Fullstack Security

What it does

The fullstack-security skill helps identify and mitigate vulnerabilities across the entire application stack. It can analyze code, configurations, and dependencies to pinpoint potential security risks. This includes performing static analysis of source code, identifying common web application vulnerabilities (like SQL injection or cross-site scripting), and suggesting remediation strategies.

When to use it

• Security Audits: Before deploying a new application or feature, assess its security posture.
• Vulnerability Remediation: After discovering vulnerabilities through other scanning tools, leverage this skill for detailed analysis and guidance on fixing them.
• Code Reviews: Integrate into code review processes to proactively identify and address potential security flaws early in development.
• Dependency Management: Analyze project dependencies for known vulnerabilities and outdated libraries.

Key capabilities

• Static Code Analysis
• Vulnerability Identification (SQL injection, XSS)
• Dependency Scanning
• Remediation Suggestions

Example prompts

• "Analyze this code snippet for potential SQL injection vulnerabilities: [code]"
• "What are the known security risks associated with version 3.2.1 of the 'requests' library?"
• “Perform a static analysis of my application’s codebase and report any cross-site scripting (XSS) vulnerabilities.”

Tips & gotchas

The skill requires access to the relevant code repositories or files for accurate analysis. Be aware that while it provides suggestions, manual verification and testing are crucial for confirming vulnerability fixes.