Agent-Skills.md
Back to tags
Tag

Agent Skills with tag: vulnerability-scanning

36 skills match this tag. Use tags to discover related Agent Skills and explore similar workflows.

Vulnerability Triage & Prioritization

Assess vulnerability severity using CVSS scoring, classify vulnerability types (CVE vs compliance), detect false positives, and prioritize remediation workflows. Use when analyzing vulnerability data, calculating risk scores, or determining remediation priority.

vulnerability-scanningCVSSrisk-assessmentprioritization
randalmurphal
randalmurphal
0

security-auditor

Continuous security vulnerability scanning for OWASP Top 10, common vulnerabilities, and insecure patterns. Use when reviewing code, before deployments, or on file changes. Scans for SQL injection, XSS, secrets exposure, auth issues. Triggers on file changes, security mentions, deployment prep.

vulnerability-scanningOWASPsql-injectionXSS
ovachiever
ovachiever
81

dependency-auditor

Check dependencies for known vulnerabilities using npm audit, pip-audit, etc. Use when package.json or requirements.txt changes, or before deployments. Alerts on vulnerable dependencies. Triggers on dependency file changes, deployment prep, security mentions.

dependency-managementvulnerability-scanningnpmpip
ovachiever
ovachiever
81

defectdojo

Guide for implementing DefectDojo - an open-source DevSecOps, ASPM, and vulnerability management platform. Use when querying vulnerabilities, managing findings, configuring CI/CD pipeline imports, or working with security scan data. Includes MCP tools for direct API interaction.

devsecopsvulnerability-scanningapi-integrationci-cd
julianobarbosa
julianobarbosa
0

dependency-track-skill

Comprehensive guide for Dependency-Track - Software Composition Analysis (SCA) and SBOM management platform. USE WHEN deploying Dependency-Track, integrating with CI/CD pipelines, configuring vulnerability scanning, managing SBOMs, setting up policy compliance, troubleshooting installation issues, or working with the REST API.

sbomdependency-managementvulnerability-scanningpolicy-management
julianobarbosa
julianobarbosa
0

dependency-supply-chain-security

Manage dependencies and supply chain security to prevent vulnerable or malicious packages. Use this skill when you need to audit dependencies, update packages, check for vulnerabilities, understand supply chain attacks, or maintain dependency security. Triggers include "dependencies", "npm audit", "supply chain", "package security", "vulnerability", "npm update", "security audit", "outdated packages".

dependency-managementsupply-chain-securityvulnerability-scanningnpm
harperaa
harperaa
1

security

Production-grade security testing skill with OWASP Top 10, vulnerability scanning, penetration testing guidance, and compliance validation

OWASPvulnerability-scanningpenetration-testingcompliance-validation
pluginagentmarketplace
pluginagentmarketplace
1

security-auditor

Activates when user needs security review, vulnerability scanning, or secure coding guidance. Triggers on "security review", "find vulnerabilities", "is this secure", "check for injection", "security audit", "OWASP", "secure this code", or security-related questions.

vulnerability-scanningsecurity-auditsecure-codingOWASP
always-further
always-further
1

vulnerability-discovery

Systematic vulnerability finding, threat modeling, and attack surface analysis for AI/LLM security assessments

vulnerability-scanningthreat-modelingattack-surface-mappingAI-security
pluginagentmarketplace
pluginagentmarketplace
1

audit-security

Security-focused audit that can run in background during implementation. Checks for vulnerabilities, auth issues, data exposure. Injects P0 findings to main agent.

vulnerability-scanningbackground-processauthdata-exposure
ferdiangunawan
ferdiangunawan
2

audit-security

Security-focused audit that can run in background during implementation. Checks for vulnerabilities, auth issues, data exposure. Injects P0 findings to main agent.

vulnerability-scanningsecurity-assessmentautomated-security-testingaccess-control
ferdiangunawan
ferdiangunawan
2

security

DevSecOps practices including secrets management, SSL/TLS, vulnerability scanning, and compliance

devopscredentials-managementvulnerability-scanningssl-tls
pluginagentmarketplace
pluginagentmarketplace
2

Docker Configuration Validator

Comprehensive Docker and Docker Compose validation following best practices and security standards. Use this skill when users ask to validate Dockerfiles, review Docker configurations, check Docker Compose files, verify multi-stage builds, audit Docker security, or ensure compliance with Docker best practices. Validates syntax, security, multi-stage builds, and modern Docker Compose requirements.

dockercontainer-orchestrationstatic-analysisbest-practices
rknall
rknall
92

owasp-mobile-security-checker

Analyze Flutter and mobile applications for OWASP Mobile Top 10 (2024) security compliance. Use this skill when performing security audits, vulnerability assessments, or compliance checks on mobile applications. Performs automated scans for hardcoded secrets, insecure storage, weak cryptography, network security issues, and provides detailed remediation guidance.

security-scanningvulnerability-scanningmobile-securityOWASP
Harishwarrior
Harishwarrior
72

security-scanner

Comprehensive security scanning for SAST, secrets, OWASP vulnerabilities, container and IaC security

static-analysisvulnerability-scanningOWASPinfrastructure-as-code
benreceveur
benreceveur
31

container-validator

Dockerfile best practices, Kubernetes manifest validation, container security

best-practicesdockerfilekubernetesinfrastructure-as-code
benreceveur
benreceveur
31

harbor-expert

Expert Harbor container registry administrator specializing in registry operations, vulnerability scanning with Trivy, artifact signing with Notary, RBAC, and multi-region replication. Use when managing container registries, implementing security policies, configuring image scanning, or setting up disaster recovery.

container-registryharborvulnerability-scanningrole-based-access-control
martinholovsky
martinholovsky
92

codex-code-review

Perform comprehensive code reviews using OpenAI Codex CLI. This skill should be used when users request code reviews, want to analyze diffs/PRs, need security audits, performance analysis, or want automated code quality feedback. Supports reviewing staged changes, specific files, entire directories, or git diffs.

code-reviewstatic-analysiscode-qualityperformance-optimization
tyrchen
tyrchen
153

Page 1 of 2 · 36 results