4. Security & Compliance

Provides secure, isolated execution environments for untrusted user code and AI-generated code using Deno's sandbox SDK.

Guide to implementing authentication and authorization systems in Docklift, covering security best practices and token management.

Provides parameter conventions and example commands for running the built-in TLS (two-level system) driver in socket or embedded mode.

Provides secure authentication implementation guidance for TypeScript/Next.js apps using Better Auth, covering session management, providers, and security best practices.

Provides OWASP Top 10 security checks, input validation patterns, and authentication best practices for developers building secure applications.

Conducts pre-merge security checks including OWASP Top 10 verification, input validation, and authentication flow review.

Provides OWASP-based security patterns and guidelines for common vulnerabilities like XSS, SQL injection, and CSRF.

Configures permission settings for Claude Code tools, defining allowed commands and rules within the .claude/ directory.

Provides CLI utilities for 1Password setup, secret management, authentication, and desktop integration to secure credential handling.

Monitors infrastructure and security-critical file changes to trigger security reviews and ensure oversight of sensitive modifications.

Generates threat matrices with risk ratings and mitigations using OWASP and STRIDE methodologies for attack surface analysis.

Executes CodeQL security scans for static analysis on Python and GitHub Actions code, featuring language detection and SARIF output.

Automates JWT authentication, Telegram OAuth integration, and security middleware configuration for secure application development.

Provides rules for evaluating, classifying, and deduplicating permissions to ensure secure and compliant access management for AI tools.

Provides expert guidance on application security, including OWASP Top 10, secure coding practices, and vulnerability prevention techniques.

Performs security audits, vulnerability scans, and threat detection on codebases and systems.

Develops network protocol fuzzers using boofuzz framework for binary protocol testing, session management, and crash detection in security assessments.

Scans Node.js dependencies for security vulnerabilities and outdated packages, providing structured severity reports and update recommendations.

Automates npm dependency security checks, delivering structured vulnerability reports and outdated package analysis for security validation.

Validates git commit messages, branch naming, and sensitive file presence for security and workflow compliance.

Manages and retrieves secrets securely using Bitwarden Secrets Manager CLI for API keys, credentials, and passwords.

Provides structured methodologies and checklists for code auditing, including security reviews, technical debt identification, and code quality analysis.

Automatically prevents XSS, SQL injection, and access bypass vulnerabilities in Drupal form, controller, and query development.

Conducts security code reviews to identify vulnerabilities, implement authorization controls, and ensure data protection measures are enforced.