4. Security & Compliance

Assists with security reviews, penetration testing, threat modeling, compliance (GDPR, HIPAA), and incident response workflows.

Ensures critical user and system actions are logged for security audits and compliance with regulatory standards.

Validates medication data against safety records to ensure compliance with regulatory standards before user display.

Provides a security-focused coding checklist to ensure adherence to MaiHouses security policies and guardrails during development.

Provides comprehensive website audits covering SEO, technical health, content, performance, and security with 140+ rules via squirrelscan CLI.

Configures secure admin access to private services via Headscale VPN and firewall rules on a bastion host.

Provides secure coding guidelines aligned with OWASP Top 10 to prevent common web application vulnerabilities across multiple programming languages and frameworks.

Provides secure coding practices for handling external inputs, system boundaries, and destructive operations with multi-layer validation and observability.

Provides production-ready security practices including OWASP Top 10 mitigation, input validation, SQL injection prevention, and secrets management.

Systematic code review and audit tool with automated security checks, compliance verification, and review checklists.

Automates code reviews to identify security vulnerabilities, performance bottlenecks, and code quality issues before PR creation.

Provides OWASP-based security checklists and vulnerability detection patterns for code review to enhance security auditing and compliance.

Detects and prevents illegal tax avoidance, ensuring compliance with anti-avoidance laws (e.g., Part IVA) and legal defensibility of tax strategies.

Audits Firestore security rules to identify vulnerabilities in ownership enforcement, immutability, and backend authority.

Provides security checklists and patterns for secure implementation of authentication, user input handling, secrets management, and API endpoints.

Scans Bash scripts for PATH prefix vulnerabilities by detecting external commands not shadowed by functions, then files GitHub issues for each finding.

Verifies tax calculations, rates, and legislative references against ATO publications to ensure compliance and defensibility.

Enables implementation and management of role-based access control (RBAC) policies to secure database access and enforce granular permissions.

Creates a secure Git commit by excluding artifacts and secrets, preventing accidental exposure of sensitive data.

Manages encrypted multi-chain cryptocurrency keys (Ethereum, Bitcoin, etc.) via air-gapped floppy disk storage for secure offline key management.

Validates web content against WCAG 2.1 standards to ensure accessibility compliance for users with disabilities.

Scans software dependencies for license compliance and identifies potential license conflicts to mitigate legal risks.

Adds secret scanning and git hooks to prevent accidental commits of sensitive credentials, securing repositories against common security risks.

Provides comprehensive security analysis with vulnerability detection and remediation tracking for identified security issues.