4. Security & Compliance

Performs security audits and vulnerability scans to identify and assess security flaws in systems and code.

Enforces OWASP security standards and stability protocols to ensure robust production environment reliability.

Conducts security audits targeting OWASP Top 10 vulnerabilities and implementing industry security best practices.

Conducts full-stack architectural audits against OWASP 2025, WCAG 3.0, and Green Software standards to ensure security, accessibility, and sustainability compliance.

Offers a web application security checklist and vulnerability assessment guide for security audits, designed for use with the security-auditor agent.

Conducts comprehensive security audits using SAST, dependency scanning, and fuzzing to identify vulnerabilities and generate actionable reports.

Enforces comprehensive security standards for TalentFilter, featuring anti-cheating, request limiting, and application-level protection.

Performs security audits on TypeScript/JavaScript codebases to identify vulnerabilities like XSS, injection, and authentication flaws.

Generates secure authentication and authorization patterns including JWT, RBAC, and session management for enterprise web applications.

Provides security patterns for prompt injection prevention, input validation, and output sanitization in Next.js 16 AI integrations.

Provides secure authentication and authorization patterns for Next.js 16, including session management, MFA, and protection against common security vulnerabilities.

Provides Next.js 16-specific Web Application Firewall patterns for rate limiting, bot protection, IP blocking, and DDoS mitigation to secure against automated attacks.

Performs comprehensive codebase analysis to identify performance bottlenecks, security vulnerabilities, and architectural weaknesses with metric-driven insights.

Enables security event logging, attack monitoring, and real-time threat visualization with CVSS scoring for Next.js 16 applications.

Provides Arcjet security integration for Next.js 16 including WAF, rate limiting, bot detection, and sensitive data detection.

Creates a cyber-hardened portfolio with integrated threat monitoring, WAF protection, and demonstrable cyber resilience for professional security demonstration.

Provides security assessments using STRIDE threat modeling, OWASP Top 10, and CVSS for threat modeling and secure coding guidance.

Provides core security patterns for Next.js 16 applications, including input validation, SQL injection prevention, XSS protection, and CSRF defense.

Provides security implementation patterns for authentication, input validation, and CSP nonces in web applications, with Supabase SSR integration.

Reviews Go code changes for security vulnerabilities in API layers including HTTP handlers, services, databases, and message queues.

Step-by-step guide for implementing Soundcloud OAuth 2.0/2.1 authentication in Go applications with API setup and token handling.

Scans environment variables and secrets for security misconfigurations to prevent leaks and ensure secure deployments.

Analyzes codebases for security vulnerabilities and delivers detailed reports with findings and fix recommendations.

Provides security patterns for authentication, authorization, and RBAC implementation in MuebleriaIris ERP, including JWT and session management.