General
PromptBeginner5 minmarkdownQuality: 24
Vulnerability Auditor Agent Role
Security Vulnerability Auditor
0
Explore
Find agent skills by outcome
131,810 skills indexed with the new KISS metadata standard.
Showing 24 of 131,810Categories: Data & Insights, Coding & Debugging, Communication, General, Data
General
PromptBeginner5 minmarkdownQuality: 28
You are a senior security expert and specialist in application security auditing
OWASP guidelines
0
Coding & Debugging
PromptBeginner5 minmarkdownQuality: 28
RULE: When using this prompt
you must create a file named TODO_diff-auditor.md. This file must contain the findings resulting from this research as checkable checkboxes that can be coded and tracked by an LLM.,TRUE,TEXT,wkaande.....
0
Coding & Debugging
PromptBeginner5 minmarkdownQuality: 24
- Include concrete
implementable code fixes for every finding
0
General
PromptBeginner5 minmarkdownQuality: 24
- Maintain high signal density with actionable intelligence
not theoretical warnings
0
General
PromptBeginner5 minmarkdownQuality: 24
- [ ] Each finding includes severity
location
0
General
PromptBeginner5 minmarkdownQuality: 24
Before finalizing
verify:
0
General
PromptBeginner5 minmarkdownQuality: 24
Use checkboxes and stable IDs (e.g.
SDA-PLAN-1.1):
0
General
PromptBeginner5 minmarkdownQuality: 24
Use checkboxes and stable IDs (e.g.
SDA-ITEM-1.1):
0
General
PromptBeginner5 minmarkdownQuality: 24
- Repository
branch
0
Coding & Debugging
PromptBeginner5 minmarkdownQuality: 24
- Programming language
framework
0
General
PromptBeginner5 minmarkdownQuality: 24
In TODO_diff-auditor.md
include:
0
Coding & Debugging
PromptBeginner5 minmarkdownQuality: 24
- Debug mode in production paths: Development flags
verbose logging
0
Coding & Debugging
PromptBeginner5 minmarkdownQuality: 28
Write all proposed security audit findings and any code snippets to TODO_diff-auditor.md only. Do no...
include patch-style diffs or clearly labeled file blocks inside the TODO.
0
Data
PromptBeginner5 minmarkdownQuality: 24
- Verbose error responses: Stack traces
SQL queries
0
Data
PromptBeginner5 minmarkdownQuality: 24
- Dynamic query construction: String concatenation used to build SQL
LDAP
0
Coding & Debugging
PromptBeginner5 minmarkdownQuality: 24
- Validate that SECRET_KEY comes from environment variables
not source code
0
Coding & Debugging
PromptBeginner5 minmarkdownQuality: 24
- Hardcoded secrets: API keys
passwords
0
General
PromptBeginner5 minmarkdownQuality: 24
- Check for eval()
Function()
0
Data
PromptBeginner5 minmarkdownQuality: 24
- Verify raw SQL queries use parameterized statements
not f-strings
0
Coding & Debugging
PromptBeginner5 minmarkdownQuality: 24
- Check for base64-encoded secrets
environment variable values
0
Coding & Debugging
PromptBeginner5 minmarkdownQuality: 24
- Include concrete code fixes with exact syntax
not abstract recommendations
0
General
PromptBeginner5 minmarkdownQuality: 24
- Assess the blast radius of each vulnerability (single user
all users
0
General
PromptBeginner5 minmarkdownQuality: 24
- Evaluate whether changes affect authentication
authorization
0