Find the perfect skill
Code Injection Detector
Security
Automated skill for detecting and preventing code injection vulnerabilities. Covers input validation, secure coding practices, and vulnerability detection following OWASP standards.
Semgrep Rule Creator
Security
Creates custom Semgrep rules for detecting security vulnerabilities, bug patterns, and code patterns. Includes test-first methodology, taint mode support, and validation steps. Helps when building targeted static analysis detections.
Orange Book Risk Register
Security
Create a comprehensive risk register following the UK Government Orange Book (2023) risk management framework. This skill helps enterprise architects identify, assess, and manage project risks with mandatory stakeholder ownership and integration with ArcKit's workflow. Use it after running stakeholder analysis to ensure every risk has an owner.
AI Situational Awareness
Security
Detects internal reasoning quality threats like hallucination risk, scope creep, and context degradation using adapted Cooper color codes and OODA loop decision-making. Helps maintain awareness during complex or unfamiliar tasks and before high-stakes outputs.
Secure Code Review Checklist
Security
Perform systematic security code reviews with automated checks for common vulnerability patterns.
Docker Security Auditor
Security
Audit Docker images and configurations for security issues, minimize attack surface, and implement best practices.
Security Headers Configurator
Security
Configure comprehensive security headers for web applications to prevent common attack vectors.
Security Auditor
Security
Expert security auditor specializing in DevSecOps, cybersecurity, and compliance frameworks. Performs vulnerability assessments, threat modeling, and secure authentication reviews. Ideal for security audits, DevSecOps integration, and compliance implementation.
Global Security
Security
Provides guidance on adhering to global security coding standards. Use this skill when working on files that involve system-wide security considerations.
Dependency Audit
Security
Analyzes project dependencies for known security vulnerabilities using npm audit, pip-audit, or similar tools across multiple package managers.
Security Tools and Frameworks Expertise
Security
Expert-level knowledge of cybersecurity tools, frameworks, and platforms including SIEM, vulnerability scanners, penetration testing tools, and security automation. Helps design comprehensive security architectures, select and optimize tools for specific threat landscapes, and build monitoring and incident response capabilities.
Data Protection Officer (DPO) Specialist
Security
Expert in GDPR, German BDSG, and ISO 27701 with expertise in data breach management, DPIA, and data subject rights. Smart integration with existing ISMS infrastructure.