Kandji Configuration Auditor
Security review of Kandji agent configurations, library items, and automation for compliance and safety
Ship agent workflows in 30 seconds. Browse 1,500+ expert-built and security scanned skills. Browse skills
THE AGENSI STORE
67 skills found
Security review of Kandji agent configurations, library items, and automation for compliance and safety
Catch App Store and Google Play rejection causes before you submit — privacy manifest, permissions, billing, target SDK, ATT
Deterministic AWS Databricks cost auditor that finds waste in compute, Delta tables, and PySpark code with ROI estimates.
Systematic audit for AI prompts to detect security flaws, bias, and cost-inefficiencies with auto-optimization.
Analyzes AI agents for performance, reliability, security, and optimization opportunities.
Find the unit tests that pass without testing anything. Flags tests with no assertions, trivial existence-only checks (toBeDefined, assertIsNotNone), tests that assert the exact value they just mocked, snapshot-only tests, tautological assertions (expect(true).toBe(true)), empty placeholders, and over-mocked tests with more setup than assertions. Works on Jest/Vitest and pytest/unittest.
Audit your dbt project for the test and documentation gaps that let bad data ship. Flags models with no unique or not_null tests, sources missing freshness config or tests, likely keys without a not_null test, models missing descriptions, SELECT * in models, and raw table references that should use ref() or source(). Each finding comes with a suggested tests: YAML snippet to drop into schema.yml.
Audit your frontend build against a performance budget and catch size regressions before you ship. Flags total bundle over budget, initial bundle over budget, individual chunks over a threshold, oversized image assets, source maps shipped to production, and large unminified JavaScript. Reads a webpack or Vite-style stats.json plus a perf-budget.json you control.
Audit a JavaScript or TypeScript frontend for missing translations and hardcoded UI strings before you ship a new locale. Flags hardcoded JSX text and UI props (title, placeholder, aria-label, label, alt) not wrapped in t(), i18n.t(), or <Trans>; keys present in the default locale but missing from other locale files; keys referenced in code but absent from the locales (the raw dotted keys that leak to users); unused locale keys; and unparseable locale JSON.
A structured WCAG 2.1 AA audit and fix agent for WordPress themes, organized by block theme, Gutenberg, forms, and navigation context, with scored findings and complete before-to-after code patches.
Audit Snowflake config and SQL against 2026 pricing to find waste and generate instant-fix ALTER statements.
Audit the decoded text a QR code carries before you print it on something. Flags URLs that are not absolute, link shorteners that hide the real destination, unsafe schemes (javascript:, data:, file:), payloads too long to scan reliably, malformed Wi-Fi or contact payloads, and exposed credentials like a Wi-Fi password or a token sitting in a URL. It audits the decoded payload you paste; it does not read images.
Expert accessibility auditing that prioritizes user impact and provides production-ready code fixes for WCAG compliance.
WCAG 2.1 AA auditor with auto-fixing and Dutch accessibility statement generation for EAA compliance.
Senior-level Python code auditor for PEP 8, type safety, security vulnerabilities, and 3.10+ modernizations.
A senior WordPress security auditor that reasons about WP-API taint flow — not regex hits — to find the 8 real plugin/theme vulnerability classes a generic scanner misses, and returns scored findings with ready-to-merge before→after patches.
Inventory every LLM model and provider your code depends on, the AI bill of materials, and flag the dependency risk. It lists each provider, model, and where it's used, then flags hardcoded model ids, single-provider dependency with no alternative, the same model referenced by different ids, model ids with no config or env indirection, and providers pinned in your manifests. Recognizes OpenAI, Anthropic, Google Gemini, and more from an editable list.
Professional Go code auditor for performance optimization, concurrency safety, and modern 1.21+ idioms.
Evaluate third-party agent skills for command injection, prompt injection, and data exfiltration before installation.
Detect and fix reverse-engineering risks in your prompt and digital product listings.
Expert Java code auditor for SE 8–24, flagging performance leaks, threading risks, and modernization gaps.
Audit and de-conflict complex agent instruction stacks to fix inconsistent behavior and logic bloat.
High-precision test gap analysis that prioritizes untested code by risk and identifies missing edge cases.
Comprehensive security auditing for AI agents, covering prompt injection, tool permissions, and data leakage risks.