全部能力

Identifies missing tests for unique critical local logic: money, auth, permissions, data integrity, algorithms, and domain rules. Use when auditing critical…

Checks hardcoded secrets, SQL injection, XSS, insecure deps, input validation. Use when auditing security.

Environment Triage

Set up bundle IDs, capabilities, signing certificates, provisioning profiles, and encrypted signing sync with the asc cli. Use when onboarding a new app,…

Distribute content globally using CloudFront with caching, security headers, WAF integration, and origin configuration. Use for low-latency content delivery.

Scans codebase for hardcoded secrets with severity classification and remediation guidance. Use when auditing a project for leaked credentials.

Execute comprehensive SQL injection vulnerability assessments on web applications to identify database security flaws, demonstrate exploitation techniques, and…

Performs comprehensive C/C++ security review for memory corruption, integer overflows, race conditions, and platform-specific vulnerabilities. Use when…

Checks outdated packages, unused deps, reinvented wheels, CVE/CVSS vulnerability scan. Use when auditing dependencies.

Prepare meeting materials with Notion context and Codex research; use when gathering context, drafting agendas/pre-reads, and tailoring materials to attendees.

Gmail integration. Manage communication data, records, and workflows. Use when the user wants to interact with Gmail data.

Guidelines for implementing Auth0 authentication with best practices for security, rules, actions, and SDK integration

Expert guidelines for Solana program development with Rust, Anchor framework, and Web3.js integration

Sets up security scanning for secrets and dependency vulnerabilities. Use when adding security infrastructure to a project.

Analyzes content for E-E-A-T signals and suggests improvements to

Reconcile App Store Connect subscriptions and in-app purchases with RevenueCat products, entitlements, offerings, and packages using asc and RevenueCat MCP.…

Audits physical architecture structure: modules, domains, layer layout, junk drawers, and framework placement. Use for structure drift.

Google Sheets integration. Manage analytics data, records, and workflows. Use when the user wants to interact with Google Sheets data.

Builds dependency graph, detects cycles, validates boundary rules, calculates coupling metrics (Ca/Ce/I). Use when auditing dependency structure.

Build with Firebase Cloud Storage - file uploads, downloads, and secure access. Use when: uploading images/files, generating download URLs, implementing file pickers, setting up storage security rules, or troubleshooting storage/unauthorized, cors errors, quota exceeded, or upload failed errors. Prevents 9 documented errors.