Security

Debug Django Channels WebSocket issues including connection failures, authentication, message handling, Redis pub/sub, and real-time streaming. Use when troubleshooting WebSocket not connecting, messages not received, connection dropped, or streaming not working.

Reviews Kubernetes manifests for best practices, security, and homelab standards compliance. Use when reviewing YAML files, K8s manifests, Helm values, or ArgoCD applications.

Use this agent when you need to design, implement, or optimize FastAPI backend applications. This includes API endpoint creation, database integration, authentication/authorization implementation, cloud deployment strategies, business logic architecture, performance optimization, and following FastAPI best practices.

Write secure, performant database queries using parameterization, proper indexing, and optimization techniques. When creating or modifying database query logic, data access layers, or repository files. When working on files that interact with databases using SQL, ORMs, or query builders. When implementing SELECT queries, joins, transactions, or data fetching logic. When optimizing queries to prevent N+1 problems, using eager loading, or implementing query caching. When writing parameterized queries to prevent SQL injection vulnerabilities.

Configure Claude Code sandbox network isolation with trusted domains, custom access policies, and environment variables

Use when implementing Weavr UI components for secure payment flows, authentication (password/passcode), KYC/KYB verification, or card display

Adds BetterAuth authentication to Apso backends. Handles entity setup, code generation, auto-fixes, and verification. Triggers when user needs to add authentication, setup auth, or integrate BetterAuth.

Authentication patterns for React web applications. Use when implementing login flows, OAuth, JWT handling, session management, or protected routes in React web apps.

Generate NGINX configuration files for web servers, reverse proxies, load balancing, SSL termination, and static file serving. Triggers on "create nginx config", "generate nginx.conf", "nginx configuration for", "reverse proxy config".

A capability-oriented reasoning framework for identifying and describing security-relevant capability expansions in software supply-chain version transitions. Provides capability vocabulary, counterfactual reasoning scaffolds, and contextual analysis tools. Use when analyzing code version transitions to understand what new affordances emerge, not to classify code as malicious/benign. Atomic unit of analysis is the version transition (diff), not standalone code.

Performs comprehensive security audits of KrakenD configurations to identify vulnerabilities, authentication gaps, and security best practices violations with Flexible Configuration support

Optimize Docker images for Python applications including multi-stage builds (70%+ size reduction), security scanning with Trivy, layer caching, and distroless base images. Use when creating Dockerfiles, reducing image size, improving build performance, or scanning for vulnerabilities.

Generate code templates for common patterns: REST API endpoints, React components, database models, authentication, error handling. Use when implementing new features or creating boilerplate code.This skill provides production-ready code templates:- REST API endpoints (Express, FastAPI)- React/Vue components with best practices- Database models (Sequelize, TypeORM, Mongoose)- Authentication middleware (JWT, OAuth)- Error handling patternsTriggers: "create API", "new component", "implement auth", "add model", "generate code", "コードテンプレート", "API作成", "コンポーネント作成"

Revisar segurança OAuth2 Resource Server com JWT (issuer/jwk), escopos e conversores, garantindo aderência a Key Vault e Traefik.

Deep Python code review of changed files using git diff analysis. Focuses on production quality, security vulnerabilities, performance bottlenecks, architectural issues, and subtle bugs in code changes. Analyzes correctness, efficiency, scalability, and production readiness of modifications. Use for pull request reviews, commit reviews, security audits of changes, and pre-deployment validation. Supports Django, Flask, FastAPI, pandas, and ML frameworks.

Master Claude Code plugin architecture, design patterns, and technical implementation. Learn to build scalable, maintainable plugins with proper structure, performance optimization, and security best practices.

Comprehensive IEEE PES paper review for Physics-Guided SSL GNN power grid research. Use when reviewing paper sections, checking claims against evidence, validating physics consistency (PF/Line Flow/Cascade), auditing figures/tables, checking IEEE compliance, or positioning against competing work (PPGT). Triggers on "review my paper", "check claims", "validate physics", "PES submission ready", "compare to baselines", "audit figures", or any publication preparation task.

Use this skill when the user needs help executing incident response workflows, investigating security incidents, containing threats, collecting forensic evidence, or performing remediation actions.

Maintain and update CHANGELOG.md following Keep a Changelog format. Use when: updating changelog, version documentation, release notes, semver versioning, categorizing changes (Added/Changed/Fixed/Security).

Complete Java Spring Boot skill set for building enterprise applications.Includes modular architecture with optional components:- PostgreSQL database with JPA/Hibernate + Flyway migration- Redis caching (optional)- Kafka/RabbitMQ messaging (optional, choose one)- JWT + OAuth2 authentication (optional OAuth2)- RBAC authorization (optional)- TDD with Mockito- Spec-First Development with OpenSpec