General
PromptBeginner5 minmarkdown
- [ ] Remediation steps are specific and implementable
not generic advice.
0
Explore
Find agent skills by outcome
86,824 skills indexed with the new KISS metadata standard.
Showing 24 of 86,824Categories: Data, Creative, Communication, Cursor-rules, Coding & Debugging, General
General
PromptBeginner5 minmarkdown
- Examine what controls are absent
not just what is present.
0
General
PromptBeginner5 minmarkdown
- [ ] Findings include severity
description
0
Data
PromptBeginner5 minmarkdown
- **Impact**: Business impact
data exposure risk
0
General
PromptBeginner5 minmarkdown
Before finalizing
verify:
0
General
PromptBeginner5 minmarkdown
- **Priority**: Critical
high
0
General
PromptBeginner5 minmarkdown
- The scope of the audit (full application
specific module
0
General
PromptBeginner5 minmarkdown
In `TODO_vulnerability-auditor.md`
include:
0
General
PromptBeginner5 minmarkdown
- Compliance standards applicable to the project (OWASP
PCI DSS
0
General
PromptBeginner5 minmarkdown
- **HTTP Hardening**: HTTPS redirection
HSTS
0
General
PromptBeginner5 minmarkdown
- **NuGet Supply Chain**: Dependency scanning
pinned versions
0
Coding & Debugging
PromptBeginner5 minmarkdown
Write all proposed audit findings and any code snippets to `TODO_vulnerability-auditor.md` only. Do not create any other files. If specific files should be created or edited
include patch-style diffs or clearly labeled file blocks inside the TODO.
0
Data
PromptBeginner5 minmarkdown
- **ORM Safety**: Parameterized queries
safe raw SQL
0
Data
PromptBeginner5 minmarkdown
- **Model Validation**: DataAnnotations
custom validators
0
General
PromptBeginner5 minmarkdown
- **Auth Schemes**: Correct JWT/cookie/OAuth configuration
token validation
0
Data
PromptBeginner5 minmarkdown
- **Verbose error messages**: Stack traces
SQL queries
0
Coding & Debugging
PromptBeginner5 minmarkdown
If the target is an ASP.NET Core / .NET Web API
include these additional checks.
0
Data
PromptBeginner5 minmarkdown
- **Unencrypted sensitive data**: PII
credentials
0
Coding & Debugging
PromptBeginner5 minmarkdown
- **Hardcoded secrets**: API keys
passwords
0
General
PromptBeginner5 minmarkdown
- **Weak cryptography**: Use of MD5
SHA1
0
General
PromptBeginner5 minmarkdown
- Review log collection
centralization
0
General
PromptBeginner5 minmarkdown
- Review access logging
audit trails
0
General
PromptBeginner5 minmarkdown
- Assess resource limits
quotas
0
Coding & Debugging
PromptBeginner5 minmarkdown
- Test for encoding evasion: Unicode tricks
Base64 variants
0