Search Results: owasp-compliance

Found 19 Skills

Security & Compliancegiuseppe-trisciuoglio/dev...

typescript-security-review

Provides comprehensive security review capability for TypeScript and Node.js applications, validates code against XSS, injection, CSRF, JWT/OAuth2 flaws, dependency CVEs, and secrets exposure. Use when performing security audits, before deployment, reviewing authentication/authorization implementations, or ensuring OWASP compliance for Express, NestJS, and Next.js. Triggers on "security review", "check for security issues", "TypeScript security audit".

🇺🇸|EnglishTranslated

Security & Compliancealo-exp/silver-bullet

security

Use when designing, planning, implementing, or reviewing any non-trivial change — enforces defense in depth, input validation, secure defaults, and OWASP best practices to prevent vulnerabilities before they ship

🇺🇸|EnglishTranslated

AI & Machine Learningaradotso/ai-agent-skills

agent-governance-toolkit

Add policy enforcement, zero-trust identity, and execution sandboxing to AI agents with Microsoft's Agent Governance Toolkit

🇺🇸|EnglishTranslated

Security & Compliancecuriositech/some_claude_s...

security-auditor

Security vulnerability scanner and OWASP compliance auditor for codebases. Dependency scanning (npm audit, pip-audit), secret detection (high-entropy strings, API keys), SAST for injection/XSS vulnerabilities, and security posture reports. Activate on 'security audit', 'vulnerability scan', 'OWASP', 'secret detection', 'dependency check', 'CVE', 'security review', 'penetration testing prep'. NOT for runtime WAF configuration (use infrastructure tools), network security/firewalls, or compliance certifications like SOC2/HIPAA (legal/organizational).

🇺🇸|EnglishTranslated

3 scripts/Attention

Mobile Developmentivan-magda/swift-security...

swift-security-expert

Use when working with iOS/macOS Keychain Services (SecItem queries, kSecClass, OSStatus errors), biometric authentication (LAContext, Face ID, Touch ID), CryptoKit (AES-GCM, ChaChaPoly, ECDSA, ECDH, HPKE, ML-KEM), Secure Enclave, secure credential storage (OAuth tokens, API keys), certificate pinning (SecTrust, SPKI), keychain sharing across apps/extensions, migrating secrets from UserDefaults or plists, or OWASP MASVS/MASTG mobile compliance on Apple platforms.

🇺🇸|EnglishTranslated

Security & Compliancejeremylongshore/claude-co...

analyzing-security-headers

Analyze HTTP security headers of web domains to identify vulnerabilities and misconfigurations. Use when you need to audit website security headers, assess header compliance, or get security recommendations for web applications. Trigger with phrases like "analyze security headers", "check HTTP headers", "audit website security headers", or "evaluate CSP and HSTS configuration".

🇺🇸|EnglishTranslated

2 scripts/Checked

Backend Developmentkaribulab/skills

python-fastapi

FastAPI Secure Engineering

🇺🇸|EnglishTranslated