Generates comprehensive security documentation for codebases, identifying vulnerabilities, best practices, and compliance requirements across project files.

🎯

best-practices-reviewer🎯Skill

Reviews code for adherence to industry-standard software engineering best practices, identifying potential improvements in design, performance, and maintainability.

🎯

sarif-issue-reporter🎯Skill

Generates detailed SARIF reports for code vulnerabilities, mapping security issues across repositories with comprehensive analysis and tracking.

🎯

codebase-discovery🎯Skill

Rapidly maps and explores software project structures, dependencies, and architectural patterns across multiple programming languages and frameworks.

🎯

session-fixation-anti-pattern🎯Skill

Detects and prevents session fixation vulnerabilities by identifying and mitigating potential authentication session hijacking risks in web applications.

🎯

hallucinated-packages-anti-pattern🎯Skill

Detects and prevents phantom package dependencies in Python projects, reducing build errors and improving dependency management.

🎯

debug-mode-production-anti-pattern🎯Skill

Identifies and flags risky debug configurations that could expose sensitive system details in production environments.

🎯

log-injection-anti-pattern🎯Skill

Detects and prevents log injection vulnerabilities by sanitizing log inputs and implementing secure logging practices across applications

🎯

password-based-authentication🎯Skill

Securely implement password authentication with salting, hashing, and validation for user login systems across different programming environments.