home/categories/testing-security

domain cluster

Testing & Security

QA, penetration testing, and code quality.

9326 اسکلزall categories

sorting

stars

current ordering strategy

query

all entries

refine the visible subset

security

sanitizer

外部入力（Issue/PRの本文）からプロンプトインジェクション対策としてサニタイズを行う

takemo101

testing-security

open

security

security-karen

OWASP-obsessed security reviewer. Will find your vulnerabilities and make you feel bad about them.

Peleke

testing-security

open

security

WS-Discovery protocol scanner for discovering and enumerating ONVIF cameras and IoT devices on the network. Use when you need to discover ONVIF devices, cameras, or WS-Discovery enabled equipment on a network.

consigcody94

testing-security

open

security

security-architect

Expert security and solutions architect providing sophisticated, pragmatic security architectures. Use when designing secure systems, evaluating security postures, threat modeling, implementing Zero Trust, defense-in-depth strategies, secure cloud architectures, compliance frameworks (NIST, ISO 27001, SOC 2), or when security expertise is needed in system design. Combines technical rigor with elegant, practical solutions.

marcosfpina

testing-security

open

security

better-auth-configuration

Creates Better Auth configuration for frontend and backend: handlers, providers, middleware, session/token options. Uses Context7 MCP to retrieve Better Auth docs.

nadeemsangrasi

testing-security

open

security

maverick-python-security

Python security patterns and OWASP vulnerability detection

get2knowio

testing-security

open

security

dependency-security

Dependency security scanning. Use when auditing npm packages for vulnerabilities.

IvanTorresEdge

testing-security

open

security

error-handling-reviewer

Review test cases for OAuth/OIDC error handling. Covers authorization endpoint errors, token endpoint errors, error response formats, HTTP status codes, and all error codes per OAuth 2.1 and OIDC Core 1.0.

maronnjapan

testing-security

open

security

owasp-top10-2025

OWASP Top 10:2025 웹 보안 취약점 가이드. 보안 전문가 서브에이전트가 코드 리뷰, 보안 감사, 취약점 분석 시 참조하는 스킬. A01 Broken Access Control부터 A10 Mishandling of Exceptional Conditions까지 10가지 주요 웹 보안 위협에 대한 배경, 설명, 예방법, 공격 시나리오, 관련 CWE 정보 제공.

onepunch-tk

testing-security

open

security

auditproxy-audit-session

Issues a proxy audit verdict for a session.

venikman

testing-security

open

security

ad-security-reviewer

Use when user needs Active Directory security analysis, privileged group design review, authentication policy assessment, or delegation and attack surface evaluation across enterprise domains.

404kidwiz

testing-security

open

security

global-validation

Implement server-side validation with allowlists, specific error messages, type checking, and sanitization to prevent security vulnerabilities and ensure data integrity. Use this skill when creating or editing form request classes, when validating API inputs, when implementing validation rules in controllers or services, when writing client-side validation for user experience, when sanitizing user input to prevent injection attacks, when validating business rules, when implementing error message display, or when ensuring consistent validation across all application entry points.

DevanB

testing-security

open

security

clerk

Implements authentication with Clerk including user management, protected routes, middleware, and React components. Use when adding authentication, managing users, protecting routes, or implementing sign-in/sign-up flows.

mgd34msu

testing-security

open

security

security-compliance

Implement comprehensive security for shared library. Use when working with security audits, dependency vulnerabilities, API security, token encryption, or secure coding practices for library consumers. Library security impacts all consuming plugins.

RicherTunes

testing-security

open

security

bandit-security-scan

Run Bandit security analysis to find common security issues and vulnerabilities in Python code. Use when the user mentions Bandit, security analysis, vulnerability scanning, security audit, software composition analysis (SCA), or wants to check for security issues in Python code.

visgwu

testing-security

open

security

Security auditor that identifies vulnerabilities using OWASP guidelines

Arthur742Ramos

testing-security

open

security

moai-foundation-trust

Validates TRUST 5-principles (Test 85%+, Readable, Unified, Secured, Trackable). Use when aligning with TRUST governance.

kivo360

testing-security

open

security

auth-expert

Senior expert in Auth.js v5 (NextAuth), Edge-First authentication and security.

YuniorGlez

testing-security

open

security

session-management

Clerk session handling, JWT verification, token management, and multi-session workflows. Use when implementing session validation, JWT claims customization, token refresh patterns, session lifecycle management, or when user mentions session errors, authentication tokens, JWT verification, multi-device sessions, or session security.

vanman2024

testing-security

open

security

agentuity-cli-auth-whoami

Display information about the currently authenticated user. Requires authentication. Use for managing authentication credentials

agentuity

testing-security

open

security

security-practices

Security best practices for Python development. Activated when working with security concerns, input validation, injection prevention, or threat modeling.

tbhb

testing-security

open

security

astroapps-client-msal

Microsoft Authentication Library (MSAL) integration for @astroapps/client with Azure AD/Entra ID authentication. Use when building React apps that need Azure AD authentication with popup or redirect flows.