security-review
A comprehensive security auditing and hardening assistant that applies best practices for authentication, input validation, secrets management, and SQL injection prevention to your codebase.
Discover reusable agent skills, browse implementation details, and find the right skill for your workflow.
106 skills found
A comprehensive security auditing and hardening assistant that applies best practices for authentication, input validation, secrets management, and SQL injection prevention to your codebase.
Automate regulatory compliance testing for GDPR, CCPA, HIPAA, SOC2, and PCI-DSS to ensure legal adherence, prepare for audits, and secure sensitive data.
Language-agnostic backend architectural patterns covering API design, authentication, security protocols, and database modeling.
🛡️ GDPR & LGPD Privacy Guardian: Automated compliance scanner that detects PII exposure, insecure logging, and tracking violations in your codebase to prevent regulatory fines.
Perform deep security analysis on codebases using CodeQL for interprocedural data flow, taint tracking, and automated vulnerability detection across multiple languages.
Analyze C++ code for real-time safety violations including heap allocations, locks, blocking calls, and non-deterministic operations in high-performance audio threads.
Monitor Runwall security posture, enabled guardrails, and recent audit logs for Claude Code, Codex, and MCP-based development environments.
Port Semgrep rules to new languages using a strict, test-driven methodology. Includes applicability analysis, AST-based translation, and automated validation for each target language.
Detects timing side channels in cryptographic code to prevent secret data leakage. Essential for auditing sensitive implementations.
Build, optimize, and maintain production-ready backend systems using Node.js, Python, Go, and Rust. Includes API design, database management, security, and DevOps best practices.
Architect features within the RBAC modular permissions system. Guides workspace design, permission mapping, CASL integration, and role hierarchy for secure, multi-tenant software.
Perform automated, rule-based performance and reliability audits for React and Next.js applications, covering bundle size, waterfalls, rendering, and data fetching.