4. Security & Compliance

Assists in conducting security audits for PHP/Laravel applications, identifying vulnerabilities and assessing OWASP Top 10 risks.

Performs security audits, penetration testing analysis, and OWASP risk assessments to identify vulnerabilities in authentication, data handling, and application security.

Structured code audit with tiered issue resolution (L1 blocking to L4 optimization), targeting L2 by default and clearing L1+L2 for completion.

Conducts security reviews focusing on vulnerabilities, privacy, infrastructure, data integrity, and supply chain security.

Provides a language-agnostic security checklist and patterns for authentication, input handling, secrets management, and secure API development.

Automates adding standard open-source license headers to new code files for compliance.

Conducts security audits and vulnerability assessments on code, validating input handling, authentication, and OWASP compliance before deployment.

Automates evaluation of hospital admission packets against Medicare's two-midnight rule to determine appropriate inpatient or observation status, ensuring billing compliance.

Provides validation scripts and guidance to maintain Agent Skills compliance with technical specifications and accuracy standards.

Structured code audit system with tiered severity levels (L1-L4) to prioritize blocking issues and functional defects, ensuring efficient resolution without excessive depth.

Provides implementation guidance for authentication (JWT), CORS configuration, security headers, and secrets management to strengthen application security.

Validates multi-tenant isolation enforcement across gateway, service, and database layers including headers, queries, and Cosmos DB partitioning for security compliance.

Provides authentication implementation guidance for OpenAI Apps SDK MCP servers, including OAuth, token handling, and security schemes.

Provides safe HTML rendering with XSS prevention for CMS content, translated text, and user-generated rich text.

Performs static code analysis to detect security vulnerabilities, secret leaks, and insecure coding practices without executing the code.

Specializes in Dynamic Application Security Testing (DAST) to identify runtime vulnerabilities in APIs, authentication flows, and session management.

Provides server-side input validation and anti-cheat patterns for multiplayer game servers to prevent cheating and ensure data integrity.

Manages header-based API key authentication for MCP servers, ensuring secure access control and token validation.

Offers end-to-end security engineering including penetration testing, security architecture, compliance auditing, and threat modeling.

Assists in identifying, triaging, and resolving CVE vulnerabilities detected by vulnix in NixOS systems, enhancing security posture.

Checks for blacklisted content on tanwa.info to ensure compliance before deployment.

Specializes in vulnerability detection, code security auditing, and implementing Security by Design principles to enhance application security.

Validates web accessibility against WCAG standards with focus on color contrast, ARIA labels, and keyboard navigation for regulatory compliance.

Manages website authentication flows including login, OAuth, 2FA, and session handling for secure access.