Ship agent workflows in 30 seconds. Browse 2,000+ expert-built and security scanned skill -> Browse skills

    Browse The Skill Store

    209 skills found

    ZeroDay Scanner

    by Mowei

    $20

    Read-only Windows scan for supply-chain worms and AI-assistant persistence that antivirus misses — with wiper-safe cleanup.

    2

    dependency auditor

    by Samuel Rose

    $5

    Audit dependencies for security, licenses, and health while generating a phased, low-risk upgrade and migration plan.

    1

    Claude Code Security Hooks

    by Shogun Labs

    $15

    Pre-commit security hooks: secret detection, destructive command prevention

    1

    Claude Code Agent Harness Setup

    by Shogun Labs

    $15

    Project-specific Claude Code agent harness setup

    1

    MCP Server Safety Checklist

    by karim hammoumi

    $15

    Automated security auditing and risk assessment for Model Context Protocol (MCP) servers.

    1

    apt group mitre navigator analysis

    by LocoLoboZ

    $10

    Transform APT threat intelligence into MITRE ATT&CK Navigator layers and prioritized detection gap analyses.

    1

    anti phishing training program

    by LocoLoboZ

    $10

    Design, govern, and report on enterprise-grade anti-phishing training programs and simulation metrics.

    1

    incident lessons learned review

    by LocoLoboZ

    $10

    Convert cyber incident evidence into blameless post-mortem reports, root cause analyses, and action trackers.

    1

    privacy impact assessment guide

    by LocoLoboZ

    $10

    Generate audit-ready privacy impact assessments, risk registers, and data flow maps for regulatory compliance.

    1

    security incident triage

    by LocoLoboZ

    $10

    Professional security incident triage for SOC teams to classify alerts, assess severity, and draft response plans.

    1

    PrivacyShield

    by Martin Gunderman

    $19

    Protect sensitive data before it reaches an AI model and automatically restore it in the final response.

    1

    🛡️ Supabase RLS Doctor

    by JustHandled Labs

    $19

    Audit your Supabase project for the row-level-security mistakes that quietly expose data: tables without RLS, policies that resolve to true, leaked service-role keys, missing auth.uid() checks, open storage buckets, overbroad grants, and migration drift. A local, read-only scan plus a full review checklist, each finding with severity, evidence, and a fix. No database changes without confirmation.

    1

    GDPR Compliance Scanner for Marketing and Code

    by Martin Gunderman

    $15

    Automatically detect GDPR compliance risks in websites, codebases, marketing assets, and AI workflows.

    1

    incident response playbook builder

    by LocoLoboZ

    $10

    Build, review, and automate structured incident response playbooks for enterprise security operations.

    1

    🛡️ Skill Injection Scanner

    by JustHandled Labs

    $15

    Scan a SKILL.md package for prompt injection and secret exfiltration before you install or publish an agent skill. Flags env-variable-to-URL exfiltration wording, conditional triggers with hidden side effects, imperative instructions buried in HTML comments, zero-width characters, base64 and long-token blobs, remote content treated as instructions, pipe-to-shell and recursive force-delete references, and overbroad tool requests (network plus browser plus file-write with no scope).

    1

    nex dark pattern detector ext

    by Nex AI

    $5

    A complete Manifest V3 Chrome extension to detect and highlight manipulative UI dark patterns on any website.

    1

    Coding Agent Quality Gate

    by PubsProToolkit

    $24

    An adversarial senior engineer review gate that audits AI-written code for security gaps and logic errors before shipping.

    1

    Fact Check & Compliance Gate

    by PubsProToolkit

    $19

    A pre-publish audit gate to extract claims, verify facts, and flag compliance risks in public-facing content.

    1

    🛡️ GitHub Actions Permission Hardener

    by JustHandled Labs

    $19

    Audit and harden GitHub Actions workflows against overbroad permissions, secrets exposure, and supply-chain risks.

    1

    🛡️OpenAPI Contract Guard

    by JustHandled Labs

    $12

    Lint an OpenAPI spec and diff two versions to catch breaking API changes before they reach consumers. Within a spec it flags missing operationId, success responses with no schema, untyped parameters, operations with no security requirement, and unbounded arrays/strings. Across two versions it flags removed paths and operations, removed response codes, a parameter becoming required, narrowed parameter types, removed enum values, and removed response fields. Analyzes JSON specs (convert YAML to JSON first).

    1

    Cloud & Infrastructure Config Security Gate

    by PubsProToolkit

    $34

    An adversarial gate that audits cloud and infrastructure-as-code config — Terraform, Kubernetes, IAM, security groups, buckets — for the misconfigurations that cause real breaches, and returns a structured PASS/REVISE/BLOCK verdict with severities and exact fixes before anything reaches your environment.

    1

    🔐 Email Auth Deliverability Doctor

    by JustHandled Labs

    $12

    Audit your SPF, DKIM, and DMARC records for the misconfigurations that get mail rejected or sent to spam. Flags a missing DMARC record or p=none, missing rua reporting, a missing or duplicated SPF record, SPF over the 10-lookup limit, permissive +all/?all, a missing DKIM selector, and SPF/DKIM domain-alignment mismatches. Paste a DNS zone file or dig/nslookup output.

    1

    🛡️ Helm Chart Security Doctor

    by JustHandled Labs

    $13

    Audit a Helm chart for insecure defaults before you deploy to Kubernetes. Flags privileged containers, allowPrivilegeEscalation, missing CPU/memory limits and requests, hostPath volumes, hostNetwork/hostPID/hostIPC sharing, readOnlyRootFilesystem not set, runAsNonRoot not enforced (or runAsUser 0), plaintext secrets in values.yaml, missing NetworkPolicy, and NodePort/LoadBalancer services exposed without restriction.

    1

    AI Paper Mill & Research Integrity Screener

    by PubsProToolkit

    $12

    First-pass screener that flags AI-generated, paper-mill, and fabricated scholarship using tortured-phrase, citation, statistical, and template detectors.

    1