Browse skills

Scan project dependencies for known vulnerabilities (CVEs), license risks, and outdated packages. Supports npm, pip, Go, Rust, Ruby, Java. Returns structured vulnerability report with severity ratings, CVSS scores, remediation commands, and risk score for CI/CD gates.

Deep security audit of source code — detect vulnerabilities (OWASP Top 10, CWE-25), find secrets/credentials, flag injection vectors, identify insecure dependencies, analyze authentication/authorization flaws, and produce a prioritized remediation report with severity ratings (Critical/High/Medium/Low), CWE IDs, and fix suggestions. Supports Python, JavaScript/TypeScript, Go, Rust, Solidity, Java, C/C++, Ruby, PHP.