4. Security & Compliance

24 skills

Found 5212 skills

Total Stars:2.7M

Avg Stars:523

Sort by:Stars Desc Stars Asc Name A-Z Name Z-A

sast-configuration

HermeticOrmus

Configures Static Application Security Testing (SAST) tools to automate vulnerability detection in application code, enhancing security in DevSecOps pipelines.

SAST

DevSecOps

Vulnerability Detection

4. Security & Compliance

kyverno-pod-security-templates

adaptive-enforcement-lab

Enforces Kubernetes pod security policies including Pod Security Standards, privilege restrictions, and security profiles to enhance cluster security.

Kyverno

Kubernetes

Pod Security Standards

4. Security & Compliance

security-review

guvnr-dev

Performs security code reviews using OWASP guidelines and AI security best practices to identify vulnerabilities.

OWASP

AI Security

Code Auditing

4. Security & Compliance

github-actions-security-patterns-hub

adaptive-enforcement-lab

Provides security patterns for GitHub Actions covering action pinning, GITHUB_TOKEN permissions, third-party risks, secret management, and runner security.

GitHub Actions

Secret Management

Security Patterns

4. Security & Compliance

opa-rbac-templates

adaptive-enforcement-lab

Generates OPA RBAC templates to prevent cluster-admin privilege escalation, restrict privileged verbs, and block wildcard permissions.

OPA

RBAC

Kubernetes

4. Security & Compliance

risk-prioritization-framework-for-engineers

adaptive-enforcement-lab

Framework for engineers to prioritize security risks using CVSS, exploitability analysis, and blast radius for effective vulnerability remediation.

CVSS

Blast Radius

Vulnerability Remediation

4. Security & Compliance

auth-implementation-patterns

HermeticOrmus

Provides secure authentication and authorization implementation patterns including JWT, OAuth2, and RBAC for building robust access control systems and securing APIs.

JWT

OAuth2

RBAC

4. Security & Compliance

audit

vaoan

Conducts comprehensive codebase audits for consistency, bugs, and documentation issues across scripts, skills, and rules.

Code Audit

Bug Detection

Documentation Review

4. Security & Compliance

policy-as-code-template-library

adaptive-enforcement-lab

Production-ready library of 48 battle-tested security policies for Kubernetes (Kyverno and OPA) covering pod security, RBAC, and network security with CI/CD integration.

Kyverno

OPA

Kubernetes

4. Security & Compliance

kyverno-policy-templates

adaptive-enforcement-lab

Provides 28 production-ready Kyverno policy templates for Kubernetes security, including pod security, image validation, and network policies.

Kyverno

Kubernetes

Security Policies

4. Security & Compliance

solidity-security

HermeticOrmus

Provides security best practices and patterns to prevent common vulnerabilities in Solidity smart contracts for secure blockchain application development.

Solidity

Smart Contract Security

Vulnerability Prevention

4. Security & Compliance

go-security-tooling

adaptive-enforcement-lab

A comprehensive Go security toolkit featuring race detection, linting, vulnerability scanning, and OpenSSF-certified workflows for seamless integration.

golangci-lint

Trivy

4. Security & Compliance

wcag-compliance-reviewer

shawn-sandy

Reviews HTML/CSS and React/TypeScript code for WCAG 2.1 Level AA accessibility compliance, identifying issues and ensuring adherence to a11y standards.

WCAG 2.1

Accessibility

React

4. Security & Compliance

frontend-security

schalkneethling

Audits frontend codebases for security vulnerabilities including XSS, CSRF, DOM, and CSP misconfigurations, adhering to OWASP guidelines.

OWASP

XSS

CSP

4. Security & Compliance

secrets-management

HermeticOrmus

Manages and secures sensitive credentials in CI/CD pipelines using dedicated secrets management solutions.

Vault

AWS Secrets Manager

CI/CD

4. Security & Compliance

pci-compliance

HermeticOrmus

Implements PCI DSS compliance requirements for secure handling of payment card data and payment systems.

PCI DSS

Payment Security

Compliance

4. Security & Compliance

k8s-security-policies

HermeticOrmus

Configures Kubernetes security policies including NetworkPolicy, PodSecurityPolicy, and RBAC for production-grade cluster security.

Kubernetes

NetworkPolicy

RBAC

4. Security & Compliance

risky-net-egress

jlov7

Demonstrates unsafe network egress patterns to test security audits and verify lint/probe failures for disallowed writes.

Network Egress

Security Linting

Audit Verification

4. Security & Compliance

0g-teeml

HAaYAT0

Provides privacy-protected AI inference capabilities using TeeML technology to ensure confidential data processing.

TeeML

Privacy Protection

AI Inference

4. Security & Compliance

security-practices

jerryagenyi

Provides security best practices for input validation, authentication, authorization, secrets management, and Docker security.

Input Validation

Authentication

Secrets Management

4. Security & Compliance

security-review

uukuguy

Delivers structured guidelines for conducting security-focused code reviews to identify vulnerabilities and enforce secure coding practices.

Security Auditing

Vulnerability Identification

4. Security & Compliance

incident-response

uukuguy

Provides standardized procedures for identifying, containing, and resolving IT security incidents to ensure compliance and minimize operational impact.

Incident Response

Security Operations

Compliance

4. Security & Compliance

wp-security-audit

dreamworks2050

Conducts security code audits for WordPress themes and plugins to identify and remediate vulnerabilities.

WordPress

Security Audit

Code Review

4. Security & Compliance

lagoon-risk-expert

hopperlabsxyz

Delivers comprehensive risk analysis for vault security systems, identifying critical vulnerabilities and threat factors for security professionals.

Vault Security

Risk Assessment

Compliance Analysis

4. Security & Compliance

PreviousPage 187 of 218 PageNext