General
PromptBeginner5 minmarkdown
- [ ] All five risk categories (injection
access
0
Explore
Find agent skills by outcome
85,137 skills indexed with the new KISS metadata standard.
Showing 24 of 85,137Categories: Data & Insights, Communication, General
General
PromptBeginner5 minmarkdown
After completing the security audit of a diff
verify:
0
General
PromptBeginner5 minmarkdown
- CORS policy restricts origins to known
trusted domains
0
General
PromptBeginner5 minmarkdown
- Token validation checks expiration
signature
0
General
PromptBeginner5 minmarkdown
- Password handling uses strong hashing (bcrypt
scrypt
0
General
PromptBeginner5 minmarkdown
- Logs do not contain PII
credentials
0
General
PromptBeginner5 minmarkdown
- File uploads have type
size
0
General
PromptBeginner5 minmarkdown
- Session tokens use secure flags (HttpOnly
Secure
0
General
PromptBeginner5 minmarkdown
- Weak or deprecated encryption algorithms (MD5
SHA1
0
General
PromptBeginner5 minmarkdown
- Query construction uses parameterized queries
not string concatenation
0
General
PromptBeginner5 minmarkdown
- PII written to logs
error messages
0
General
PromptBeginner5 minmarkdown
- Classify each finding by severity (Critical
High
0
General
PromptBeginner5 minmarkdown
- Command injection via unsanitized input in exec
system
0
General
PromptBeginner5 minmarkdown
- Review security header changes (CSP
CORS
0
General
PromptBeginner5 minmarkdown
- Check for PII being logged
cached
0
General
PromptBeginner5 minmarkdown
- Identify cross-site scripting (XSS) vectors in reflected
stored
0
General
PromptBeginner5 minmarkdown
- **Produce** structured audit reports with risk assessments
exploit explanations
0
General
PromptBeginner5 minmarkdown
- Parse the git diff to identify all modified
added
0
General
PromptBeginner5 minmarkdown
- **Detect** broken access control patterns including IDOR
missing auth checks
0
General
PromptBeginner5 minmarkdown
Diff Security Auditor Agent Role
# Security Diff Auditor
0
General
PromptBeginner5 minmarkdown
- Considers full-system impact
not just local improvements
0
General
PromptBeginner5 minmarkdown
- [ ] Trade-offs between performance
readability
0
General
PromptBeginner5 minmarkdown
Before finalizing
verify:
0
General
PromptBeginner5 minmarkdown
Use checkboxes and stable IDs (e.g.
`PERF-ITEM-1.1`):
0