Security

Security and performance - hardening, optimization, auditing

Code review guidelines for commits and file changes. Covers four categories:Quality (security, correctness, maintainability), Regression (breaking changes,API compatibility), Documentation (code docs, changelogs), and Performance(optimization, efficiency).

Consult Google Gemini CLI for second opinions on architecture, debugging, and security audits. Use Gemini's 1M+context window for comprehensive code analysis. Compare Flash (fast) vs Pro (thorough) vs 3-Pro-Preview (cutting-edge).Use when: need second opinion on architectural decisions, stuck debugging after 2+ attempts, writing security-sensitive code, planning refactors (5+ files), approaching 70%+ context capacity, unfamiliar with tech stack,need peer review, or want Flash vs Pro vs 3-Pro-Preview comparison.Keywords: gemini-cli, google gemini, gemini command line, second opinion, model comparison, gemini-2.5-flash, gemini-2.5-pro, gemini-3-pro-preview, architectural decisions, debugging assistant, code review gemini, security audit gemini, 1M context window, AI pair programming, gemini consultation, flash vs pro, AI-to-AI prompting, peer review, codebase analysis, gemini CLI tool, shell gemini, command line AI assistant, gemini architecture advice, gemini debug help, gemini security scan, gemini cod

Get logs for a specific session. Requires authentication. Use for Agentuity cloud platform operations

Comprehensive security scanner for vulnerabilities, hardcoded secrets, and OWASP Top 10 issues

Manage Glide app access, privacy, authentication, and publishing.Use when configuring who can access an app, setting up sign-in methods,publishing apps, inviting users, or configuring Row Owners for data security.

List all vector namespaces. Requires authentication. Use for Agentuity cloud platform operations

Delete a snapshot. Requires authentication. Use for Agentuity cloud platform operations

Provides security guidelines for input validation, authentication, authorization, and secure coding practices. Use when implementing auth, handling user input, working with credentials, or conducting security reviews.

List recent streams with optional filtering. Requires authentication. Use for Agentuity cloud platform operations

Build production-grade FastAPI backends with SQLModel, Pydantic, and JWT authentication. Use this skill when building REST APIs, integrating with Neon PostgreSQL, implementing Better Auth JWT verification, or creating CRUD endpoints. Includes patterns for audit logging, worker/agent parity, and OpenAPI documentation.

Security Code Review security skill

Authentication, authorization, Clerk integration, RLS policies, and security patterns. Use when working with security-resolver code, files, or integration. Invoke when navigating security-resolver codebase, searching for security-resolver files, debugging security-resolver errors, or discussing security-resolver patterns. Keywords: security-resolver, {{KEYWORDS}}

Understand supply chain vulnerabilities and dependency risks in AI-generated code including outdated packages, malicious packages, and dependency confusion attacks. Use this skill when you need to learn about vulnerable dependencies in AI code, understand supply chain attacks, recognize typosquatting, or identify outdated package suggestions. Triggers include "supply chain attacks", "dependency vulnerabilities", "outdated packages", "malicious npm packages", "typosquatting", "dependency confusion", "vulnerable dependencies AI", "npm security".

Complete guide for implementing file uploads in IntelliFill with React-dropzone frontend, Multer backend, file validation, Bull queue processing, and security best practices

Get snapshot details. Requires authentication. Use for Agentuity cloud platform operations

Use this skill AFTER a terraform plan has been generated. This skill audits a terraform plan file for security vulnerabilities (using tfsec/checkov) and company compliance policies. It either APPROVES or REJECTS the plan.

Simple security prompt templates for quick implementations using existing Secure Vibe Coding OS utilities. Use for straightforward features like contact forms, authenticated updates, and public APIs. Triggers include "contact form", "simple form", "authenticated update", "user update", "public API", "read-only API", "quick secure implementation".

Retrieve username data through secure verification protocols.

Build Shopify applications, extensions, and themes using GraphQL/REST APIs, Shopify CLI, Polaris UI components, and Liquid templating. Capabilities include app development with OAuth authentication, checkout UI extensions for customizing checkout flow, admin UI extensions for dashboard integration, POS extensions for retail, theme development with Liquid, webhook management, billing API integration, product/order/customer management. Use when building Shopify apps, implementing checkout customizations, creating admin interfaces, developing themes, integrating payment processing, managing store data via APIs, or extending Shopify functionality. | Sử dụng khi: Shopify, cửa hàng online, thương mại điện tử, Liquid.