4. Security & Compliance

Validates Cross-Origin Resource Sharing (CORS) policies to ensure secure web application configurations and prevent security vulnerabilities.

Validates Vast.ai webhook signatures and securely handles event notifications for webhook endpoints.

Scans applications and data systems for GDPR compliance, identifying violations in data protection, privacy rights, and consent management.

Manages API keys securely, ensuring safe access control for API integrations and security fundamentals.

Enforces data privacy and compliance best practices for LangChain applications, including PII protection and GDPR adherence.

Validates Cross-Site Request Forgery (CSRF) protection mechanisms to ensure secure web application functionality.

Enforces data privacy and compliance controls for OpenRouter API requests, ensuring protection of PII and adherence to regulations like GDPR.

Analyzes and updates project dependencies with vulnerability scanning to enhance security posture.

Applies PostHog security best practices for secrets management, access control, and API key security implementation.

Configures role-based access control (RBAC) for enterprise teams in Lindy AI, enabling secure management of permissions and access policies.

Conducts security-focused code reviews to identify vulnerabilities like SQL injection, XSS, and authentication flaws, providing severity ratings and remediation guidance.

Scans applications and data systems for GDPR compliance, identifying violations in data protection, privacy rights, and consent management to generate detailed reports.

Generates automated compliance reports for security standards including PCI DSS, HIPAA, SOC 2, and ISO 27001.

Configures enterprise role-based access control (RBAC) for Gamma integrations, enabling secure team permissions and multi-tenant authorization patterns.

Enforces GDPR and CCPA compliance for Windsurf integrations through PII handling, data retention, and redaction policies.

Provides secure handling of Retell AI webhook events via signature verification to prevent spoofing and unauthorized access.

Configures Sentry for GDPR compliance, PII scrubbing, and secure data handling to protect sensitive information.

Automates security log analysis to detect threats and anomalies in real-time for enhanced security monitoring.

Enables GDPR/CCPA compliance for Supabase by implementing PII handling, data retention, and redaction patterns for sensitive data.

Automates PII handling, data retention, and GDPR/CCPA compliance for data integrations, ensuring regulatory adherence.

Analyzes Kubernetes RBAC configurations to identify security misconfigurations and access control risks in cluster environments.

Configures role-based access control (RBAC) for Deepgram enterprise integrations, managing team permissions and API key scopes.

Automatically identifies and analyzes gaps in security management systems against ISO 27001 standards for compliance verification.

Manages data exports, retention policies, and GDPR compliance for Granola data management systems.