daemon

Audit Commands

Layer 2: UFW

sudo ufw status verbose
# Check:
#   Status: active
#   Default: deny (incoming), allow (outgoing)
#   Only tailscale0 ports allowed (22, 2222)
#   80/tcp and 443/tcp allowed (for web)

Layer 3: Tailscale

tailscale status
# Check:
#   Server listed with correct IP
#   SSH enabled
#   Correct tags assigned

tailscale set --ssh=true  # ensure SSH enabled

Layer 4: SSH

# Check critical settings
grep -E "PermitRootLogin|PasswordAuthentication|X11Forwarding|MaxAuthTries|LoginGraceTime" /etc/ssh/sshd_config

# Expected:
#   PermitRootLogin no
#   PasswordAuthentication no
#   X11Forwarding no
#   MaxAuthTries 3
#   LoginGraceTime 30

# Check deploy user
id deploy
cat /home/deploy/.ssh/authorized_keys
# Verify: command= restricts to docker compose only
# Verify: no-agent-forwarding, no-port-forwarding, no-X11-forwarding

Layer 5: Docker

# Socket permissions
ls -la /var/run/docker.sock
# Expected: srw-rw---- root docker

# No insecure registries
cat /etc/docker/daemon.json | grep insecure
# Expected: nothing or empty

# Containers not exposing ports on 0.0.0.0
sudo ss -tlnp | grep -E "0\.0\.0\.0:(3001|3002|4040|9122|9111)"
# Expected: nothing

Layer 6: Application

# Check container isolation
docker ps --format "{{.Names}}: {{.Ports}}"
# Expected: no 0.0.0.0 bindings for internal services

# Check volumes
docker inspect <container> | grep -A5 "Mounts"
# Expected: named volumes or specific host paths, not /

Vulnerability Categories

Critical (fix immediately)

| Issue | Risk | Fix | |---|---|---| | PermitRootLogin yes | Root SSH access | Set to no | | PasswordAuthentication yes | Brute force risk | Set to no |

Medium (fix soon)

Low (consider)

| Issue | Risk | Fix | |---|---|---| | No AllowUsers | Any user can SSH | Add AllowUsers deploy | | No log monitoring | Missed intrusion attempts | Set up log alerts |

Hardening Checklist

SSH Hardening

# Add to /etc/ssh/sshd_config
PermitRootLogin no
PasswordAuthentication no
X11Forwarding no
MaxAuthTries 3
LoginGraceTime 30
AllowUsers deploy

# Restart SSH
sudo systemctl restart ssh

UFW Hardening

# Verify rules
sudo ufw status numbered

# Remove any overly permissive rules
sudo ufw delete <rule-number>

# Rate limiting (optional)
sudo ufw limit 22/tcp

Docker Hardening

# Restrict socket access
sudo chmod 660 /var/run/docker.sock
sudo chown root:docker /var/run/docker.sock

# No privileged containers
docker inspect <container> | grep Privileged
# Expected: false

# Read-only rootfs (optional)
docker run --read-only ...

fail2ban (optional)

sudo apt install fail2ban
sudo systemctl enable fail2ban

# Configure
cat > /etc/fail2ban/jail.local << 'EOF'
[sshd]
enabled = true
port = 22,2222
filter = sshd
logpath = /var/log/auth.log
maxretry = 3
bantime = 3600
EOF

sudo systemctl restart fail2ban

Examples

Example 1: Full audit

# Run all checks
echo "=== UFW ===" && sudo ufw status verbose
echo "=== SSH ===" && grep -E "PermitRootLogin|PasswordAuthentication|X11Forwarding" /etc/ssh/sshd_config
echo "=== Tailscale ===" && tailscale status
echo "=== Docker ===" && docker ps --format "{{.Names}}: {{.Ports}}"
echo "=== Ports ===" && sudo ss -tlnp | grep -E "0\.0\.0\.0"

Example 2: Fix critical vulnerabilities

# Fix SSH (run as root)
sudo sed -i 's/PermitRootLogin yes/PermitRootLogin no/' /etc/ssh/sshd_config
sudo sed -i 's/PasswordAuthentication yes/PasswordAuthentication no/' /etc/ssh/sshd_config
sudo sed -i 's/X11Forwarding yes/X11Forwarding no/' /etc/ssh/sshd_config
sudo systemctl restart ssh

Example 3: Check for exposed ports

# Find processes listening on 0.0.0.0
sudo ss -tlnp | grep "0\.0\.0\.0" | awk '{print $NF, $4}'
# Should only show: sshd (22), caddy (80,443)

Edge Cases

Server is public (no Tailscale)

UFW must allow SSH on standard port (22) from specific IPs
Consider fail2ban for brute-force protection
Use key-based auth only (no passwords)

Multiple deploy users

Each user needs separate command= in authorized_keys
Use AllowUsers to whitelist all deploy users
Verify each user's Docker group membership

Root access needed temporarily

Use sudo from deploy user instead of PermitRootLogin
Add deploy user to sudoers: deploy ALL=(ALL) NOPASSWD: /usr/bin/docker
Never leave PermitRootLogin yes permanently

Container exposes ports

Check docker-compose.yml for ports: section
Bind to 127.0.0.1:host_port instead of host_port:host_port
Use UFW to block if needed

Test Cases

Should

[ ] UFW active with default deny incoming
[ ] SSH only accessible via Tailscale (port 22, 2222)
[ ] PermitRootLogin set to no
[ ] PasswordAuthentication set to no
[ ] Deploy user is non-root with docker group
[ ] Deploy SSH key has command= restriction
[ ] Docker socket owned by root:docker
[ ] No processes listening on 0.0.0.0 for internal services

Should NOT

[ ] Root should NOT be able to SSH directly
[ ] Password auth should NOT be enabled
[ ] Internal services should NOT bind to 0.0.0.0
[ ] Deploy user should NOT have shell access
[ ] Docker socket should NOT be world-readable

Related Skills

renatocaliari/cali-lat-md-seed

tools

VerifiedTrustedCommunity

Auto-initialize structured documentation for any project using lat.md (knowledge graph of markdown files with [[wiki links]], // @lat: code refs, and semantic search). Detects cali-product-workflow artifacts (spec-product.md, spec-tech.md, critiques) and uses them as seed material. Falls back to extracting business rules, architecture, and design decisions directly from the codebase. Use when a project lacks structured documentation or when lat.md/ is missing. After seeding, lat.md extension hooks keep documentation alive automatically.

1SKILL.mdUpdated Jun 2, 2026

renatocaliari/cali-lat-md-seed

renatocaliari/cali-ops-server-security

testing

VerifiedTrustedCommunity

1SKILL.mdUpdated May 30, 2026

renatocaliari/cali-ops-server-security

renatocaliari/cali-ops-package-audit

tools

VerifiedTrustedCommunity

Run supply chain security scans before installing packages or before releases. Triggers when: user installs a package (npm, pip, go get, brew), user asks to 'scan dependencies', 'check vulnerabilities', 'supply chain', 'security audit', 'run trivy', 'run socket', or before any release/deployment. Also triggers on mentions of: socket.dev, trivy, OSV-scanner, dotenvx, CVE, dependency audit. Covers all four tools with concrete commands.

1SKILL.mdUpdated May 30, 2026

renatocaliari/cali-ops-package-audit

renatocaliari/cali-ops-github-releases

tools

VerifiedTrustedCommunity

Create GitHub releases following project conventions. Triggers when: user says 'release', 'create release', 'push release', 'deploy to main', 'merge to main', user merges a PR to main, or when git push to main is detected. Also triggers on mentions of: gh release, semver, version bump, changelog, release-please. Covers: config-driven (read .release.yml and execute) and fallback (gh CLI) release flows, versioning rules, tag management, and the mandatory release-on-merge convention.

1SKILL.mdUpdated May 30, 2026

renatocaliari/cali-ops-github-releases

Download

For Claude Desktop. Download once, then upload the file in the app — no terminal needed.

Need help? View full Cowork setup guide →

Install manually

Choose your platform

# Clone the repo
git clone https://github.com/renatocaliari/agent-sync-public-skills.git

# Copy into Claude Code skills folder (global)
cp -r agent-sync-public-skills/skills/local/cali-server-security ~/.claude/skills/

Claude Code Skills — official skills path docs.

Repository

renatocaliari/agent-sync-public-skills

1 stars

Compatible with

Claude Code

OpenAI Codex CLI

ChatGPT