4. Security & Compliance

Audits infrastructure-as-code, application configurations, and system settings for security misconfigurations to ensure compliance with best practices.

Applies Vercel security best practices for secrets management, access control, and configuration auditing to enhance platform security.

Manages security benchmark runner operations for compliance and security assessments within the Security Advanced suite.

Assesses codebases and infrastructure for PCI DSS compliance, identifying vulnerabilities and deviations from security standards.

Automates security policy generation for compliance and enforcement. Activates for Security Advanced operations using trigger phrases.

Generates compliance-focused governance checklists for enterprise workflows, ensuring adherence to regulatory standards.

Detects and alerts on exposed environment secrets in code repositories to prevent security breaches.

Configures enterprise Single Sign-On (SSO), role-based access control (RBAC), and organization management for secure user access and permissions.

Automatically identifies insecure deserialization risks in application code to prevent exploitation.

Automates security vulnerability testing for OWASP Top 10, SQL injection, XSS, CSRF, and authentication flaws during security assessments.

Validates CSRF protection mechanisms in web applications to prevent cross-site request forgery attacks.

Analyzes project dependencies for security vulnerabilities, outdated packages, and license compliance across npm, pip, composer, gem, and go modules.

Applies Fireflies.ai security best practices for secrets management and access control, including API key security and least privilege implementation.

Conducts database security scans to identify vulnerabilities like SQL injection and weak passwords, providing OWASP-compliant remediation suggestions.

Automates security vulnerability checks, best practices, and CLAUDE.md compliance audits for Claude Code plugins per repository standards.

Performs automated fuzz testing on APIs to identify vulnerabilities such as SQL injection, XSS, and input validation failures through malformed inputs and boundary testing.

Configures role-based access control (RBAC) for Sentry enterprise, managing team permissions and SSO integration for secure organizational access.

Provides secure API key management and OAuth best practices for Linear integrations, ensuring robust authentication and data protection.

Automatically scans code for XSS vulnerabilities, identifying reflected, stored, and DOM-based flaws in HTML, JavaScript, and CSS contexts, and suggests safe proof-of-concept payloads.

Enables seamless integration with secrets managers (e.g., HashiCorp Vault, AWS Secrets Manager) to generate secure configurations for sensitive credential management.

Handles Exa-specific PII data processing, retention policies, and ensures GDPR/CCPA compliance for data privacy in integrations.

Performs automated accessibility audits against WCAG 2.1/2.2 standards, validating ARIA, keyboard navigation, and screen reader compatibility for web applications.

Automates secure API key management including storage, rotation, and access control to prevent unauthorized access and ensure compliance.

Automatically scans project dependencies for known security vulnerabilities to enhance code security and compliance.