4. Security & Compliance

Provides authentication and authorization services for real_deal platform, supporting third-party logins, OAuth/OIDC flows, and secure session management.

Provides company verification, job posting compliance, content moderation, and regional regulatory checks for the real_deal platform.

Sanitizes external inputs from issue and pull request bodies to prevent prompt injection attacks in AI systems.

Audits code for security and quality compliance with architectural principles using Horizon CLI.

Performs security audits on React Native apps to detect vulnerabilities, leaked secrets, PII exposure, and ensure OWASP MASVS compliance.

Prevents app rejections by ensuring compliance with Apple's App Store Review Guidelines across safety, performance, design, legal, and business requirements.

Provides a security checklist to safeguard applications against common vulnerabilities and attacks.

Scans source code for security vulnerabilities including OWASP top risks, XSS, SQL injection, and secret exposure to support code auditing and threat detection.

Automates WCAG 2.1 accessibility audits for web components and pages, verifying screen reader compatibility and keyboard navigation.

Configures Headscale VPN and firewall rules for secure admin access to private services through a bastion host.

Audits smart contracts and frontend code for critical vulnerabilities including reentrancy and access control flaws.

Provides C++14 code review guidance compliant with AUTOSAR and CERT security standards for safety-critical systems.

Performs C++14 code reviews against AUTOSAR and CERT security standards for safety-critical systems.

Generates ethical, CRPO-compliant lead magnet concepts for therapy practices, providing educational value without diagnostic claims or outcome promises.

Queries Azure RBAC role assignments and definitions for read-only access management analysis.

Analyzes Terraform infrastructure code for security vulnerabilities and compliance issues, enabling proactive risk mitigation.

Delivers expert security analysis, vulnerability assessment, and threat modeling with consultant-style reports and prioritized remediation recommendations for security reviews and compliance.

Delivers expert data privacy compliance analysis for GDPR and CCPA, generating detailed audit reports with prioritized recommendations.

Reviews applications for security vulnerabilities including RBAC configuration, audit logging, secret management, multi-tenant isolation, and LLM prompt injection risks.

Provides live technology stack auditing for any framework, analyzing version currency, code patterns, security advisories, and anti-patterns to deliver consultant-style reports with prioritized recommendations.

Provides expert guidance for configuring and managing KeyCloak, an identity and access management (IAM) system, covering realms, SSO, RBAC, and security policies.

Delivers a structured security review checklist for identifying vulnerabilities in code and infrastructure configurations.

Conducts comprehensive security code reviews to detect vulnerabilities, ensure compliance, and provide remediation guidance for standards like OWASP and GDPR.

Audits code for compliance with Architecture Decision Records (ADRs), identifying violations and ensuring adherence to documented architectural choices.