全部能力

OpenAI Codex CLI code review with GPT-5.2-Codex, CI/CD integration

Validate, lint, audit, or fix PromQL queries and alerting rules; detects anti-patterns.

List and test exposed PostgreSQL RPC functions for security issues and potential RLS bypass.

Audit and validate Flux CD GitOps repositories by scanning local repo files (not live clusters) — runs Kubernetes schema validation, detects deprecated Flux APIs, reviews RBAC/multi-tenancy/secrets management, and produces a prioritized GitOps report. Use when users ask to audit, analyze, validate, review, or security-check a GitOps repo.

Meta-cognitive reasoning specialist for evidence-based analysis, hypothesis

Reference — Comprehensive Network.framework guide covering NetworkConnection (iOS 26+), NWConnection (iOS 12-25), TLV framing, Coder protocol, NetworkListener,…

Mobile UX patterns, touch interactions, gesture design, mobile-first principles, app navigation, and mobile performance

Create, improve, or optimize prompts using best practices

REST API and WebSocket development with FastAPI emphasizing security, performance, and async patterns

Audit vercel-plugin performance on real-world projects. Extracts tool calls from Claude Code conversation logs, tests hook matching against actual inputs,…

Attempt to read data from exposed tables to verify actual data exposure and RLS effectiveness.

List all tables exposed via the Supabase PostgREST API to identify the attack surface.

Generate a comprehensive Markdown security audit report with executive summary, findings, and remediation guidance.

Nuclear-grade 16-agent pre-publish release gate. Runs /get-unpublished-changes to detect all changes since last npm release, spawns up to 10 ultrabrain agents…

List all storage buckets and their configuration to identify the storage attack surface.

Detect if a web application uses Supabase by analyzing client-side code, network patterns, and API endpoints.

Generate QR codes with clean URLs, optional UTM parameters, captions, and print-safe exports. Use for single codes or batch campaign generation.

Identify storage buckets that are publicly accessible and may contain sensitive data.

Use when deploying Docker Compose applications to production including security hardening, resource management, health checks, logging, monitoring, and…

Provide production-ready shell script templates for common Linux system administration tasks including backups, monitoring, user management, log analysis, and…