4. Security & Compliance

Security diagnostic tool for Next.js/TypeScript projects, performing OWASP-compliant checks on PRs, API routes, auth logic, dependencies, and secrets.

Ensures application security through security audits, safety rule reviews, and verification of protected paths.

Provides secure coding guidelines aligned with OWASP Top 10 for developers across all programming languages and frameworks.

Static security scanner for Ruby on Rails applications, identifying vulnerabilities like SQL injection and XSS during code audits and CI/CD integration.

Enables secure, serverless device-to-device trust using cryptographic certificates on iOS, supporting QR code pairing and Keychain-stored persistent authentication.

Comprehensive Tailscale setup and management for secure mesh networking, zero-trust infrastructure, and secure access via CLI, ACLs, and API automation.

Comprehensive security testing framework performing SAST, SCA, secret scanning, and infrastructure checks aligned with OWASP Top 10 and CWE/SANS, generating CVSS-scoring remediation reports.

Provides configuration scripts, audit checklists, and remediation procedures for securing macOS and Linux systems.

Audits security and implements secure coding practices for authentication, rate limiting, CSRF, and input validation in web applications.

Comprehensive tool for auditing codebases to identify security vulnerabilities, assess code quality, and evaluate architectural patterns.

Encodes messages invisibly into text using Unicode Variation Selectors for steganographic purposes, enabling hidden communication within normal text.

Performs static analysis, security scans, and dependency checks on .NET code to identify vulnerabilities and ensure code quality.

Manages secrets securely via 1Password CLI, including setup, authentication, and secret injection for development environments.

Analyzes repository structure to generate secure permissions recommendations for Claude Code settings.json, detecting tech stack and build tools.

Queries OSDU user entitlements and roles via the Entitlements API for access management and troubleshooting.

Scans Maven dependencies for version updates and security vulnerabilities (CVEs) using Trivy.

Generates compliant pile load testing reports per IS 2911 (Part 4) 2013, including calculations, pass/fail criteria, and report structure.

Provides dependency vulnerability scanning and version analysis for Maven projects, generating security reports with planned support for Python and Node.js.

Guides agents through full penetration testing workflow including reconnaissance, exploitation, and reporting using Kali Linux tools for security assessments.

A safety-focused skill that activates only upon direct user instruction to prevent accidental execution.

Automates MISRA-C 2023 and CERT-CPP compliance workflows including violation analysis, suppression, and git-based pull request management.

Open-source password manager for secure credential storage and management with self-hosting capability for enhanced privacy control.

Manages and secures passwords and sensitive information in a digital vault for robust credential protection.

Audits tRPC server procedures for security vulnerabilities, input validation, and service-layer architecture compliance using Zod.