Explore

Find agent skills by outcome

90,216 skills indexed with the new KISS metadata standard.

Showing 24 of 90,216Categories: General, Writing & Content, Data

General

PromptBeginner5 minmarkdown

- Compliance standards applicable to the project (OWASP

PCI DSS

Mar 21, 2026

General

PromptBeginner5 minmarkdown

- Priority: Critical

high

Mar 21, 2026

Data

PromptBeginner5 minmarkdown

- Impact: Business impact

data exposure risk

Mar 21, 2026

General

PromptBeginner5 minmarkdown

- The scope of the audit (full application

specific module

Mar 21, 2026

General

PromptBeginner5 minmarkdown

In `TODO_vulnerability-auditor.md`

include:

Mar 21, 2026

General

PromptBeginner5 minmarkdown

- HTTP Hardening: HTTPS redirection

HSTS

Mar 21, 2026

General

PromptBeginner5 minmarkdown

- NuGet Supply Chain: Dependency scanning

pinned versions

Mar 21, 2026

Data

PromptBeginner5 minmarkdown

- ORM Safety: Parameterized queries

safe raw SQL

Mar 21, 2026

Data

PromptBeginner5 minmarkdown

- Model Validation: DataAnnotations

custom validators

Mar 21, 2026

General

PromptBeginner5 minmarkdown

- Auth Schemes: Correct JWT/cookie/OAuth configuration

token validation

Mar 21, 2026

Data

PromptBeginner5 minmarkdown

- Verbose error messages: Stack traces

SQL queries

Mar 21, 2026

Data

PromptBeginner5 minmarkdown

- Unencrypted sensitive data: PII

credentials

Mar 21, 2026

General

PromptBeginner5 minmarkdown

- Weak cryptography: Use of MD5

SHA1

Mar 21, 2026

General

PromptBeginner5 minmarkdown

- Review log collection

centralization

Mar 21, 2026

General

PromptBeginner5 minmarkdown

- Review access logging

audit trails

Mar 21, 2026

General

PromptBeginner5 minmarkdown

- Assess resource limits

quotas

Mar 21, 2026

General

PromptBeginner5 minmarkdown

- Audit for sensitive information leakage: secrets

credentials

Mar 21, 2026

General

PromptBeginner5 minmarkdown

- Analyze indirect injection channels: tool output

document-based

Mar 21, 2026

General

PromptBeginner5 minmarkdown

- Test for known jailbreak patterns

encoding-based bypass

Mar 21, 2026

General

PromptBeginner5 minmarkdown

- Verify HTTPS enforcement

HSTS

Mar 21, 2026

General

PromptBeginner5 minmarkdown

- Analyze security headers (CSP

X-Frame-Options

Mar 21, 2026

General

PromptBeginner5 minmarkdown

If the target system includes LLM agents

prompts

Mar 21, 2026

General

PromptBeginner5 minmarkdown

- Validate and restrict CORS origins to known

trusted domains only.

Mar 21, 2026

General

PromptBeginner5 minmarkdown

- Use `bcrypt` or `argon2-cffi` for password hashing

never `hashlib` directly.

Mar 21, 2026

Find agent skills by outcome

- Compliance standards applicable to the project (OWASP

- **Priority**: Critical

- **Impact**: Business impact

- The scope of the audit (full application

In `TODO_vulnerability-auditor.md`

- **HTTP Hardening**: HTTPS redirection

- **NuGet Supply Chain**: Dependency scanning

- **ORM Safety**: Parameterized queries

- **Model Validation**: DataAnnotations

- **Auth Schemes**: Correct JWT/cookie/OAuth configuration

- **Verbose error messages**: Stack traces

- **Unencrypted sensitive data**: PII

- **Weak cryptography**: Use of MD5

- Review log collection

- Review access logging

- Assess resource limits

- Audit for sensitive information leakage: secrets

- Analyze indirect injection channels: tool output

- Test for known jailbreak patterns

- Verify HTTPS enforcement

- Analyze security headers (CSP

If the target system includes LLM agents

- Validate and restrict CORS origins to known

- Use `bcrypt` or `argon2-cffi` for password hashing

- Priority: Critical

- Impact: Business impact

- HTTP Hardening: HTTPS redirection

- NuGet Supply Chain: Dependency scanning

- ORM Safety: Parameterized queries

- Model Validation: DataAnnotations

- Auth Schemes: Correct JWT/cookie/OAuth configuration

- Verbose error messages: Stack traces

- Unencrypted sensitive data: PII

- Weak cryptography: Use of MD5