Search Results: owasp

Found 242 Skills

Security & Compliancevchirrav/owasp-secure-cod...

sast-eslint-security

Run ESLint with security plugins on JavaScript/TypeScript code. Detects eval usage, non-literal RegExp, prototype pollution, and other JS/TS security anti-patterns.

🇺🇸|EnglishTranslated

Security & Compliancevchirrav/owasp-secure-cod...

network-scan-nmap

Run Nmap for network discovery and security auditing. Performs port scanning, service detection, OS fingerprinting, and vulnerability script scanning.

🇺🇸|EnglishTranslated

Security & Compliancevchirrav/owasp-secure-cod...

container-scan-dockle

Run Dockle to audit container images against CIS Docker Benchmark and best practices. Checks for running as root, sensitive files, HEALTHCHECK, and more.

🇺🇸|EnglishTranslated

Security & Compliancevchirrav/owasp-secure-cod...

license-scan-scancode

Run ScanCode Toolkit for comprehensive license and copyright detection. Identifies license types, copyright holders, and compliance obligations across codebases.

🇺🇸|EnglishTranslated

Security & Compliancevchirrav/owasp-secure-cod...

container-scan-trivy

Run Trivy to scan container images for OS and library vulnerabilities, misconfigurations, and secrets. Comprehensive multi-target security scanner.

🇺🇸|EnglishTranslated

Security & Compliancevchirrav/owasp-secure-cod...

mobile-security-mobsf

Run MobSF (Mobile Security Framework) for automated static and dynamic analysis of Android and iOS apps. Detects insecure storage, weak crypto, hardcoded secrets, and permission issues.

🇺🇸|EnglishTranslated

Security & Compliancevchirrav/owasp-secure-cod...

malware-scan-yara

Run YARA rules for pattern-based malware identification. Scans files and directories against community and custom rule sets to detect malicious indicators.

🇺🇸|EnglishTranslated

Backend Developmentmrgoonie/claudekit-skills

backend-development

Build robust backend systems with modern technologies (Node.js, Python, Go, Rust), frameworks (NestJS, FastAPI, Django), databases (PostgreSQL, MongoDB, Redis), APIs (REST, GraphQL, gRPC), authentication (OAuth 2.1, JWT), testing strategies, security best practices (OWASP Top 10), performance optimization, scalability patterns (microservices, caching, sharding), DevOps practices (Docker, Kubernetes, CI/CD), and monitoring. Use when designing APIs, implementing authentication, optimizing database queries, setting up CI/CD pipelines, handling security vulnerabilities, building microservices, or developing production-ready backend systems.

🇺🇸|EnglishTranslated

Security & Compliancevercel-labs/vercel-plugin

vercel-firewall

Vercel Firewall and security expert guidance. Use when configuring DDoS protection, WAF rules, rate limiting, bot filtering, IP allow/block lists, OWASP rulesets, Attack Challenge Mode, or any security configuration on the Vercel platform.

🇺🇸|EnglishTranslated

Backend Developmentsamhvw8/dotfiles

backend-development

Production backend systems development. Stack: Node.js/TypeScript, Python, Go, Rust | NestJS, FastAPI, Django, Express | PostgreSQL, MongoDB, Redis. Capabilities: REST/GraphQL/gRPC APIs, OAuth 2.1/JWT auth, OWASP security, microservices, caching, load balancing, Docker/K8s deployment. Actions: design, build, implement, secure, optimize, deploy, test APIs and services. Keywords: API design, REST, GraphQL, gRPC, authentication, OAuth, JWT, RBAC, database, PostgreSQL, MongoDB, Redis, caching, microservices, Docker, Kubernetes, CI/CD, OWASP, security, performance, scalability, NestJS, FastAPI, Express, middleware, rate limiting. Use when: designing APIs, implementing auth/authz, optimizing queries, building microservices, securing endpoints, deploying containers, setting up CI/CD.

🇺🇸|EnglishTranslated

Code Qualitywomendefiningai/claude-co...

code-reviewer

Research-backed code review skill with OWASP Top 10 security checks, SAST tool integration (SonarQube, CodeQL, Snyk), performance pattern detection, and automated quality standards enforcement. Auto-invoked for code review, security audit, PR analysis, and bug checking. Implements 2025 best practices with 92% faster vulnerability remediation.

🇺🇸|EnglishTranslated

2 scripts/Attention

Backend Developmentmartinholovsky/claude-ski...

fastapi-expert

Expert FastAPI developer specializing in production-ready async REST APIs with Pydantic v2, SQLAlchemy 2.0, OAuth2/JWT authentication, and comprehensive security. Deep expertise in dependency injection, background tasks, async database operations, input validation, and OWASP security best practices. Use when building high-performance Python web APIs, implementing authentication systems, or securing API endpoints.

🇺🇸|EnglishTranslated