Zeroize Audit

What it does

This skill enables AI agents to verify that sensitive data has been securely erased from memory using the zeroize crate. It provides programmatic access to audit mechanisms ensuring cryptographic secrets are overwritten rather than simply dropped, preventing recovery attacks on volatile storage.

When to use it

• Verifying secure deletion of encryption keys before a system shutdown or reboot.
• Auditing temporary buffers in high-security applications handling PII or financial data.
• Implementing compliance checks for standards requiring proof of memory sanitization.
• Testing the effectiveness of secret management libraries against memory scraping tools.

Key capabilities

• Integration with Rust's zeroize crate for cryptographic zeroization.
• Audit hooks to confirm when sensitive values are cleared from RAM.
• Support for types implementing the Zeroize trait to ensure consistent behavior.
• Prevention of data leakage during object destruction or scope exit.

Example prompts

• "Audit this Rust function to ensure the API key is properly zeroized before the function returns."
• "Verify that the zeroize-audit skill confirms memory sanitization for a session token stored in a local buffer."
• "Generate a test case using zeroize-audit to prove that a secret string cannot be recovered after scope exit."

Tips & gotchas

Ensure your environment supports Rust 1.60+ as the underlying zeroize crate requires modern compiler features for safe memory handling. This skill is specific to Rust-based agents; it will not function within Python or JavaScript environments without a compatible runtime bridge.