Explore

Find agent skills by outcome

83,068 skills indexed with the new KISS metadata standard.

Showing 24 of 83,068Categories: Productivity, Coding & Debugging, General, Communication, Data

Coding & Debugging

PromptBeginner5 minmarkdown

- Configure `SECRET_KEY` via environment variables

never hardcoded in settings.

Mar 20, 2026

General

PromptBeginner5 minmarkdown

- Evaluate transitive dependencies

not just direct imports.

Mar 20, 2026

Coding & Debugging

PromptBeginner5 minmarkdown

- Apply context-aware output encoding for HTML

JavaScript

Mar 20, 2026

General

PromptBeginner5 minmarkdown

- Run `npm audit`

`yarn audit`

Mar 20, 2026

Coding & Debugging

PromptBeginner5 minmarkdown

- Provide actionable remediation with specific code fixes

not vague recommendations.

Mar 20, 2026

Coding & Debugging

PromptBeginner5 minmarkdown

- [ ] No secrets

API keys

Mar 20, 2026

General

PromptBeginner5 minmarkdown

- [ ] Encryption standards meet minimum requirements (AES-256

TLS 1.2+).

Mar 20, 2026

General

PromptBeginner5 minmarkdown

After completing an audit

verify:

Mar 20, 2026

Data

PromptBeginner5 minmarkdown

- Missing data masking in logs

error messages

Mar 20, 2026

General

PromptBeginner5 minmarkdown

- Review network segmentation

HTTPS enforcement

Mar 20, 2026

General

PromptBeginner5 minmarkdown

- Cross-site scripting (XSS) in reflected

stored

Mar 20, 2026

General

PromptBeginner5 minmarkdown

- Weak password hashing algorithms (MD5

SHA1 are never acceptable).

Mar 20, 2026

General

PromptBeginner5 minmarkdown

- Check security headers (CSP

X-Frame-Options

Mar 20, 2026

Data

PromptBeginner5 minmarkdown

- Validate that sensitive data never appears in logs

error messages

Mar 20, 2026

Data

PromptBeginner5 minmarkdown

- Assess PII handling for data minimization

retention policies

Mar 20, 2026

General

PromptBeginner5 minmarkdown

- Evaluate password policies for complexity requirements and hashing (bcrypt

scrypt

Mar 20, 2026

Coding & Debugging

PromptBeginner5 minmarkdown

- Verify credential storage never includes plaintext secrets

API keys

Mar 20, 2026

General

PromptBeginner5 minmarkdown

- Review JWT implementation for weak signing algorithms

missing expiration

Mar 20, 2026

General

PromptBeginner5 minmarkdown

- Check for parameterized queries

context-aware encoding

Mar 20, 2026

Data

PromptBeginner5 minmarkdown

- Examine all user inputs for injection vectors: SQL

XSS

Mar 20, 2026

General

PromptBeginner5 minmarkdown

- Recommend concrete remediation steps with severity ratings

proof of concept

Mar 20, 2026

Data

PromptBeginner5 minmarkdown

- Assess data protection strategies including encryption at rest

TLS in transit

Mar 20, 2026

Data

PromptBeginner5 minmarkdown

- Trace data flows from user input through processing to output

identifying trust boundaries and validation gaps.

Mar 20, 2026

General

PromptBeginner5 minmarkdown

- Review authentication and authorization mechanisms for weaknesses in JWT

session

Mar 20, 2026

Find agent skills by outcome

- Configure `SECRET_KEY` via environment variables

- Evaluate transitive dependencies

- Apply context-aware output encoding for HTML

- Run `npm audit`

- Provide actionable remediation with specific code fixes

- [ ] No secrets

- [ ] Encryption standards meet minimum requirements (AES-256

After completing an audit

- Missing data masking in logs

- Review network segmentation

- Cross-site scripting (XSS) in reflected

- Weak password hashing algorithms (MD5

- Check security headers (CSP

- Validate that sensitive data never appears in logs

- Assess PII handling for data minimization

- Evaluate password policies for complexity requirements and hashing (bcrypt

- Verify credential storage never includes plaintext secrets

- Review JWT implementation for weak signing algorithms

- Check for parameterized queries

- Examine all user inputs for injection vectors: SQL

- **Recommend** concrete remediation steps with severity ratings

- **Assess** data protection strategies including encryption at rest

- **Trace** data flows from user input through processing to output

- **Review** authentication and authorization mechanisms for weaknesses in JWT

- Recommend concrete remediation steps with severity ratings

- Assess data protection strategies including encryption at rest

- Trace data flows from user input through processing to output

- Review authentication and authorization mechanisms for weaknesses in JWT