Generates comprehensive security documentation for codebases, identifying vulnerabilities, best practices, and compliance requirements across project files.

🎯

best-practices-reviewer🎯Skill

Reviews code for adherence to industry-standard software engineering best practices, identifying potential improvements in design, performance, and maintainability.

🎯

insufficient-randomness-anti-pattern🎯Skill

Detects and helps remediate weak randomness vulnerabilities in cryptographic implementations, highlighting potential entropy risks.

🎯

sarif-issue-reporter🎯Skill

Generates detailed SARIF reports for code vulnerabilities, mapping security issues across repositories with comprehensive analysis and tracking.

🎯

xss-anti-pattern🎯Skill

Detects and prevents cross-site scripting vulnerabilities by analyzing code patterns, input sanitization, and potential script injection risks.

🎯

open-cors-anti-pattern🎯Skill

Identifies and flags insecure Cross-Origin Resource Sharing (CORS) configurations that expose web applications to potential cross-site scripting vulnerabilities

🎯

cryptographic-action🎯Skill

Generates, validates, and manages cryptographic keys, encryption protocols, and secure communication workflows across different systems and platforms.

🎯

log-entity-actions🎯Skill

Tracks and logs detailed entity state changes, interactions, and lifecycle events with configurable verbosity and structured output formats.

🎯

debug-mode-production-anti-pattern🎯Skill

Identifies and flags risky debug configurations that could expose sensitive system details in production environments.