Tag: vulnerability
Security review for authentication code
This skill reviews authentication code to identify common security vulnerabilities, such as weak password hashing (e.g., SHA-1/MD5) or unsafe direct comparisons of secrets and tokens. It ensures that reported issues strictly match the user'…
Security review for authentication code
This skill reviews authentication code to identify common security vulnerabilities, such as the use of weak password hashing algorithms like SHA-1 or MD5. It provides a focused report, limiting output to a single actionable security issue.
Security review for authentication code
This skill reviews authentication code to identify common security vulnerabilities, such as weak password hashing (SHA-1/MD5) and insecure secret/token comparisons. It ensures reported issues strictly adhere to the user-defined scope.
Security review for authentication code
This skill reviews authentication code to identify potential security vulnerabilities. It specifically checks for weak password hashing algorithms, such as SHA-1 or MD5, and is constrained to reporting a maximum of one issue.
Comprehensive security code vulnerability review checklist
Provides a comprehensive, structured checklist for identifying common security vulnerabilities, covering areas such as injection flaws, authorization bypasses, and exposed credentials. It guides developers through best practices for secure …
Security Advisory Triage and Review
This skill guides the rigorous triage of security advisories and GHSA reports by verifying shipped behavior, checking against established trust models, and drafting precise, evidence-backed maintainer comments for closure or further investi…