Security

23,029 skills

Ask AI

23,029 skills

Skill Vetter

Security-first skill vetting protocol for AI agents. Use before installing any skill from the platform skill market, skillhub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns to determine whether a skill is safe to install.

dtyq4.8k

Security

Insecure Defaults

Detects fail-open insecure defaults (hardcoded secrets, weak auth, permissive security) that allow apps to run insecurely in production. Use when auditing security, reviewing config management, or analyzing environment variable handling.

trailofbits4.7k

Security

When to Use

Implements input and output validation guardrails for LLM-powered applications to prevent prompt injection, data leakage, toxic content generation, and hallucinated outputs. Builds a security validation pipeline using NVIDIA NeMo Guardrails Colang definitions, custom Python validators for PII detection and content policy enforcement, and the Guardrails AI framework for structured output validation. The guardrails system intercepts both user inputs (blocking injection attempts, stripping PII, enforcing topic boundaries) and model outputs (detecting hallucinations, filtering toxic content, validating JSON schema compliance). Activates for requests involving LLM output validation, AI content filtering, guardrail implementation, or LLM safety enforcement.

mukul9754.5k

Security

When to Use

Implements immutable backup strategy using restic with S3-compatible storage and object lock for ransomware-resistant data protection. Automates backup creation, integrity verification via restic check --read-data, snapshot retention policy enforcement, and restore testing. Integrates with AWS S3 Object Lock, MinIO, and Backblaze B2 for WORM (Write Once Read Many) storage that prevents backup deletion or encryption by ransomware actors.

mukul9754.5k

Security

Configuring Identity Aware Proxy With Google Iap

Configuring Google Cloud Identity-Aware Proxy (IAP) to enforce per-request identity verification for Compute Engine, App Engine, Cloud Run, and GKE services using access levels, context-aware policies, and programmatic access with service accounts.

mukul9754.5k

Security

Skill Vetter

Insecure Defaults

When to Use

When to Use

Configuring Identity Aware Proxy With Google Iap

Security

Skill Vetter

Insecure Defaults

When to Use

When to Use

Configuring Identity Aware Proxy With Google Iap

Detecting Cloud Threats With Guardduty

Implementing Api Security Testing With 42crunch

Implementing Dragos Platform For Ot Monitoring

Implementing Identity Verification For Zero Trust

Implementing Zero Trust For Saas Applications

Performing Log Source Onboarding In Siem

Performing Ransomware Response

Performing Serverless Function Security Review

Overview

When to Use

Auditing Aws S3 Bucket Permissions

Building Identity Federation With Saml Azure Ad

When to Use

Configuring Multi Factor Authentication With Duo

Deploying Palo Alto Prisma Access Zero Trust

Detecting Aws Guardduty Findings Automation

Detecting Broken Object Property Level Authorization

When to Use

Exploiting Insecure Deserialization

When to Use

Implementing Google Workspace Sso Configuration

Implementing Mimecast Targeted Attack Protection

Implementing Passwordless Auth with Microsoft Entra

Implementing Scim Provisioning With Okta

Implementing Rapid7 Insightvm For Scanning