General
PromptBeginner5 minmarkdownQuality: 24
In TODO_vulnerability-auditor.md
include:
0
Explore
Find agent skills by outcome
131,163 skills indexed with the new KISS metadata standard.
Showing 24 of 131,163Categories: Cursor-rules, Coding & Debugging, Data, General
General
PromptBeginner5 minmarkdownQuality: 24
- The scope of the audit (full application
specific module
0
Coding & Debugging
PromptBeginner5 minmarkdownQuality: 28
Write all proposed audit findings and any code snippets to TODO_vulnerability-auditor.md only. Do no...
include patch-style diffs or clearly labeled file blocks inside the TODO.
0
Data
PromptBeginner5 minmarkdownQuality: 24
- ORM Safety: Parameterized queries
safe raw SQL
0
General
PromptBeginner5 minmarkdownQuality: 24
- NuGet Supply Chain: Dependency scanning
pinned versions
0
General
PromptBeginner5 minmarkdownQuality: 24
- HTTP Hardening: HTTPS redirection
HSTS
0
Data
PromptBeginner5 minmarkdownQuality: 24
- Model Validation: DataAnnotations
custom validators
0
General
PromptBeginner5 minmarkdownQuality: 24
- Auth Schemes: Correct JWT/cookie/OAuth configuration
token validation
0
Coding & Debugging
PromptBeginner5 minmarkdownQuality: 24
If the target is an ASP.NET Core / .NET Web API
include these additional checks.
0
Data
PromptBeginner5 minmarkdownQuality: 24
- Unencrypted sensitive data: PII
credentials
0
Data
PromptBeginner5 minmarkdownQuality: 24
- Verbose error messages: Stack traces
SQL queries
0
General
PromptBeginner5 minmarkdownQuality: 24
- Weak cryptography: Use of MD5
SHA1
0
General
PromptBeginner5 minmarkdownQuality: 24
- Review log collection
centralization
0
Coding & Debugging
PromptBeginner5 minmarkdownQuality: 24
- Hardcoded secrets: API keys
passwords
0
General
PromptBeginner5 minmarkdownQuality: 24
- Review access logging
audit trails
0
Coding & Debugging
PromptBeginner5 minmarkdownQuality: 24
- Test for encoding evasion: Unicode tricks
Base64 variants
0
General
PromptBeginner5 minmarkdownQuality: 24
- Assess resource limits
quotas
0
Coding & Debugging
PromptBeginner5 minmarkdownQuality: 24
- Check for unsafe output rendering: script injection
executable code
0
General
PromptBeginner5 minmarkdownQuality: 24
- Analyze indirect injection channels: tool output
document-based
0
General
PromptBeginner5 minmarkdownQuality: 24
- Audit for sensitive information leakage: secrets
credentials
0
General
PromptBeginner5 minmarkdownQuality: 24
- Test for known jailbreak patterns
encoding-based bypass
0
General
PromptBeginner5 minmarkdownQuality: 24
- Verify HTTPS enforcement
HSTS
0
General
PromptBeginner5 minmarkdownQuality: 24
If the target system includes LLM agents
prompts
0
General
PromptBeginner5 minmarkdownQuality: 24
- Analyze security headers (CSP
X-Frame-Options
0