Information Security Analysis Skills
13 skills available
OpenClaw Secret Scanning Maintainer
OpenClaw Secret Scanning Maintainer is an AI assistant skill designed for the OpenClaw project, aimed at automatically detecting, scanning, and maintaining sensitive information (such as keys, tokens, passwords) in code. Based on scripts and configurations in the GitHub repository, it helps developers prevent sensitive data leaks and ensure code security. This skill is suitable for CI/CD environments, can be integrated into development workflows, and provides real-time scanning and alerting to enhance project security.
Laravel Security Skill
This is an Agent security skill designed specifically for the Laravel framework, aimed at helping developers identify, prevent, and fix common security vulnerabilities. The skill covers core security areas such as SQL injection, XSS attacks, CSRF protection, authentication authorization, encryption and decryption, and provides automated security scanning, code auditing, and best practice recommendations. It is suitable for development, testing, and production environments of Laravel projects, significantly enhancing application security and reliability.
Spring Boot Security Skill
Spring Boot Security is a security framework skill based on Spring Boot for building secure and robust applications. It provides core security features such as authentication, authorization, encryption, and session management, supporting multiple authentication methods (e.g., JWT, OAuth2, LDAP), and integrates best practices of Spring Security. This skill is suitable for web applications, microservices, or API gateways that need rapid implementation of user authentication and permission control, helping developers reduce security vulnerabilities and enhance system protection. Security policies can be flexibly customized through configuration files and annotations, reducing development complexity.
DeFi AMM Security Skill
The DeFi AMM Security Skill is a specialized module within the ECC system, focusing on security analysis and vulnerability detection for Decentralized Finance (DeFi) Automated Market Makers (AMMs). This skill covers core security concepts of AMM protocols, common attack vectors (such as flash loan attacks, price manipulation, slippage attacks), auditing methodologies, and best practices. It is suitable for blockchain security engineers, smart contract auditors, and DeFi developers to identify and mitigate security risks in AMMs, enhancing protocol security.
Security Bounty Hunter Skill
The Security Bounty Hunter skill is a specialized security skill within the ECC (Agent Harness Performance Optimization System), designed for security researchers and bounty hunters. It integrates multiple security testing tools and methodologies to help users efficiently discover vulnerabilities in web applications, APIs, mobile apps, and more. Core features include automated vulnerability scanning, intelligent payload generation, target reconnaissance and information gathering, and vulnerability report template generation. By leveraging advanced AI reasoning capabilities, this skill simulates attacker thinking, providing precise vulnerability verification steps and remediation suggestions. Suitable for penetration testing, bug bounty programs, security audits, and more, significantly improving security research efficiency.
Healthcare PHI Compliance Skill
This skill focuses on Protected Health Information (PHI) compliance in the healthcare domain, helping developers and organizations ensure their AI agents and automation systems adhere to privacy regulations like HIPAA when handling sensitive medical data. It provides best practices for secure PHI handling, data masking methods, access control policies, and audit logging capabilities, suitable for healthcare, health tech, insurance, and bioinformatics scenarios to ensure data security and compliance.
Perl Security Skill
The Perl Security Skill is a specialized skill within the ECC (Agent Harness Performance Optimization System), focusing on secure development and vulnerability protection for the Perl programming language. It provides core features such as Perl code security best practices, common vulnerability detection and remediation, input validation, output encoding, SQL injection protection, and XSS protection. Suitable for developers writing secure Perl scripts, security auditors, and teams looking to enhance the security of their Perl applications. By integrating this skill, you can automatically detect security risks in Perl code and receive remediation suggestions, ensuring the security of Perl applications in production environments.
Django Security Skill
The Django Security Skill is a specialized skill within the ECC project, focusing on helping developers ensure application security when using the Django framework. It covers common web security threat protections such as cross-site scripting (XSS), SQL injection, cross-site request forgery (CSRF), clickjacking, and provides best practice guidelines. Suitable for all development teams building web applications with Django, especially enterprise-level projects requiring enhanced security. By integrating this skill, developers can quickly identify and fix security vulnerabilities, improving overall application security.
HIPAA Compliance Skill
The HIPAA Compliance Skill is part of the ECC (Agent Harness Performance Optimization System), specifically designed to help AI agents and development tools meet the requirements of the Health Insurance Portability and Accountability Act (HIPAA). This skill provides guidelines, policies, and best practices for securely handling Protected Health Information (PHI), ensuring that AI applications developed in environments like Claude Code, Codex, Opencode, and Cursor comply with healthcare data privacy and security standards. Ideal for AI projects handling medical data, health tech applications, and healthcare IT systems.
GitHub Security Advisory Maintainer Skill
This skill is a component of the OpenClaw personal AI assistant ecosystem, specifically designed for maintaining GitHub Security Advisories (GHSA). It helps developers efficiently manage, create, and update security advisories, ensuring the security of open-source projects. By automating processes, it reduces manual errors and improves security response speed. Suitable for GitHub project maintainers who frequently handle security vulnerability reports, publish security patches, and coordinate security disclosures.
Security Triage Skill
Security Triage is an Agent Skill from the OpenClaw project, designed to help AI assistants or users quickly perform initial classification and prioritization of security incidents, alerts, or potential threats. This skill uses a structured analysis process to identify the type of security issue (e.g., malware, network attack, data breach), assess its severity, and provide preliminary response recommendations. It is suitable for security operations personnel, incident response teams, and individuals or organizations looking to automate security classification workflows. Use cases include SOC (Security Operations Center) alert handling, penetration testing result classification, and preliminary vulnerability report analysis. This skill is based on an open-source project on GitHub and can be integrated into various AI platforms.
Security Review Skill
The Security Review skill is a core module within the ECC (Agent Harness Performance Optimization System), specifically designed for comprehensive security reviews of code, configurations, and system architectures. It automatically identifies potential security vulnerabilities, misconfigurations, and non-compliant coding practices, helping developers detect and fix security issues early in the development cycle. This skill supports multiple programming languages and frameworks, providing detailed review reports and remediation suggestions. It is suitable for CI/CD pipeline integration, code review processes, and daily development security checks. By automating security reviews, teams can significantly reduce security risks and improve software quality and compliance.
Security Bounty Hunter Skill
The Security Bounty Hunter skill is a professional module within the ECC (Agent Capability Optimization System), specifically designed for cybersecurity researchers and bug bounty hunters. This skill integrates vulnerability scanning, penetration testing assistance, security report generation, and more, supporting operation in mainstream AI coding environments such as Claude Code, Codex, Opencode, and Cursor. With this skill, users can efficiently discover security vulnerabilities in web applications, APIs, smart contracts, and other targets, and generate vulnerability reports that meet industry standards. The skill includes pre-configured detection scripts, reference documents, and intelligent agents to help users quickly get started with security testing workflows. It is suitable for security audits, bug bounty programs, compliance checks, and other scenarios, making it a powerful assistant for cybersecurity professionals.