Agent Skills

io.github.xrplevm/node/security-issue

Create a security finding in the private peersyst/security repo with proper labels and format. Use when reporting a security vulnerability, concern, or observation found during audits or ad-hoc review.

io.github.Yeachan-Heo/oh-my-codex/security-review

Deprecated standalone security review skill

Openclaw Security Toolkit

v1.0.0

io.clawhub.hkall/openclaw-security-toolkit

Security guard for OpenClaw users. Audit configs, scan secrets, manage access, and generate security reports.

io.github.MaxMiksa/Auto-Company/security-audit

Use when reviewing code security, auditing dependencies for CVEs, checking configuration or secret security, assessing authentication and authorization patterns, identifying OWASP vulnerabilities (injection, XSS, CSRF), or addressing security concerns about implementations.

io.github.redpanda-data/console/security-scan

Resolve npm dependency vulnerabilities detected by security scans.

io.github.sickn33/antigravity-awesome-skills/mobile-security-coder

Expert in secure mobile coding practices specializing in input validation, WebView security, and mobile-specific security patterns.

Security Skill Scanner

v0.1.0

io.clawhub.digitaladaption/openclaw-skills-security-checker

Security scanner for ClawdHub skills - detects suspicious patterns, manages whitelists, and monitors Moltbook for security threats.

io.github.FlorianBruniaux/claude-code-ultimate-guide/security-audit

Comprehensive security audit with scored posture assessment

io.github.FlorianBruniaux/claude-code-ultimate-guide/security

Rapid security assessment focused on OWASP Top 10 vulnerabilities

io.github.giuseppe-trisciuoglio/developer-kit/typescript-security-review

Provides security review capability for TypeScript/Node.js applications, validates code against XSS, injection, CSRF, JWT/OAuth2 flaws, dependency CVEs, and secrets exposure. Use when performing security audits, before deployment, reviewing authentication/authorization implementations, or ensuring OWASP compliance for Express, NestJS, and Next.js. Triggers on "security review", "check for security issues", "TypeScript security audit".

io.github.OpenAEV-Platform/openaev/review-security

Security review checklist for OpenAEV code: RBAC, tenant isolation, data exposure, authentication. Use when reviewing PRs or auditing security of a feature.

io.github.FlorianBruniaux/claude-code-ultimate-guide/security-check

Quick configuration security check against known threats database

io.github.sickn33/antigravity-awesome-skills/api-security-testing

API security testing workflow for REST and GraphQL APIs covering authentication, authorization, rate limiting, input validation, and security best practices.

io.github.tech-leads-club/agent-skills/security-best-practices

Perform language and framework specific security best-practice reviews and suggest improvements. Use when the user explicitly requests security best practices guidance, a security review or report, or secure-by-default coding help. Supports Python, JavaScript/TypeScript, and Go. Do NOT use for general code review, debugging, threat modeling (use security-threat-model), or non-security tasks.

io.github.rustfs/rustfs/security-advisory-lessons

Apply RustFS security lessons distilled from repository GitHub Security Advisories. Use when making or reviewing RustFS code changes, doing security checks, handling PR review for auth/authz, IAM, storage, RPC, logging, CORS, console/browser, encryption, policy, or endpoint changes, and when deciding which security regression tests are required.

io.github.eigent-ai/eigent/skill-security-auditor

Security auditing for code, configs, and infrastructure. Use when the user wants to audit or improve security: scan for vulnerabilities (SQL injection, XSS, command injection, path traversal), detect hardcoded secrets and credentials, review auth and authorization, check dependencies for known CVEs, audit config files for insecure defaults, or generate security reports. Trigger on "security audit", "vulnerability scan", "code review for security", "find secrets", "check for vulnerabilities", "OWASP", "CVE", or questions about code security.

io.github.sickn33/antigravity-awesome-skills/laravel-security-audit

Security auditor for Laravel applications. Analyzes code for vulnerabilities, misconfigurations, and insecure practices using OWASP standards and Laravel security best practices.

security-reviewer

v1.0.0

io.clawhub.veeramanikandanr48/pentest

Use when conducting security audits, reviewing code for vulnerabilities, or analyzing infrastructure security. Invoke for SAST scans, penetration testing, DevSecOps practices, cloud security reviews.

io.github.sickn33/antigravity-awesome-skills/security-auditor

Expert security auditor specializing in DevSecOps, comprehensive cybersecurity, and compliance frameworks.

io.github.BagelHole/DevOps-Security-Agent-Skills/kubernetes-hardening

Implement Kubernetes security contexts, Pod Security Standards, and network policies. Secure cluster components and workloads. Use when hardening Kubernetes deployments or meeting security compliance.

Agentic Security Audit

v1.0.0

io.clawhub.kingrubic/agentic-security-audit

Audit codebases, infrastructure, AND agentic AI systems for security issues. Covers traditional security (dependencies, secrets, OWASP web top 10, SSL/TLS, f...

io.github.danielmiessler/Personal_AI_Infrastructure/Security

Security assessment and intelligence — network reconnaissance, web app security testing, prompt injection testing, security news monitoring, and annual report analysis. USE WHEN recon, reconnaissance, port scan, subdomain, DNS, WHOIS, ASN, netblock, CIDR, mass scan, path discovery, endpoint discovery, corporate structure, bounty programs, IP recon, domain recon, passive recon, web assessment, OWASP, pentest, threat model, vulnerability analysis, ffuf, Playwright, Gemini analysis, prompt injection, jailbreak, LLM security, guardrail bypass, direct injection, indirect injection, multi-stage attack, security news, sec updates, breaches, tldrsec, security research, annual reports, threat landscape, security trends, vendor reports, fetch report, list sources.

io.github.openai/skills/security-best-practices

Perform language and framework specific security best-practice reviews and suggest improvements. Trigger only when the user explicitly requests security best practices guidance, a security review/report, or secure-by-default coding help. Trigger only for supported languages (python, javascript/typescript, go). Do not trigger for general code review, debugging, or non-security tasks.

claw skill security audit

v1.0.0

io.clawhub.kylehuan/skill-security-audit

Conduct comprehensive security audits and vulnerability analysis on codebases. Use when explicitly asked for security analysis, code security review, vulnerability assessment, SAST scanning, or identifying security issues in source code. Covers injection flaws, broken access control, hardcoded secrets, insecure data handling, authentication weaknesses, LLM safety, and privacy violations.