4. Security & Compliance

Performs CodeQL static analysis for security vulnerability detection, taint tracking, and data flow analysis in code audits and CI/CD pipelines.

Enables line-by-line code analysis to establish architectural context for security audits and vulnerability detection.

Analyzes cryptographic code for timing side-channel vulnerabilities across multiple programming languages.

Reads an asset file and executes a script to reveal a hidden secret code.

Manages secure access to credentials and secrets using 1Password CLI, enabling installation, account setup, and safe secret retrieval/injection.

Provides comprehensive security checklist and patterns for authentication, user input handling, secrets management, and sensitive feature implementation.

Configures API security, credential management, and access controls for MaintainX integrations to enhance security posture.

Enables implementation of role-based access control (RBAC) for Guidewire InsuranceSuite, managing API roles, user permissions, and security policies.

Provides security best practices for Langfuse, focusing on API key protection and data privacy controls in LLM observability setups.

Configures Lokalise enterprise SSO, role-based access control (RBAC), and team management for secure organization-level access.

Manages GDPR compliance, data privacy, and retention policies for TwinMind user data requests and regulatory requirements.

Applies Databricks security best practices for secrets management, access control, and configuration auditing to secure API tokens and user permissions.

Secures Lokalise API tokens and access control through least privilege implementation and configuration auditing.

Provides security best practices for Evernote integrations, focusing on secure OAuth implementation and API credential management.

Manages data export, retention policies, and GDPR compliance for Langfuse trace data in LLM observability workflows.

Enables implementation of PII handling, data retention policies, and GDPR/CCPA compliance for Mistral AI integrations.

Configures enterprise role-based access control (RBAC) and SSO for MaintainX integrations, managing organization-level permissions and access controls.

Applies security best practices for secrets, user data, and audio handling, including API key security and privacy controls.

Manages document lifecycle, signed PDFs, and PII handling for Documenso integrations, ensuring compliance with data retention policies.

Enables role-based access control (RBAC) implementation for Evernote integrations in enterprise multi-tenant systems, managing permissions for business accounts.

Ensures HIPAA-compliant handling of PHI data for clinical AI integrations, including retention policies and data protection.

Enables role-based access control (RBAC) for Obsidian team vaults, managing permissions and collaboration features in enterprise environments.

Applies OpenEvidence security best practices to ensure HIPAA compliance and protect PHI via secure API key management, PHI handling, and configuration audits.

Handles Lokalise translation data with PII redaction and ensures GDPR/privacy compliance for sensitive content.