4. Security & Compliance

Unified API for integrating Supabase, Clerk, and Firebase Auth, handling registration, login, OAuth, and session management.

Provides a framework-agnostic TypeScript solution for secure authentication, authorization, and session management in web applications.

Provides cookie-based authentication for Databricks Apps when OAuth or PAT tokens are unavailable, ensuring secure access with User Authorization enabled.

Provides a unified security framework integrating principles, requirements, architecture, testing, operations, and compliance across all development phases.

Conducts security analysis, vulnerability assessment, and code reviews to identify and mitigate security risks.

Comprehensive testing suite for validating software quality, security, compliance, and user acceptance through multiple testing methodologies.

Conducts security configuration audits to identify vulnerabilities and assess system hardening status based on user queries.

Applies security awareness during code review and implementation to catch common vulnerabilities without requiring a full security audit.

Reviews code for security vulnerabilities, adherence to best practices, and overall quality to ensure robust and secure software.

Systematically audits codebases for bloat, dead code, and quality using the Subtractive Triad framework.

Analyzes content visibility issues and safety compliance conditions, including shadowban checks, using the VisibilityLib safety layer before final content ranking.

Provides security patterns for authentication, input validation, and CSP in web applications, especially with Supabase SSR.

Performs automated and manual WCAG accessibility audits on React components to ensure compliance with accessibility standards.

Generates release audit reports including version, operator, duration, and results for compliance checks, incident reviews, and release evaluations.

Automates the addition, verification, and updating of HPE copyright headers in source files to ensure compliance with company policy.

Manages encrypted secrets for the micelio project, including setup, environment variables, deployment credentials, and fnox/age encryption troubleshooting.

Enables fine-grained user access control in Umbraco backoffice through official permission configuration.

Analyzes NuGet package dependencies to detect security vulnerabilities and recommend updates.

Provides secure authentication and authorization principles for login flows, endpoint protection, and permission enforcement in system design.

Automates security audits on code changes to detect OWASP Top 10 vulnerabilities, ensuring secure code deployment.

Encrypts and decrypts Bitcoin SV (BSV) backup files using the bitcoin-backup CLI for secure wallet management.

Encrypts and decrypts messages using Bitcoin SV (BSV) keys and @bsv/sdk, supporting ECDH and AES-256-GCM cryptographic standards.

Provides cryptographic message signing and verification for Bitcoin SV (BSV) protocols, including BRC-77, BSM, and Sigma signing.

Provides cryptographic key derivation for hierarchical deterministic wallets (BIP32, BRC-42) and mnemonic-based key generation on BSV.