4. Security & Compliance

Enforces security standards including authentication protocols, input validation, and OWASP compliance for secure application development.

Reviews project code and configuration files for security vulnerabilities and exposed sensitive information, providing security best practice recommendations.

Maintains prompt injection defenses by running security regression tests and adding new test cases for input surfaces and patterns.

Generates cryptographically secure passwords upon user request for enhanced security.

Conducts a single-session security audit on codebases to identify vulnerabilities and security risks.

Completes mandatory security checks and data validation before terminating a user session.

Provides red team tactics based on MITRE ATT&CK, covering attack phases, detection evasion, and reporting.

Decrypts MCP tokens to enable secure remote session access, ensuring token confidentiality and integrity.

Performs advanced vulnerability analysis using OWASP 2025 standards, supply chain security assessment, and risk prioritization for comprehensive security evaluation.

Audits code for security vulnerabilities including OWASP Top 10 risks and GDPR compliance in authentication, authorization, and API security.

Conducts security audits aligned with AWS Well-Architected Framework Security pillar, analyzing authentication, authorization, data protection, input validation, and secrets management.

Scans critical files for hardcoded secrets and security risks before editing, ensuring safe configuration changes.

Scans codebases and dependencies to identify and report known security vulnerabilities and issues.

Conducts advanced security analysis using high-reasoning capabilities to identify and evaluate potential threats in systems.

Automates verification of code and infrastructure configurations against security standards and regulatory compliance requirements.

Provides security engineering services including threat modeling, penetration testing, vulnerability assessment, and compliance with GDPR, HIPAA, and OWASP Top 10.

Performs static code analysis, enforces quality standards, and identifies security vulnerabilities in source code.

Automates security audits of codebases to identify vulnerabilities and enforce security best practices.

Validates plan document structure and frontmatter for compliance, ensuring proper formatting and metadata before commits.

Verifies end-to-end judgment integrity and blockchain proof validation on PoJ for security audits and compliance checks.

Performs security audits by identifying vulnerabilities through adversarial thinking and adherence to OWASP standards.

Prevents accidental exposure of sensitive credentials and monitors application errors to enhance security posture and compliance.

Comprehensive security scanning for SAST, secrets detection, OWASP vulnerabilities, container security, and IaC analysis.

Assists in designing and reviewing secure systems by addressing authentication, authorization, data protection, and adversarial input handling.