4. Security & Compliance

Performs security and QA audits on code for sensitive data leaks, dangerous permissions, and unsafe SQL patterns before critical feature merges.

Conducts deep-dive security audits with emphasis on vulnerability identification and defensive coding practices for sensitive features.

Decrypts and views the contents of an .age encrypted secret file, ensuring secure access to sensitive data.

Re-encrypts all secrets using updated encryption keys after modifying .age files or changing host keys, ensuring ongoing security compliance.

Creates or updates encrypted .age secret files using agenix for secure storage of sensitive data.

Removes default organization preference from authentication credentials to enhance security and prevent unintended access.

Displays the API key for the currently authenticated user, enabling secure management of authentication credentials within the CLI tool.

Displays the current default organization for authentication management in Agentuity CLI, enabling secure credential context verification.

Deletes SSH keys from user accounts to securely manage authentication credentials and prevent unauthorized access.

Orchestrates comprehensive code audits for Claude Code customizations, validating naming conventions, organization, and deployment readiness.

Displays current user details after authentication. Used for secure management of authentication credentials.

Lists all SSH keys associated with the user account for secure credential management, requiring authentication.

Sets default organization for CLI commands, requiring authentication to securely manage user credentials and streamline access.

Initializes Agentuity authentication system for projects, securely managing credentials with required user authentication.

Adds SSH public keys to user accounts via file or stdin, requiring authentication for secure credential management.

Provides a command-line interface to securely log out from the Agentuity Cloud Platform, managing authentication session termination.

Automatically loads active audit session data to provide context when working with audited code, discussing findings, or making related changes.

Performs security-focused code reviews to identify vulnerabilities, enforce standards, and ensure logical integrity of software.

Automates routine security scans for secrets, dependencies, container images, and vulnerabilities during development.

Provides threat modeling methodologies (STRIDE, DREAD, PASTA, attack trees) for secure architecture design and risk assessment.

Conducts comprehensive security audits to identify vulnerabilities, misconfigurations, and compliance gaps across applications, APIs, and infrastructure, covering OWASP Top 10 and major regulations.

Provides secure authentication and authorization patterns including OAuth2, JWT, RBAC, ABAC, and MFA for managing user identities and access control.

Scans project dependencies across multiple ecosystems for vulnerabilities, outdated packages, and license compliance issues, including CVE detection and SBOM generation.

Provides a web UI for interactive exploration of THOR v11 audit trail logs to conduct forensic timeline analysis in security investigations.