搜索结果
全部能力
找到 143 个相关结果 / 数据库与 SQL
安全与治理 / 审核评估
secret-leak-detector
secret-leak-detector
Scans source code, configuration files, and git history for hardcoded credentials, API keys, and tokens. Use when auditing repositories for security leaks or…
安全与治理 / 审核评估
security-audit
security-audit
Scans code for security vulnerabilities including injection attacks, authentication flaws, exposed secrets, insecure dependencies, and data exposure. Use when…
安全与治理 / 审核评估
codex-gateway
codex-gateway
Use when the user wants to query the Codex Supergraph and the server returns a 402 challenge. Pays per query via the MPP 402 challenge flow. Only supports queries, not mutations or subscriptions.
安全与治理 / 审核评估
harbor-expert
harbor-expert
Expert Harbor container registry administrator specializing in registry operations, vulnerability scanning with Trivy, artifact signing with Notary, RBAC, and…
安全与治理 / 审核评估
input-validation-sanitization-auditor
input-validation-sanitization-auditor
Identifies and fixes XSS, SQL injection, and command injection vulnerabilities with validation schemas, sanitization libraries, and safe coding patterns. Use…
安全与治理 / 审核评估
spring-boot-full-stack
spring-boot-full-stack
Complete Java Spring Boot skill set for building enterprise applications. Includes modular architecture with optional components: - PostgreSQL database with JPA/Hibernate + Flyway migration - Redis caching (optional) - Kafka/RabbitMQ messaging (optional, choose one) - JWT + OAuth2 authentication (optional OAuth2) - RBAC authorization (optional) - TDD with Mockito - Spec-First Development with OpenSpec
安全与治理 / 审核评估
schema-consistency-checker
schema-consistency-checker
Audits database schemas for naming conventions, type consistency, nullability patterns, and missing constraints. Provides violations report with recommended…
安全与治理 / 审核评估
senior-secops
senior-secops
Comprehensive SecOps skill for application security, vulnerability management, compliance, and secure development practices. Includes security scanning, vulnerability assessment, compliance checking, and security automation. Use when implementing security controls, conducting security audits, responding to vulnerabilities, or ensuring compliance requirements.
安全与治理 / 审核评估
postmortem-writer
postmortem-writer
Creates comprehensive post-incident documents with timeline, root cause analysis, contributing factors, action items, and ownership. Follows SRE best practices…
安全与治理 / 审核评估
appsec-owasp
appsec-owasp
Use this skill when securing web applications, preventing OWASP Top 10 vulnerabilities, implementing input validation, or designing authentication. Triggers on XSS, SQL injection, CSRF, SSRF, broken authentication, security headers, input validation, output encoding, OWASP, and any task requiring application security hardening.
安全与治理 / 审核评估
snyk-fix
snyk-fix
Complete security remediation workflow. Scans code for vulnerabilities using Snyk, fixes them, validates the fix, and optionally creates a PR. Supports both single-issue and batch mode for multiple vulnerabilities. Use this skill when: - User asks to fix security vulnerabilities - User mentions "snyk fix", "security fix", or "remediate vulnerabilities" - User wants to fix a specific CVE, Snyk ID, or vulnerability type (XSS, SQL injection, path traversal, etc.) - User wants to upgrade a vulnerable dependency - User asks to "fix all" vulnerabilities or "fix all high/critical" issues (batch mode)
安全与治理 / 审核评估
alibabacloud-dataworks-workspace-manage
alibabacloud-dataworks-workspace-manage
DataWorks Workspace Lifecycle Management Skill. Used for creating workspaces, querying workspace information, and adding workspace members with role authorization. Triggers: "DataWorks", "workspace management", "workspace", "member authorization", "role assignment"
安全与治理 / 审核评估
kanidm-expert
kanidm-expert
Expert in Kanidm modern identity management system specializing in user/group management, OAuth2/OIDC, LDAP, RADIUS, SSH key management, WebAuthn, and MFA.…
安全与治理 / 审核评估
supabase-admin
supabase-admin
Supabase administration, RLS policies, migrations, and schema design. Use for database architecture, Row Level Security, performance tuning, auth integration.…
安全与治理 / 审核评估
codeql-expert
codeql-expert
Expert-level CodeQL for static analysis, vulnerability detection, and security code scanning
安全与治理 / 审核评估
rust-security
rust-security
Rust security skill for supply chain safety and memory-safe development. Use when auditing dependencies with cargo-audit, enforcing policies with cargo-deny,…
安全与治理 / 审核评估
security-testing
security-testing
Scans for security vulnerabilities including XSS, SQL injection, CSRF, and auth flaws using OWASP Top 10 methodology. Use when conducting SAST/DAST scans,…
安全与治理 / 审核评估
mcp-integration
mcp-integration
This skill should be used when the user asks to "add MCP server", "integrate MCP", "configure MCP in plugin", "use .mcp.json", "set up Model Context Protocol",…
安全与治理 / 审核评估
resume tailor
resume tailor
Customize resume for specific job postings while maintaining truthfulness
安全与治理 / 审核评估
database-design-expert
database-design-expert
Expert in database schema design with focus on normalization, indexing strategies, FTS optimization, and performance-oriented architecture for desktop…