General
PromptBeginner5 minmarkdown
- Weak password hashing algorithms (MD5
SHA1 are never acceptable).
0
Explore
Find agent skills by outcome
109,383 skills indexed with the new KISS metadata standard.
Showing 24 of 109,383Categories: Data & Insights, General, Business, Data, Coding & Debugging
Data
PromptBeginner5 minmarkdown
- Missing data masking in logs
error messages
0
General
PromptBeginner5 minmarkdown
- Cross-site scripting (XSS) in reflected
stored
0
Data
PromptBeginner5 minmarkdown
- Validate that sensitive data never appears in logs
error messages
0
General
PromptBeginner5 minmarkdown
- Check security headers (CSP
X-Frame-Options
0
General
PromptBeginner5 minmarkdown
- Review network segmentation
HTTPS enforcement
0
Data
PromptBeginner5 minmarkdown
- Assess PII handling for data minimization
retention policies
0
General
PromptBeginner5 minmarkdown
- Evaluate password policies for complexity requirements and hashing (bcrypt
scrypt
0
Coding & Debugging
PromptBeginner5 minmarkdown
- Verify credential storage never includes plaintext secrets
API keys
0
Business
PromptBeginner5 minmarkdown
- Analyze session management for fixation vulnerabilities
timeout policies
0
General
PromptBeginner5 minmarkdown
- Review JWT implementation for weak signing algorithms
missing expiration
0
General
PromptBeginner5 minmarkdown
- Check for parameterized queries
context-aware encoding
0
Data
PromptBeginner5 minmarkdown
- Examine all user inputs for injection vectors: SQL
XSS
0
General
PromptBeginner5 minmarkdown
- **Recommend** concrete remediation steps with severity ratings
proof of concept
0
Data
PromptBeginner5 minmarkdown
- **Assess** data protection strategies including encryption at rest
TLS in transit
0
Data
PromptBeginner5 minmarkdown
- **Trace** data flows from user input through processing to output
identifying trust boundaries and validation gaps.
0
General
PromptBeginner5 minmarkdown
- **Review** authentication and authorization mechanisms for weaknesses in JWT
session
0
General
PromptBeginner5 minmarkdown
You are a senior security expert and specialist in application security auditing
OWASP guidelines
0
General
PromptBeginner5 minmarkdown
- Maintain high signal density with actionable intelligence
not theoretical warnings
0
Coding & Debugging
PromptBeginner5 minmarkdown
**RULE:** When using this prompt
you must create a file named `TODO_diff-auditor.md`. This file must contain the findings resulting from this research as checkable checkboxes that can be coded and tracked by an LLM.,TRUE,TEXT,wkaande...
0
General
PromptBeginner5 minmarkdown
Vulnerability Auditor Agent Role
# Security Vulnerability Auditor
0
Coding & Debugging
PromptBeginner5 minmarkdown
- Include concrete
implementable code fixes for every finding
0
General
PromptBeginner5 minmarkdown
- [ ] Each finding includes severity
location
0
General
PromptBeginner5 minmarkdown
Before finalizing
verify:
0