Security

Security scanning and vulnerability detection

Showing 1513-1536 of 2223 skills
spjoshis

compliance-management

by spjoshis

Master compliance management with GDPR, SOC 2, ISO 27001, audit preparation, and regulatory requirements.

Processing 5 5mo ago
ricardogomes

learn-from-real-code

by ricardogomes

Teaches learners to extract transferable design lessons from real-world codebases through critical evaluation and systematic exploration. Use when a learner wants to study existing code to learn patterns, architecture, or design decisions—not just understand what it does. Guides through navigation, pattern recognition, critical evaluation (deliberate choice vs. compromise), and lesson extraction. Triggers on phrases like "learn from this codebase", "study how X is implemented", "understand design patterns in Y", or when a learner wants to improve by reading real code.

Comments 5 4mo ago
Bikach

security-guardian

by Bikach

Expert en sécurité applicative pour détecter les vulnérabilités, auditer le code, et guider les bonnes pratiques de sécurité. OWASP Top 10, authentification, autorisation, cryptographie, gestion de secrets. Utiliser pour audits sécurité, reviews de code sensible, conception de features sécurisées, ou résolution de failles.

API Dev 10 6mo ago
WomenDefiningAI

ui-ux-audit

by WomenDefiningAI

Mandatory audit workflow for UI/UX changes that reads current state FIRST, checks for redundancy, respects clean design philosophy, and identifies genuine gaps before implementation. Auto-invoked when user mentions UI, UX, design, layout, homepage, page improvements, visual changes, or interface modifications.

Code Review 9 7mo ago
WomenDefiningAI

code-reviewer

by WomenDefiningAI

Research-backed code review skill with OWASP Top 10 security checks, SAST tool integration (SonarQube, CodeQL, Snyk), performance pattern detection, and automated quality standards enforcement. Auto-invoked for code review, security audit, PR analysis, and bug checking. Implements 2025 best practices with 92% faster vulnerability remediation.

Code Review 9 7mo ago
stakpak

aws-architecture-design

by stakpak

Purpose: Standardize how stakpak designs and optimizes AWS architectures. Scope: Greenfield: design new infrastructure. Brownfield: analyze existing architectures and propose improvements.

Cloud 4 5mo ago
poindexter12

terraform

by poindexter12

Terraform infrastructure-as-code reference for HCL syntax, state management, module design, and provider configuration. Use when working with Terraform configurations (.tf files), running terraform commands, troubleshooting state issues, or designing modules. Includes Telmate Proxmox provider patterns. Triggers: terraform, tfstate, .tf files, HCL, modules, providers, proxmox_vm_qemu.

Cloud 4 4mo ago
fermionoid

senseguard

by fermionoid

Semantic security scanner for OpenClaw skills. Detects prompt injection, data exfiltration, and hidden instructions that traditional code scanners miss. Use when user asks to scan skills, check skill safety, or run a security audit.

Processing 4 3mo ago
1Mangesh1

healthcare-audit-logger

by 1Mangesh1

This skill should be used when the user asks to "generate audit logs", "create HIPAA audit trail", "log healthcare events", "configure audit logging", "track PHI access", "maintain compliance logs", "audit log format", "healthcare event logging", "access control logging", "authentication logging", "HIPAA logging requirements", or mentions HIPAA audit trails, healthcare event logging, compliance logging, PHI access tracking, authentication auditing, or §164.312(b) logging requirements.

Code Review 4 3mo ago
dgriffin831

creative-writer

by dgriffin831

Help agents write creative content

Analytics 4 4mo ago
humanmade

hm-coding-philosophy

by humanmade

Human Made engineering principles and code quality standards. Apply when writing code, reviewing code, planning implementations, or discussing architecture. Covers code quality priorities, simplicity over complexity, and avoiding over-engineering.

Code Gen 4 4mo ago
atalovesyou

scanning-for-accessibility-issues

by atalovesyou

This skill enables Claude to perform comprehensive accessibility audits. It uses the accessibility-test-scanner plugin to identify WCAG 2.1/2.2 compliance issues, validate ARIA attributes, check keyboard navigation, and assess screen reader compatibility. Use this skill when the user requests an accessibility scan, audit, or compliance check, or when terms like "WCAG", "ARIA", "screen reader", "accessibility testing", or "a11y" are mentioned. It provides actionable insights for improving web application accessibility.

Accessibility 4 5mo ago
stakpak

dockerization

by stakpak

Official Stakpak application containerization standard operating procedure, a step-by-step guidline to properly dockerize applications. This is a rule book curated by the Stakpak Team.

Code Review 4 5mo ago
dgriffin831

skill-scan

by dgriffin831

Security scanner for OpenClaw skill packages. Scans skills for malicious code, evasion techniques, prompt injection, and misaligned behavior BEFORE installation. Use to audit any skill from ClawHub or local directories.

Automation 4 4mo ago
1Mangesh1

hipaa-guardian

by 1Mangesh1

This skill should be used when the user asks to "scan for PHI", "detect PII", "HIPAA compliance check", "audit for protected health information", "find sensitive healthcare data", "generate HIPAA audit report", "check code for PHI leakage", "scan logs for PHI", "check authentication on PHI endpoints", "scan FHIR resources", "check HL7 messages", or mentions PHI detection, HIPAA compliance, healthcare data privacy, medical record security, logging PHI violations, authentication checks for health data, or healthcare data formats (FHIR, HL7, CDA).

Code Review 4 4mo ago
dgriffin831

api-helper

by dgriffin831

Helps configure API connections

API Dev 4 4mo ago
subhashdasyam

security-antipatterns-python

by subhashdasyam

Use when generating Python code for web applications, APIs, or handling user input - prevents OWASP Top 10 vulnerabilities in Django, Flask, FastAPI

Auth 4 4mo ago
vendor-rip

vendor-rip

by vendor-rip

"Scan, assess, plan, and replace SaaS tools with AI-built code. Analyzes your codebase for SaaS integrations, generates migration plans, executes replacements, and validates results."

Auth 4 3mo ago
jamietso

nda-review

by jamietso

Reviews incoming one-way (unilateral) commercial NDAs in a jurisdiction-agnostic way, from either a Recipient or Discloser perspective (user-selected), producing a clause-by-clause issue log with preferred redlines, fallbacks, rationales, owners, and deadlines.

Code Review 4 5mo ago
kimasplund

security-analysis-skills

by kimasplund

Comprehensive security analysis framework teaching STRIDE threat modeling, OWASP Top 10 vulnerabilities, CVSS risk scoring, and secure coding patterns. Use when conducting security assessments, code reviews, threat modeling, or implementing security controls. Applicable to all development work requiring security consideration.

Auth 4 4mo ago
kimasplund

adversarial-reasoning

by kimasplund

Red-team thinking for robustness testing and edge case discovery. Use when you need to stress-test solutions, find vulnerabilities, anticipate failures, or challenge assumptions. Ideal for security review, system design validation, decision stress-testing, and pre-mortem analysis. Example: "We've designed an auth system" → Attack it from 10 angles before shipping.

Debugging 4 4mo ago
dgriffin831

memory-scan

by dgriffin831

Safe to run frequently (minimal API cost with efficient chunking)

Performance 4 4mo ago
dgriffin831

config-analyzer

by dgriffin831

Analyze configuration files for validation and best practices

Code Review 4 4mo ago
vivekgana

compliance-automation

by vivekgana

Automated compliance checks, continuous monitoring, reporting frameworks for GDPR, HIPAA, SOC2, and CCPA compliance.

Code Review 4 5mo ago