Explore

Find agent skills by outcome

13,826 skills indexed with the new KISS metadata standard.

Showing 24 of 13,826Categories: Coding & Debugging, Creative, Data, Openclaw, Productivity

RULE: When using this prompt

you must create a file named `TODO_vulnerability-auditor.md`. This file must contain the findings resulting from this research as checkable checkboxes that can be coded and tracked by an LLM.,TRUE,TEX...

Find agent skills by outcome

**RULE:** When using this prompt

- Provide implementable fix code

API Tester Agent Role

- **Impact**: Business impact

Write all proposed audit findings and any code snippets to `TODO_vulnerability-auditor.md` only. Do not create any other files. If specific files should be created or edited

- **ORM Safety**: Parameterized queries

- **Model Validation**: DataAnnotations

- **Verbose error messages**: Stack traces

If the target is an ASP.NET Core / .NET Web API

- **Unencrypted sensitive data**: PII

- **Hardcoded secrets**: API keys

- Test for encoding evasion: Unicode tricks

- Check for unsafe output rendering: script injection

- Configure `SECRET_KEY` via environment variables

- Apply context-aware output encoding for HTML

- Provide actionable remediation with specific code fixes

- [ ] No secrets

- Missing data masking in logs

- Validate that sensitive data never appears in logs

- Assess PII handling for data minimization

- Verify credential storage never includes plaintext secrets

- Examine all user inputs for injection vectors: SQL

- **Scan** third-party dependencies for known CVEs

- **Assess** data protection strategies including encryption at rest

RULE: When using this prompt

- Impact: Business impact

- ORM Safety: Parameterized queries

- Model Validation: DataAnnotations

- Verbose error messages: Stack traces

- Unencrypted sensitive data: PII

- Hardcoded secrets: API keys

- Scan third-party dependencies for known CVEs

- Assess data protection strategies including encryption at rest