全部能力

识别、分类并确定技术债务的优先级。通过“tech debt”、“technical debt audit”、“what should we refactor”、“code health”触发，或在……时触发。

Prepares codebases for security review using Trail of Bits' checklist. Helps set review goals, runs static analysis tools, increases test coverage, removes…

Scans Android APKs for Firebase security misconfigurations including open databases, storage buckets, authentication issues, and exposed cloud functions. Use…

Search and retrieve content from Reddit. Get posts, comments, subreddit info, and user profiles via the public JSON API. Use when user mentions Reddit, a…

Detects timing side-channel vulnerabilities in cryptographic code. Use when implementing or reviewing crypto code, encountering division on secrets,…

Scans Substrate/Polkadot pallets for 7 critical vulnerabilities including arithmetic overflow, panic DoS, incorrect weights, and bad origin checks. Use when…

Provides expertise for analyzing DWARF debug files and understanding the DWARF debug format/standard (v3-v5). Triggers when understanding DWARF information,…

Manage issues, projects & team workflows in Linear. Use when the user wants to read, create or updates tickets in Linear.

Use when implementing authentication/authorization, securing user input, or preventing OWASP Top 10 vulnerabilities — including custom security implementations…

Build, archive, export, upload, and manage Xcode version/build numbers with the current asc xcode helpers before App Store Connect upload or submission. Use…

查找本地分支更改中的 Bug、安全漏洞和代码质量问题。在要求审查更改、查找 Bug、安全审查或代码审计时使用……

algorand-vulnerability-scanner — 一个可安装的 AI 智能体技能，由 trailofbits/skills 发布。

Determine whether an app is ready to submit, then drive the current App Store release flow with asc, including validation, staging, review submission,…

Expert code review of current git changes with a senior engineer lens. Detects SOLID violations, security risks, and proposes actionable improvements.

Search and retrieve content from Product Hunt. Get posts, topics, users, and collections via the GraphQL API. Use when user mentions Product Hunt, PH, or…

Validate App Store submission readiness, submit prepared versions, and monitor review status with current asc commands. Use when shipping or troubleshooting…

Comprehensive code review covering security vulnerabilities, performance bottlenecks, best practices, and refactoring opportunities. Use when user requests…

通过完全匹配目标仓库现有的集成模式，构建新的 API 连接器或提供者。适用于在无需……的情况下添加新的集成。

面向医疗应用的受保护健康信息 (PHI) 和个人身份信息 (PII) 合规模式。涵盖数据分类，…

List, configure, authenticate, call, and inspect MCP servers/tools with mcporter over HTTP or stdio.