4. Security & Compliance

Provides comprehensive security and performance best practices for Supabase, covering RLS policies and Clerk authentication setup.

Provides security checklist and patterns for secure implementation of authentication, user input handling, secrets management, and sensitive API endpoints.

Enforces security and architectural best practices for Node.js and Firebase Cloud Functions during API endpoint and trigger modifications.

Analyzes and cleans permission allowlists by identifying dangerous patterns and redundancies, with interactive review for security audits.

Enforces multi-layer data validation across system boundaries to prevent failures from invalid data, making bugs structurally impossible.

Offers Elixir security patterns, OWASP mitigations, and compliance best practices for secure application development.

Verifies code and design quality for consistency with legal regulations and internal laws, ensuring compliance before deployment.

Reviews GitHub pull requests using Process-Context Engine and Law-Driven Engineering to ensure legal compliance and contextual grounding.

Verifies Law-Driven Engineering grounding compliance by validating legal term verification methods, integrated into CI/CD pipelines for automated checks.

Real-time monitoring of law violations in production, feeding findings to PCE memory for continuous compliance improvement.

Standardizes documentation of business compliance conditions using Law-Driven Engineering (LDE) for new or updated legal requirements.

Detects critical security vulnerabilities including authorization leaks, injection risks, and dependency flaws during development and security reviews.

Configures Bazzite security features including LUKS disk encryption with TPM auto-unlock, secure boot key management, and sudo password feedback.

Ensures mobile application security through sensitive data protection, secure network configuration, and production readiness compliance.

Encrypts patient data using AES-256-GCM to ensure HIPAA compliance in healthcare applications.

Commits transaction hashes to immutable AgentDB ledger for regulatory compliance in clinical analysis audit trails.

Validates image file signatures using magic bytes and computes SHA-256 hash for cryptographic integrity verification.

Enforces CSP, input sanitization, encryption standards, and GDPR compliance for secure handling of clinical data applications.

Automates GDPR data subject requests including deletion, access, and portability for users.

Performs comprehensive code security audits analyzing OWASP Top 10 risks, vulnerable dependencies, exposed secrets, and configurations before release.

Enforces data isolation rules between different provider tenants to ensure security and compliance in multi-tenant applications.

Creates systematic, prioritized web security testing plans based on the OWASP Web Security Testing Guide (WSTG).

Designs security audit trails and telemetry for rapid threat detection and response, following OWASP Logging best practices.

Prevents application vulnerabilities and integrates security practices into the development lifecycle to ensure secure software delivery.