General
PromptBeginner5 minmarkdownQuality: 24
- Verify HTTPS enforcement
HSTS
0
Explore
Find agent skills by outcome
121,857 skills indexed with the new KISS metadata standard.
Showing 24 of 121,857Categories: General, Openclaw, Data
General
PromptBeginner5 minmarkdownQuality: 24
If the target system includes LLM agents
prompts
0
General
PromptBeginner5 minmarkdownQuality: 24
- Analyze security headers (CSP
X-Frame-Options
0
General
PromptBeginner5 minmarkdownQuality: 24
- Validate and restrict CORS origins to known
trusted domains only.
0
General
PromptBeginner5 minmarkdownQuality: 24
- Use bcrypt or argon2-cffi for password hashing
never hashlib directly.
0
General
PromptBeginner5 minmarkdownQuality: 24
- Validate and sanitize input with libraries like joi
zod
0
General
PromptBeginner5 minmarkdownQuality: 24
- Avoid eval()
Function()
0
General
PromptBeginner5 minmarkdownQuality: 24
- Evaluate transitive dependencies
not just direct imports.
0
General
PromptBeginner5 minmarkdownQuality: 24
- Run npm audit
yarn audit
0
General
PromptBeginner5 minmarkdownQuality: 24
- [ ] Encryption standards meet minimum requirements (AES-256
TLS 1.2+).
0
Data
PromptBeginner5 minmarkdownQuality: 24
- Missing data masking in logs
error messages
0
General
PromptBeginner5 minmarkdownQuality: 24
After completing an audit
verify:
0
General
PromptBeginner5 minmarkdownQuality: 24
- Weak password hashing algorithms (MD5
SHA1 are never acceptable).
0
General
PromptBeginner5 minmarkdownQuality: 24
- Cross-site scripting (XSS) in reflected
stored
0
General
PromptBeginner5 minmarkdownQuality: 24
- Review network segmentation
HTTPS enforcement
0
General
PromptBeginner5 minmarkdownQuality: 24
- Check security headers (CSP
X-Frame-Options
0
Data
PromptBeginner5 minmarkdownQuality: 24
- Validate that sensitive data never appears in logs
error messages
0
Data
PromptBeginner5 minmarkdownQuality: 24
- Assess PII handling for data minimization
retention policies
0
General
PromptBeginner5 minmarkdownQuality: 24
- Evaluate password policies for complexity requirements and hashing (bcrypt
scrypt
0
General
PromptBeginner5 minmarkdownQuality: 24
- Review JWT implementation for weak signing algorithms
missing expiration
0
General
PromptBeginner5 minmarkdownQuality: 24
- Recommend concrete remediation steps with severity ratings
proof of concept
0
General
PromptBeginner5 minmarkdownQuality: 24
- Check for parameterized queries
context-aware encoding
0
Data
PromptBeginner5 minmarkdownQuality: 24
- Examine all user inputs for injection vectors: SQL
XSS
0
Data
PromptBeginner5 minmarkdownQuality: 24
- Assess data protection strategies including encryption at rest
TLS in transit
0