Search Results: security-audit

Found 203 Skills

Mobile Developmentrshankras/claude-code-app...

release-review

Senior developer-level release review for macOS/iOS apps. Identifies security, privacy, UX, and distribution issues with actionable fixes. Use when preparing an app for release, want a critical review, or before App Store submission.

🇺🇸|EnglishTranslated

Security & Compliancesteipete/clawdis

healthcheck

Host security hardening and risk-tolerance configuration for OpenClaw deployments. Use when a user asks for security audits, firewall/SSH/update hardening, risk posture, exposure review, OpenClaw cron scheduling for periodic checks, or version status checks on a machine running OpenClaw (laptop, workstation, Pi, VPS).

🇺🇸|EnglishTranslated

Security & Compliancelevnikolaevich/claude-cod...

ln-761-secret-scanner

Scans codebase for hardcoded secrets. Returns normalized findings with severity and remediation guidance. Pre-commit hook integration.

🇺🇸|EnglishTranslated

Security & Compliancenickcrew/claude-ctx-plugi...

owasp-top-10

OWASP Top 10 security vulnerabilities with detection and remediation patterns. Use when conducting security audits, implementing secure coding practices, or reviewing code for common security vulnerabilities.

🇺🇸|EnglishTranslated

Backend Developmentlevnikolaevich/claude-cod...

ln-713-pip-upgrader

Upgrades Python pip/poetry/pipenv dependencies with breaking change handling

🇺🇸|EnglishTranslated

Code Qualityonewave-ai/claude-skills

code-review-pro

Comprehensive code review covering security vulnerabilities, performance bottlenecks, best practices, and refactoring opportunities. Use when user requests code review, security audit, or performance analysis.

🇺🇸|EnglishTranslated

AI & Machine Learningprompt-security/clawsec

prompt-agent

Security audit enforcement for AI agents. Automated security scans and health verification.

🇺🇸|EnglishTranslated

Security & Compliancetrailofbits/skills

guidelines-advisor

Smart contract development advisor based on Trail of Bits' best practices. Analyzes codebase to generate documentation/specifications, review architecture, check upgradeability patterns, assess implementation quality, identify pitfalls, review dependencies, and evaluate testing. Provides actionable recommendations.

🇺🇸|EnglishTranslated

Security & Compliancetrailofbits/skills

fix-review

Verifies that git commits address security audit findings without introducing bugs. This skill should be used when the user asks to "verify these commits fix the audit findings", "check if TOB-XXX was addressed", "review the fix branch", "validate remediation commits", "did these changes address the security report", "post-audit remediation review", "compare fix commits to audit report", or when reviewing commits against security audit reports.

🇺🇸|EnglishTranslated

Security & Compliancetrailofbits/skills

constant-time-analysis

Detects timing side-channel vulnerabilities in cryptographic code. Use when implementing or reviewing crypto code, encountering division on secrets, secret-dependent branches, or constant-time programming questions in C, C++, Go, Rust, Swift, Java, Kotlin, C#, PHP, JavaScript, TypeScript, Python, or Ruby.

🇺🇸|EnglishTranslated

Code Qualitydavila7/claude-code-templ...

code-review

Perform code reviews following Sentry engineering practices. Use when reviewing pull requests, examining code changes, or providing feedback on code quality. Covers security, performance, testing, and design review.

🇺🇸|EnglishTranslated

Tools & Utilitiesmrgoonie/claudekit-skills

repomix

Package entire code repositories into single AI-friendly files using Repomix. Capabilities include pack codebases with customizable include/exclude patterns, generate multiple output formats (XML, Markdown, plain text), preserve file structure and context, optimize for AI consumption with token counting, filter by file types and directories, add custom headers and summaries. Use when packaging codebases for AI analysis, creating repository snapshots for LLM context, analyzing third-party libraries, preparing for security audits, generating documentation context, or evaluating unfamiliar codebases.

🇺🇸|EnglishTranslated

2 scripts/Checked