Search Results: security-analysis

Found 14 Skills

fusion-dependency-review

Review dependency PRs with structured research, existing-PR-discussion capture, multi-lens analysis (security, code quality, impact), and a repeatable verdict template. USE FOR: dependency update PRs, Renovate/Dependabot PRs, library upgrade reviews, "review this dependency PR", "should we merge this update". DO NOT USE FOR: feature PRs, application code reviews, dependency automation/bot configuration, or unattended merge without confirmation.

🇺🇸|EnglishTranslated

Security & Compliancerysweet/amplihack

cybersecurity-analyst

Analyzes events through cybersecurity lens using threat modeling, attack surface analysis, defense-in-depth, zero-trust architecture, and risk-based frameworks (CIA triad, STRIDE, MITRE ATT&CK). Provides insights on vulnerabilities, attack vectors, defense strategies, incident response, and security posture. Use when: Security incidents, vulnerability assessments, threat analysis, security architecture, compliance. Evaluates: Confidentiality, integrity, availability, threat actors, attack patterns, controls, residual risk.

🇺🇸|EnglishTranslated

Security & Compliancetrailofbits/skills

sarif-parsing

Parse, analyze, and process SARIF (Static Analysis Results Interchange Format) files. Use when reading security scan results, aggregating findings from multiple tools, deduplicating alerts, extracting specific vulnerabilities, or integrating SARIF data into CI/CD pipelines.

🇺🇸|EnglishTranslated

1 scripts/Checked

Security & Compliancevchirrav/owasp-secure-cod...

malware-scan-yara

Run YARA rules for pattern-based malware identification. Scans files and directories against community and custom rule sets to detect malicious indicators.

🇺🇸|EnglishTranslated

Data Processingstarchild-ai-agent/offici...

birdeye

Token intelligence and wallet analytics for Solana and EVM chains. Use for token security checks, comprehensive token data, and wallet portfolio analysis.

🇺🇸|EnglishTranslated

10 scripts/Checked

Security & Compliancekjgarza/marketplace-claud...

security-pattern-check

Identify security vulnerabilities and anti-patterns providing feedback on security issues a senior developer would catch. Use when user mentions security/vulnerability/safety concerns, code involves user input/authentication/data access, working with sensitive data (passwords/PII/financial), code includes SQL queries/file operations/external API calls, user asks about security best practices, or security-sensitive files are being modified (auth, payment, data access).

🇺🇸|EnglishTranslated

Security & Compliancenavanithans/agent-skill-k...

ask-owasp-security-review

Static security analysis for code, auditing for OWASP Top 10 risks. Triggers: "security audit", "is this secure", "check for vulnerabilities". Capabilities: - Static analysis of code snippets. - Mapping findings to OWASP Top 10 (2021). - Providing remediation code patterns.

🇺🇸|EnglishTranslated

1 scripts/Checked

Code Qualityvircung/opencode-config

python-review

Python code security analysis, performance optimization, and maintainability assessment

🇺🇸|EnglishTranslated

Security & Complianceroin-orca/superpowers

security-best-practices

Perform security analysis

🇺🇸|EnglishTranslated

1 scripts/Attention

Security & Complianceshotaiuchi/dotclaude

feature-security

Security analysis for new features. Apply when reviewing authentication, authorization, input validation, data protection, and security best practices in new feature implementations.

🇺🇸|EnglishTranslated

Tools & Utilitiesarielperez82/agents-and-s...

research

Use when you need to research, analyze, and plan technical solutions that are scalable, secure, and maintainable.

🇺🇸|EnglishTranslated

Code Qualitygithub/awesome-copilot

codeql

Comprehensive guide for setting up and configuring CodeQL code scanning via GitHub Actions workflows and the CodeQL CLI. This skill should be used when users need help with code scanning configuration, CodeQL workflow files, CodeQL CLI commands, SARIF output, security analysis setup, or troubleshooting CodeQL analysis.

🇺🇸|EnglishTranslated