4. Security & Compliance

Validates code changes against security, privacy, and compliance standards to prevent violations before deployment.

Enables secure authentication and authorization with OAuth 2.0, JWT, and RBAC, featuring security auditing for production systems.

Guides users through authorization and policy discovery to securely activate autonomous operation mode.

Secures Ethereum transaction signing via MPC presignatures stored on physical floppy disks, requiring manual disk insertion for air-gapped operations.

Reviews Frappe API endpoints for security vulnerabilities, checking for missing permission checks and adherence to security best practices.

Provides FROST threshold signature operations for secure multi-chain transactions, supporting DKG ceremonies and signing across Bitcoin, Solana, Cosmos, and Zcash.

Provides expert guidance for implementing and troubleshooting fine-grained access control rules in Frappe Tweaks, including rule evaluation and SQL generation.

Reviews code for OWASP top vulnerabilities, providing detailed security findings and actionable remediation advice.

Secure MPC signing server for Sigil, enabling Model Context Protocol (MCP) compatibility with Claude Desktop, VS Code, and MCP-compliant clients.

Enforces security practices for shared libraries, covering audits, dependency vulnerabilities, and secure coding to protect consumers.

Validates plugin quality and adherence to skills-first architecture and 2026 best practices through comprehensive auditing and compliance checks.

Embeds sensitive information within indistinguishable noise to enable covert data transmission and prevent detection.

Provides security best practices for code review, authentication, secrets management, and dependency scanning using OWASP patterns and injection prevention techniques.

Reviews GCP infrastructure and configurations for security compliance, offering best practices for IAM, storage, and Terraform deployments.

Creates deceptive targets to exponentially increase surveillance costs for adversaries, acting as a security deterrent.

Reviews Azure infrastructure security configurations, RBAC policies, storage accounts, and deployment templates to enforce secure deployment patterns.

Provides structured threat modeling methodology including STRIDE analysis, attack trees, and CVSS/DREAD risk assessment for vulnerability identification.

Reviews AWS infrastructure for security compliance, including IAM policies, S3 buckets, Lambda, and CloudFormation templates, providing secure deployment patterns.

Scans Python web applications (Flask, Django, FastAPI) for OWASP Top 10 vulnerabilities, dependency CVEs, and security flaws, generating actionable reports.

Provides structured pentest workflows and methodologies for vulnerability identification, security assessments, and bug bounty preparation.

Provides a security checklist for authentication, input handling, and sensitive data management in engineering workflows.

Expert in identifying and mitigating web application vulnerabilities including OWASP Top 10 risks such as XSS, SQLi, and CSRF through security testing.

Workflow for building security tools including scanners, fuzzers, and CLI utilities through scripting and automation.

Automates security assessments through bash scripts for system enumeration and post-exploitation workflows.