83,201 skills sorted by stars.
Run comprehensive security audits including SAST, dependency scanning, and secret detection
Run a security-oriented review of dependencies, secrets exposure, configuration risk, and code-level security issues for...
Proactive security scanning. Triggers when modifying auth, API endpoints, user data, or sensitive operations.
Trivyで依存関係/コンテナの脆弱性をスキャンし、重大度順に潰す。リリース前チェックで使う。
Automated security scanning workflow using Semgrep MCP. Scans changed files for OWASP Top 10 vulnerabilities, CWE patter...
Scans DAPR projects for security issues including plain-text secrets, missing ACLs, insecure configurations, and securit...
Perform security scanning, vulnerability assessment, and code analysis. Use tools like Trivy, Snyk, OWASP ZAP, and stati...
全面的安全分析,识别OWASP Top 10漏洞、检测硬编码密钥和审查安全配置。
Run security scans including SAST, dependency scanning, and secret detection
Automated security scanning for dependencies and code. Use when running npm audit, pip-audit, Semgrep, secret detection,...
You are a security expert specializing in dependency vulnerability analysis, SBOM generation, and supply chain security....
Use when working with security scanning security hardening
Static Application Security Testing (SAST) for code vulnerability analysis across multiple languages and frameworks
Use this agent when performing security audits, vulnerability assessments, or security reviews of code. Triggers on requ...
Performs security audits for vulnerabilities, input validation, auth/authz, hardcoded secrets, and OWASP compliance. Use...
Configure and manage Claude Code security protections for sensitive files, credentials, and data. Use when the user invo...
**SECURITY SHIELD**: '보안', '인증', '로그인', '비밀번호', 'JWT', '토큰', '암호화', '취약점', 'SQL 인젝션', 'XSS', '보안 검사' 요청 시 자동 발동. .env/au...
Application security patterns - authentication, secrets management, input validation, OWASP Top 10. Use when: auth, JWT,...
安全专家。专注于应用安全、威胁建模、安全合规和数据保护。提供安全审查、漏洞扫描、安全配置和合规检查。用于构建安全可靠的应用系统。
提供安全审计、风险评估和合规检查能力。当需要进行安全审查、风险评估或合规验证时使用。
Security standards for credential handling and authentication
Composable security suite for binary and prompt-surface assurance, static analysis, dynamic tracing, repo-native redteam...
Sicherheit & DSGVO - Atoll Tourisme. Use when reviewing security, implementing auth, or hardening code.
Seguridad & RGPD - Atoll Tourisme. Use when reviewing security, implementing auth, or hardening code.
Sécurité & RGPD - Atoll Tourisme. Use when reviewing security, implementing auth, or hardening code.
基于NFR安全要求,生成STRIDE/OWASP威胁模型和测试场景。L3级别专用,当设计和需求确认后使用。
Comprehensive security testing framework aligned with OWASP Top 10 and CWE/SANS Top 25. Performs static analysis (SAST),...
Test for security vulnerabilities using OWASP principles. Use when conducting security audits, testing auth, or implemen...
Identify security vulnerabilities through SAST, DAST, penetration testing, and dependency scanning. Use for security tes...
Use when selecting and configuring security testing tools for your CI/CD pipeline. Covers SAST, DAST, SCA, container sca...
Automate vulnerability scans.
Security testing patterns including SAST, DAST, penetration testing, and vulnerability assessment techniques. Use when i...
Scans code for security vulnerabilities and unsafe patterns. Use when the user asks about security, mentions OWASP, cred...
Repository-grounded threat modeling that enumerates trust boundaries, assets, attacker capabilities, abuse paths, and mi...
Perform repository-grounded threat modeling by enumerating trust boundaries, assets, attacker capabilities, abuse paths,...
Conducts systematic security analyses using methodologies like STRIDE to identify vulnerabilities in software architectu...
Secure boot and firmware update workflows for Zephyr RTOS. Covers MCUboot integration, production image signing, DFU pro...