Security & Testing Agent Skills

Environment Secret Detector

Detects and secures sensitive environment variables and credentials to prevent accidental data exposure.

CORS Security Policy Validator

Analyzes and validates Cross-Origin Resource Sharing (CORS) configurations to identify security vulnerabilities and ensure compliance with industry best practices.

Secret Scanner

Identifies and prevents the accidental exposure of sensitive credentials, API keys, and tokens within your codebase.

Path Traversal Finder

Identifies and mitigates directory traversal vulnerabilities by scanning source code for insecure file handling patterns.

Vast.ai Enterprise RBAC

Configures enterprise-grade SSO, role-based access control, and organization management for Vast.ai infrastructure.

Container Security Auditor

Audits container environments and configurations to identify vulnerabilities, ensure compliance, and implement enterprise-grade security standards.

Infrastructure Compliance Checker

Automates infrastructure policy validation and compliance monitoring to ensure cloud environments meet security and regulatory standards.

Kubernetes RBAC Analyzer

Analyzes and audits Kubernetes Role-Based Access Control configurations to identify security risks and ensure least-privilege compliance.

GDPR Compliance Scanner

Scans codebases and configurations to identify and remediate potential GDPR compliance issues automatically.

PCI DSS Validator

Validates compliance and identifies security gaps for Payment Card Industry Data Security Standard (PCI DSS) requirements within your codebase.

Replit Policy & Guardrails

Enforces code quality, security standards, and automated guardrails for Replit integrations using linting and CI/CD policies.

XSS Vulnerability Scanner

Scans codebases for Cross-Site Scripting (XSS) vulnerabilities and provides automated remediation guidance based on security best practices.

Security Headers Generator

Generates and implements essential HTTP security headers to protect web applications against common vulnerabilities and attacks.

Clerk Authentication Setup

Automates the installation and configuration of Clerk SDKs for secure user authentication in modern web applications.

OpenRouter Compliance Review

Conducts automated security and compliance audits for OpenRouter integrations to ensure data safety and regulatory adherence.

HIPAA Compliance Checker

Audits healthcare applications and infrastructure to identify vulnerabilities and ensure strict adherence to HIPAA data security standards.

Security Misconfiguration Finder

Audits infrastructure-as-code and application settings to identify and remediate security vulnerabilities and configuration drift.

Windsurf Privacy & Data Governance

Configures enterprise-grade privacy settings and data retention policies for Windsurf deployments to ensure regulatory compliance.

Content Security Policy (CSP) Generator

Generates and validates robust Content Security Policies to protect web applications against Cross-Site Scripting and data injection attacks.

SOC 2 Audit Readiness Assistant

Automates SOC 2 audit preparation by gathering evidence, assessing security controls, and identifying compliance gaps across your infrastructure and documentation.

Threat Model Creator

Generates comprehensive threat models and security architectures to identify vulnerabilities and ensure compliance with industry standards.

HTTPS Certificate Checker

Verifies and manages SSL/TLS certificates to ensure secure web connections and prevent service downtime.

Data Privacy Scanner

Scans codebases for data privacy vulnerabilities and sensitive information exposure to ensure regulatory compliance and data protection.

Gamma Enterprise RBAC

Implements enterprise-grade role-based access control and multi-tenant authorization for Gamma integrations.

LangChain Local Dev Loop

Streamlines LangChain application development by configuring project structures, mock testing environments, and automated dev workflows.

Clerk Auth Troubleshooting

Diagnoses and resolves authentication, configuration, and middleware errors for the Clerk SDK.

Clerk Authentication Security Basics

Hardens your application's Clerk authentication implementation using industry security best practices and verified implementation patterns.

Clerk Migration Deep Dive

Facilitates the migration of users and authentication logic from legacy providers like Auth0, Firebase, and Supabase to Clerk.

Cookie Security Analyzer

Analyzes and configures secure cookie attributes to prevent session-based vulnerabilities and protect user data.

Vercel Security & Access Control

Implements industry-standard security best practices for Vercel environment variables, secrets, and project access controls.