4. Security & Compliance

Provides security best practices for SQL queries, including parameterized queries, injection prevention, and least-privilege database access configurations.

Conducts proactive security audits to identify and prevent OWASP Top 10 vulnerabilities in applications.

Provides security best practices for POSIX shell scripting to prevent command injection, ensure safe quoting, and handle user input securely.

Provides Go-specific security best practices for template safety, SQL parameterization, TLS/crypto usage, and secure input handling in services and handlers.

Scans GitHub repositories for malicious code, destructive commands, and data exfiltration patterns via recursive analysis to ensure security before adding new skills.

Performs static code analysis and threat modeling to identify and mitigate OWASP Top 10 security vulnerabilities in applications.

Provides security practices for JavaScript/TypeScript to prevent XSS, input validation flaws, and common web vulnerabilities.

Provides secure coding practices for Python, preventing vulnerabilities like SQL injection, unsafe API usage, and input validation flaws in web applications and data handling.

Automates compliance checks for ASIS naming standards in OpenCode skills, reporting violations and suggesting compliant renames.

Reviews and strengthens Firestore security rules to prevent unauthorized data access and ensure compliance with security best practices.

Performs deep code analysis to detect security vulnerabilities and performance bottlenecks in software applications.

Performs security audits on project dependencies, identifying vulnerabilities and suggesting minimal-effort fixes to mitigate risks.

Provides Spring Security 6 patterns for implementing authentication, authorization, and OAuth2 in Java applications.

Configures TwinSAFE safety systems for industrial automation, including safety architecture, STO implementation, and E-STOP integration to ensure regulatory compliance.

Generates custom Semgrep rules to identify security vulnerabilities and bug patterns in source code.

Specializes in maintaining network availability and bypassing censorship to ensure access to services like TMDB in restricted regions.

Provides security checklist and patterns for authentication, input validation, secrets handling, and secure API development in sensitive features.

Performs high-confidence security code reviews to identify exploitable vulnerabilities in pull requests, minimizing false positives with an 80%+ confidence threshold.

Stress-tests solutions using the STRIKE framework to systematically identify security weaknesses before deployment.

Specializes in analyzing construction regulatory frameworks, building codes, safety protocols, and contractual documents for compliance.

Guidelines for extending certification platform to add new compliance frameworks (CMMC, ISO) and manage requirements and monitoring workflows.

Delivers production-ready authentication implementation with session management, security hardening, and deployment optimization for Better Auth MCP server.

Assesses AI projects for regulatory compliance (GDPR, HIPAA) before deployment, generating gap analysis and remediation plans.

Generates AI governance policies, acceptable use guidelines, and security guardrails documentation for AI program establishment.