4. Security & Compliance

Manages cryptographic assets including keys, CSRs, and certificates with enforced security policies and full audit trails.

Provides application security patterns for authentication, input validation, and OWASP Top 10 vulnerability mitigation including SQL injection and XSS.

Automates detection of sensitive data in git repositories to prevent accidental exposure of credentials and tokens before public sharing.

Audits code for security vulnerabilities against OWASP Top 10, identifying XSS, SQL injection, and CSRF risks.

Manages secure authentication for Knack API, including API key handling, token management, and session validation.

Specializes in implementing Clerk-based authentication with WebAuthn, passkeys, and passwordless methods for secure, user-friendly logins.

Scans project dependencies for security vulnerabilities, outdated packages, and optimization opportunities to ensure secure dependency management.

Scans code and directories for sensitive data like API keys and passwords to prevent accidental exposure before committing or pushing code.

Command-line toolkit for disassembling, analyzing, debugging, and patching binaries across formats including ELF, PE, Mach-O, and firmware.

Guides implementation of secure authentication and authorization patterns including JWT, OAuth2, and RBAC for robust access control systems and API security.

Provides automated test cases for validating Supabase Row Level Security (RLS) policies, ensuring user isolation, tenant security, and data leak prevention.

Manages Clerk-based user sessions with JWT verification, token refresh, and multi-session security for secure authentication workflows.

Performs security audits to detect OWASP Top 10 vulnerabilities, insecure dependencies, and security misconfigurations in applications.

Integrates Clerk authentication with Supabase for user synchronization, JWT-based RLS policies, and secure database access.

Provides pre-configured Row Level Security (RLS) templates for Supabase to enforce multi-tenant isolation, role-based access, and secure data access policies.

Provides webhook security tools including signature verification, event logging, and replay attack prevention for secure implementation, especially for payment systems like Stripe.

Leverages Shodan to track threat actors, identify attack infrastructure, and monitor emerging threats for security operations.

Provides best practices for authoring, reviewing, and refactoring OpenFGA authorization models, including relationship definitions and permission structures.

Continuously monitors organizational assets via Shodan for security posture, attack surface management, and change detection.

Conducts security reconnaissance via Shodan to discover internet-facing assets, map networks, and identify exposed systems for vulnerability assessment.

Performs vulnerability scans on internet-facing systems via Shodan to identify CVEs and conduct security audits.

Sanitizes issue and PR body inputs to prevent prompt injection attacks in AI-driven systems.

Reviews code for security vulnerabilities using OWASP Top 10 standards to ensure secure application development.

Provides security hardening best practices for Dokploy templates covering secrets management, network isolation, least privilege, and image security.