4. Security & Compliance

Encrypts and decrypts messages using the ROT13 substitution cipher, a basic cryptographic tool for text obfuscation.

Automates security vulnerability scanning for OWASP Top 10, SQLi, XSS, and secrets exposure, triggering on code changes and deployments.

Scans dependencies for known vulnerabilities using npm audit and pip-audit, triggering alerts before deployments.

Scans code for exposed secrets, API keys, and credentials to prevent accidental exposure during development and commits.

Provides expert guidance for prioritizing and responding to security alerts during incident triage.

Configures Google SecOps Remote MCP Server for Gemini CLI, enabling security tool setup and configuration.

Provides expert guidance for deep security investigations on cases, entities, or incidents upon user request.

Provides expert guidance for proactive threat hunting, identifying threads, IOCs, and TTPs to detect and mitigate security threats.

Manages API keys centrally from Access.txt, enhancing security by eliminating hard-coded credentials.

Provides OWASP-compliant security patterns, secrets management, and security testing capabilities for secure application development.

Configures Google SecOps Remote MCP Server for Antigravity security tool deployment and management.

Provides secure webhook handling with signature verification, replay protection, and idempotency for third-party integrations and custom webhook systems.

Enforces production-safe error handling by logging detailed server-side errors while displaying only generic messages to users, preventing sensitive data leakage.

Implements Supabase authentication with SSR support, including email/password login, signup, and session management via cookies.

Enforces data isolation in PostgreSQL for multi-tenant applications through row-level access controls based on user context.

Provides tamper-proof audit logging to track user actions, data changes, and system events for security and compliance adherence.

Enables secure social logins via OAuth 2.0 for providers like Google and GitHub, managing token exchange and user account linking.

Provides a secure file upload pipeline with multi-stage validation, ClamAV malware scanning, and hash-based duplicate detection to prevent security risks.

Provides secure JWT authentication with refresh token rotation, secure storage, and automatic renewal for stateless auth in SPAs, mobile apps, and APIs.

Configures Speakeasy authentication, manages API keys, and resolves authentication issues in CI/CD pipelines and non-interactive environments.

Integrates with Project CodeGuard to enforce secure coding practices and prevent common vulnerabilities during development.

Guides implementation of email authentication, compliance with legal standards, and deliverability optimization to reduce spam and bounces.

Guides implementation of CloudBase Auth v2 using Web SDK, Node SDK, and HTTP APIs for secure login and token handling.

Manages security hooks for Claude Code, enabling protection against harmful commands and securing paths through configurable security settings.