Loading...
Loading...
Found 19 Skills
Recognize and warn about illegal antivirus cracks, keygens, and malware distribution repositories
WARNING - This repository distributes malware disguised as Avast Premium Security cracks and keygens
Warning system for identifying potentially malicious software distribution repositories
Apiiro CLI commands for querying the Guardian AI agent: ask security questions, get analysis and insights about a repository, and manage repository detection. Use this skill whenever the user wants AI-powered security analysis, security posture review, or wants to ask questions about their codebase's security. Also trigger when they need deep analysis of authentication flows, attack surfaces, or want an AI to explain security concepts. Even without mentioning "apiiro" or "guardian", trigger when the user asks things like "is this code secure?", "what's the attack surface here?", or "explain this vulnerability". For dedicated STRIDE threat modeling of a design or feature spec, use the apiiro-threat-model skill instead. For fixing a known risk, use apiiro-fix.
Check for sensitive data in repository. Use when user asks to "check for sensitive data", "/safe-repo", or wants to verify no company/credential data is in the repository.
Analyze and understand Avast Premium Security software distribution repositories for security research and threat intelligence
Identify and analyze potentially malicious software distribution repositories masquerading as legitimate security software
Identify and analyze potentially malicious software distribution repositories disguised as legitimate security software
Repository-grounded threat modeling that enumerates trust boundaries, assets, attacker capabilities, abuse paths, and mitigations, and writes a concise Markdown threat model. Use when the user asks to threat model a codebase or path, enumerate threats or abuse paths, or perform AppSec threat modeling. Do NOT use for general architecture summaries, code review, security best practices (use security-best-practices), or non-security design work.
Repository-grounded threat modeling that enumerates trust boundaries, assets, attacker capabilities, abuse paths, and mitigations, and writes a concise Markdown threat model. Trigger only when the user explicitly asks to threat model a codebase or path, enumerate threats/abuse paths, or perform AppSec threat modeling. Do not trigger for general architecture summaries, code review, or non-security design work.
Recognize and avoid malicious software distribution repositories disguised as legitimate security tools
Identify, analyze, and report malicious software distribution repositories masquerading as legitimate security tools