General
PromptBeginner5 minmarkdown
- Compliance standards applicable to the project (OWASP
PCI DSS
0
Explore
Find agent skills by outcome
93,310 skills indexed with the new KISS metadata standard.
Showing 24 of 93,310Categories: General, Data, Coding & Debugging, Communication
General
PromptBeginner5 minmarkdown
- **Priority**: Critical
high
0
Data
PromptBeginner5 minmarkdown
- **Impact**: Business impact
data exposure risk
0
General
PromptBeginner5 minmarkdown
- The scope of the audit (full application
specific module
0
General
PromptBeginner5 minmarkdown
In `TODO_vulnerability-auditor.md`
include:
0
Coding & Debugging
PromptBeginner5 minmarkdown
Write all proposed audit findings and any code snippets to `TODO_vulnerability-auditor.md` only. Do not create any other files. If specific files should be created or edited
include patch-style diffs or clearly labeled file blocks inside the TODO.
0
General
PromptBeginner5 minmarkdown
- **HTTP Hardening**: HTTPS redirection
HSTS
0
General
PromptBeginner5 minmarkdown
- **NuGet Supply Chain**: Dependency scanning
pinned versions
0
Data
PromptBeginner5 minmarkdown
- **ORM Safety**: Parameterized queries
safe raw SQL
0
Data
PromptBeginner5 minmarkdown
- **Model Validation**: DataAnnotations
custom validators
0
Coding & Debugging
PromptBeginner5 minmarkdown
If the target is an ASP.NET Core / .NET Web API
include these additional checks.
0
General
PromptBeginner5 minmarkdown
- **Auth Schemes**: Correct JWT/cookie/OAuth configuration
token validation
0
Data
PromptBeginner5 minmarkdown
- **Verbose error messages**: Stack traces
SQL queries
0
Data
PromptBeginner5 minmarkdown
- **Unencrypted sensitive data**: PII
credentials
0
General
PromptBeginner5 minmarkdown
- **Weak cryptography**: Use of MD5
SHA1
0
Coding & Debugging
PromptBeginner5 minmarkdown
- **Hardcoded secrets**: API keys
passwords
0
General
PromptBeginner5 minmarkdown
- Review log collection
centralization
0
General
PromptBeginner5 minmarkdown
- Review access logging
audit trails
0
Coding & Debugging
PromptBeginner5 minmarkdown
- Test for encoding evasion: Unicode tricks
Base64 variants
0
General
PromptBeginner5 minmarkdown
- Assess resource limits
quotas
0
Coding & Debugging
PromptBeginner5 minmarkdown
- Check for unsafe output rendering: script injection
executable code
0
General
PromptBeginner5 minmarkdown
- Audit for sensitive information leakage: secrets
credentials
0
General
PromptBeginner5 minmarkdown
- Analyze indirect injection channels: tool output
document-based
0
General
PromptBeginner5 minmarkdown
- Test for known jailbreak patterns
encoding-based bypass
0