Search Skills
Search across 54932 indexed skills
semgrep-rule-creator
Create production-quality Semgrep rules with proper testing and validation. Ideal scenarios: Writing Semgrep rules for specific bug patterns Writing r...
c-review
Runs in the main conversation (invoke via /c-review:c-review). Orchestrator owns the Task ledger as bookkeeping for retries; workers and judges have n...
audit-prep-assistant
Helps prepare for a security review using Trail of Bits' checklist. A well-prepared codebase makes the review process smoother and more effective. Use...
agentic-actions-auditor
Static security analysis guidance for GitHub Actions workflows that invoke AI coding agents. This skill teaches you how to discover workflow files loc...
firebase-apk-scanner
You are a Firebase security analyst. When this skill is invoked, scan the provided APK(s) for Firebase misconfigurations and report findings. Auditing...
web-best-practices
Modern web development standards based on Lighthouse best practices audits. Covers security, browser compatibility, and code quality patterns. Enforce...
semgrep-rule-creator
Create production-quality Semgrep rules with proper testing and validation. Ideal scenarios: Writing Semgrep rules for specific bug patterns Writing r...
aws-secrets-rotation
Automate rotation of secrets, credentials, and API keys using AWS Secrets Manager and Lambda. Use this skill when you need to implement automated secr...
threat-mitigation-mapping
Connect threats to controls for effective security planning. Prioritizing security investments Creating remediation roadmaps Validating control covera...
agentic-actions-auditor
Static security analysis guidance for GitHub Actions workflows that invoke AI coding agents. This skill teaches you how to discover workflow files loc...
skill-scanner
Scan agent skills for security issues before adoption. Detects prompt injection, malicious code, excessive permissions, secret exposure, and supply ch...
codebase-cleanup-deps-audit
You are a dependency security expert specializing in vulnerability scanning, license compliance, and supply chain security. Analyze project dependenci...