Explore

Find agent skills by outcome

85,198 skills indexed with the new KISS metadata standard.

Showing 24 of 85,198Categories: Data & Insights, Communication, General

General

PromptBeginner5 minmarkdown

- Audit for sensitive information leakage: secrets

credentials

Mar 21, 2026

General

PromptBeginner5 minmarkdown

- Analyze indirect injection channels: tool output

document-based

Mar 21, 2026

General

PromptBeginner5 minmarkdown

- Test for known jailbreak patterns

encoding-based bypass

Mar 21, 2026

General

PromptBeginner5 minmarkdown

- Verify HTTPS enforcement

HSTS

Mar 21, 2026

General

PromptBeginner5 minmarkdown

- Analyze security headers (CSP

X-Frame-Options

Mar 21, 2026

General

PromptBeginner5 minmarkdown

If the target system includes LLM agents

prompts

Mar 21, 2026

General

PromptBeginner5 minmarkdown

- Validate and restrict CORS origins to known

trusted domains only.

Mar 21, 2026

General

PromptBeginner5 minmarkdown

- Use `bcrypt` or `argon2-cffi` for password hashing

never `hashlib` directly.

Mar 21, 2026

General

PromptBeginner5 minmarkdown

- Validate and sanitize input with libraries like `joi`

`zod`

Mar 21, 2026

General

PromptBeginner5 minmarkdown

- Evaluate transitive dependencies

not just direct imports.

Mar 21, 2026

General

PromptBeginner5 minmarkdown

- Avoid `eval()`

`Function()`

Mar 21, 2026

General

PromptBeginner5 minmarkdown

- Run `npm audit`

`yarn audit`

Mar 21, 2026

General

PromptBeginner5 minmarkdown

- [ ] Encryption standards meet minimum requirements (AES-256

TLS 1.2+).

Mar 21, 2026

General

PromptBeginner5 minmarkdown

After completing an audit

verify:

Mar 21, 2026

General

PromptBeginner5 minmarkdown

- Weak password hashing algorithms (MD5

SHA1 are never acceptable).

Mar 21, 2026

General

PromptBeginner5 minmarkdown

- Check security headers (CSP

X-Frame-Options

Mar 21, 2026

General

PromptBeginner5 minmarkdown

- Cross-site scripting (XSS) in reflected

stored

Mar 21, 2026

General

PromptBeginner5 minmarkdown

- Review network segmentation

HTTPS enforcement

Mar 21, 2026

General

PromptBeginner5 minmarkdown

- Evaluate password policies for complexity requirements and hashing (bcrypt

scrypt

Mar 21, 2026

General

PromptBeginner5 minmarkdown

- Review JWT implementation for weak signing algorithms

missing expiration

Mar 21, 2026

General

PromptBeginner5 minmarkdown

- Recommend concrete remediation steps with severity ratings

proof of concept

Mar 21, 2026

General

PromptBeginner5 minmarkdown

- Check for parameterized queries

context-aware encoding

Mar 21, 2026

General

PromptBeginner5 minmarkdown

- Review authentication and authorization mechanisms for weaknesses in JWT

session

Mar 21, 2026

General

PromptBeginner5 minmarkdown

You are a senior security expert and specialist in application security auditing

OWASP guidelines

Mar 21, 2026

Find agent skills by outcome

- Audit for sensitive information leakage: secrets

- Analyze indirect injection channels: tool output

- Test for known jailbreak patterns

- Verify HTTPS enforcement

- Analyze security headers (CSP

If the target system includes LLM agents

- Validate and restrict CORS origins to known

- Use `bcrypt` or `argon2-cffi` for password hashing

- Validate and sanitize input with libraries like `joi`

- Evaluate transitive dependencies

- Avoid `eval()`

- Run `npm audit`

- [ ] Encryption standards meet minimum requirements (AES-256

After completing an audit

- Weak password hashing algorithms (MD5

- Check security headers (CSP

- Cross-site scripting (XSS) in reflected

- Review network segmentation

- Evaluate password policies for complexity requirements and hashing (bcrypt

- Review JWT implementation for weak signing algorithms

- **Recommend** concrete remediation steps with severity ratings

- Check for parameterized queries

- **Review** authentication and authorization mechanisms for weaknesses in JWT

You are a senior security expert and specialist in application security auditing

- Recommend concrete remediation steps with severity ratings

- Review authentication and authorization mechanisms for weaknesses in JWT