linux audit
by SkillBill
Complete security audit for Linux systems and WSL2. Checks kernel CVEs, SSH, firewall, users, and more hardening in one shot.
Ship agent workflows in 30 seconds. Browse 2,000+ expert-built and security scanned skill -> Browse skills
THE AGENSI STORE
62 skills found
by SkillBill
Complete security audit for Linux systems and WSL2. Checks kernel CVEs, SSH, firewall, users, and more hardening in one shot.
Adversarially audit your agent hooks before you trust them. Catches command injection, secret leakage, over-broad matchers, destructive actions, and blocking-logic mistakes in pre/post-tool-use, prompt, and stop hooks — with a PASS or REVISE verdict and severity-ranked fixes.
by Shogun Labs
Pre-commit security hooks: secret detection, destructive command prevention
by Shogun Labs
Project-specific Claude Code agent harness setup
Automated security auditing and risk assessment for Model Context Protocol (MCP) servers.
by LocoLoboZ
Convert cyber incident evidence into blameless post-mortem reports, root cause analyses, and action trackers.
Protect sensitive data before it reaches an AI model and automatically restore it in the final response.
Scan a SKILL.md package for prompt injection and secret exfiltration before you install or publish an agent skill. Flags env-variable-to-URL exfiltration wording, conditional triggers with hidden side effects, imperative instructions buried in HTML comments, zero-width characters, base64 and long-token blobs, remote content treated as instructions, pipe-to-shell and recursive force-delete references, and overbroad tool requests (network plus browser plus file-write with no scope).
An adversarial senior engineer review gate that audits AI-written code for security gaps and logic errors before shipping.
A pre-publish audit gate to extract claims, verify facts, and flag compliance risks in public-facing content.
An adversarial gate that audits cloud and infrastructure-as-code config — Terraform, Kubernetes, IAM, security groups, buckets — for the misconfigurations that cause real breaches, and returns a structured PASS/REVISE/BLOCK verdict with severities and exact fixes before anything reaches your environment.
Audit a Helm chart for insecure defaults before you deploy to Kubernetes. Flags privileged containers, allowPrivilegeEscalation, missing CPU/memory limits and requests, hostPath volumes, hostNetwork/hostPID/hostIPC sharing, readOnlyRootFilesystem not set, runAsNonRoot not enforced (or runAsUser 0), plaintext secrets in values.yaml, missing NetworkPolicy, and NodePort/LoadBalancer services exposed without restriction.
First-pass screener that flags AI-generated, paper-mill, and fabricated scholarship using tortured-phrase, citation, statistical, and template detectors.
Flag the hidden and look-alike characters lurking in a handle or brand string. Catches zero-width characters, mixed-script look-alikes (a Cyrillic "а" passing as a Latin "a"), right-to-left and bidi override characters, unexpected non-ASCII, and stacked combining marks. These are the spoofing tricks and display bugs you cannot catch by reading.
Generate structured, audit-ready evidence logs documenting human review of AI-assisted work products.
Audit the decoded text a QR code carries before you print it on something. Flags URLs that are not absolute, link shorteners that hide the real destination, unsafe schemes (javascript:, data:, file:), payloads too long to scan reliably, malformed Wi-Fi or contact payloads, and exposed credentials like a Wi-Fi password or a token sitting in a URL. It audits the decoded payload you paste; it does not read images.
An adversarial security gate to detect and redact PII, secrets, and confidential data before sending prompts.
Transform fragile AI prototypes into resilient, enterprise-ready production agents with professional hardening tools.
An adversarial gate to verify AI-use disclosures and draft compliant provenance statements for any venue.
Auth is where one wrong early decision becomes a security incident with your name on it — JWTs chosen for sessions because a tutorial used them, refresh token rotation implemented wrong, RBAC bolted on after the fact
by Nex AI
Enterprise-grade WhatsApp Business Cloud API integration for Python with session window management and webhook security.
An adversarial reviewer for Dockerfiles and container builds. It flags root users, image bloat, unpinned or cache-busting layers, leaked secrets, and missing hardening, then returns a PASS / FIX / BLOCK verdict — before you build or push the image.
Audit your project's dependencies for supply-chain risk before they ship. Detects the ecosystem, runs the right vulnerability scanners against live advisory data, and adds the checks tooling misses — outdated or abandoned packages, typosquatted or suspicious names, risky install scripts, and license conflicts — then returns a prioritized fix list and a PASS / REVIEW / BLOCK verdict. It's npm audit with triage and judgment on top.
Scaffold or harden a production-grade GitHub Actions pipeline for WordPress — with a blocking lint gate that stops broken code before it deploys, and a fail notification that makes silent deployment failures impossible.