126 boosters for "security" — AI-graded, open source, ready to install
Tinman provides systematic security auditing and hardening guidance for OpenClaw projects and system infrastructure, helping developers identify and remediate security risks across credentials, tokens, SSH, and firewall configurations.
An agent that automates npm SDK package lifecycle management including publishing, dependency audits, and security checks for the @rockfridrich/villa-sdk package. Useful for SDK maintainers and teams managing package releases.
A risk assessment agent that evaluates the global risk of code modifications by analyzing security, quality, and impact metrics from AgentDB before merge decisions. Developers use it to quantify change risk and make informed merge decisions.
A developer-facing AI agent guide for PFPT (Physically Fit PT), a .NET 8 MAUI/Blazor clinician documentation app, that provides setup instructions, coding standards, security rules, and exact commands for safe modifications. Developers and AI coding assistants use this to understand the codebase architecture, compliance requirements, and safe change procedures.
A Windsurf rules framework for enterprise AWS Cedar authorization with shift-left security practices, policy validation, and automated CI/CD enforcement. Benefits security teams, platform engineers, and developers implementing least-privilege access controls.
A Cursor-integrated prompt boilerplate that sets up senior-level backend expertise for AWS Amplify Gen 2 projects with built-in authentication and security best practices. Ideal for developers building scalable, secure applications who want AI-assisted development with domain-specific guidance.
A specialized test generator and QA assistant for Phoenix/LiveView applications using Noizu entity-reference architecture, providing equivalency partitioning test case generation across happy path, negative, security, performance, and integration categories.
code-reviewer-pro is an AI-powered senior engineering lead that provides comprehensive code reviews covering quality, security, maintainability, and best practices with actionable feedback. Developers benefit from immediate, educational code analysis after writing or modifying code.
A specialized Docker optimization agent that helps developers build secure, lightweight container images through Dockerfile optimization, security hardening, and multi-stage build design. Ideal for DevOps engineers and developers seeking to improve container deployment practices.
TheiaChat CLI Copilot Instructions is a comprehensive governance framework for an AI-assisted TypeScript terminal tool, designed to enforce enterprise-grade code quality, security, and architectural rigor through mandatory PRD-first workflows and triple-check verification gates. Enterprise teams and AI coding agents working on TypeScript CLI projects benefit from its structured approach to secure, validated feature development.
MCP server for accessing EUVD (European Vulnerability Database) and ENISA security data
A system prompt that enforces strict architectural rules for a CEO Request Management System, ensuring consistent database naming, security controls, audit logging, and approval workflows across AI coding assistants like Claude, ChatGPT, and Cursor.
Copilot Instructions for trvly establishes coding standards and guidelines for GitHub Copilot usage, covering style, documentation, testing, and security practices. Developers working on the trvly project benefit from having consistent, AI-assisted code generation aligned with team standards.
A specialized reverse engineering and malware analysis platform with MCP orchestration and containerized tooling, designed for security researchers and binary analysts working with Project Diablo 2 and general malware investigations.
An API security audit specialist agent that helps developers identify and fix vulnerabilities in REST APIs, including authentication flaws, injection attacks, and compliance issues. Ideal for security-conscious development teams and API developers seeking proactive vulnerability assessment.
A DevOps specialist agent that automates CI/CD pipelines, infrastructure provisioning, and deployment workflows across cloud platforms. Ideal for teams seeking to streamline infrastructure management, security hardening, and deployment optimization.
A comprehensive Cursor IDE rule set that enforces modern C++ (C++17/20) coding standards, best practices, and style conventions for .cpp/.hpp files. Developers working on C++ projects in Cursor will benefit from automated guidance on naming, memory management, performance optimization, and security.
A cybersecurity specialist agent that performs security assessments, vulnerability analysis, and compliance auditing across applications and infrastructure. Developers, security teams, and DevOps engineers benefit from automated security reviews and threat identification.
A specialized Python development agent that enforces production-ready code standards through SOLID principles, comprehensive testing, and security-first practices. Ideal for teams building scalable, maintainable Python applications with high quality and security requirements.
A security-focused agent that guides developers through application security, authentication, authorization, and compliance best practices for cloud-native applications. Ideal for teams building secure AI applications who need expert security guidance integrated into their development workflow.
This booster enforces Podman-first container practices with rootless defaults and standardized naming conventions across Dockerfile, docker-compose, and container configuration files. It benefits developers and teams adopting Podman as a Docker alternative and seeking consistent, security-focused container workflows.
A quality analysis agent that performs systematic code reviews, identifies bugs and security issues, and provides actionable feedback with severity ratings. Useful for developers and teams seeking automated code quality assurance and compliance checking.
A specialized Docker agent that optimizes container images for security and performance, helping developers build lightweight, secure Dockerfiles and multi-stage deployments. Ideal for DevOps engineers and backend developers seeking container best practices.
移动安全漏洞挖掘知识库,基于HackerOne公开报告提供Android和iOS应用的漏洞挖掘手法、技术细节和代码模式分析;用于安全研究人员和漏洞挖掘者学习参考、代码审计和漏洞检测指导。
