124 boosters for "security" — open source, verified from GitHub, ready to install
"name": "cadre-devkit-claude", "description": "Cadre team development kit for Claude Code - security hooks, workflow automation, and productivity tools", "name": "Cadre Team"
"name": "production-checklist-plugin", "description": "Production readiness scanner for web, mobile, API, smart contract, payment, and infrastructure deployments. 780 checklist items with automated codebase scanning.", "author": "Shawnchee",
"name": "codereview", "description": "Comprehensive code review skills with an orchestrator for triage/routing and 11 specialist sub-skills for security, correctness, API, data, concurrency, performance, observability, testing, style, and configuration analysis.", "name": "Zainan Victor Zhou",
The architect agent automates system design for new projects and major refactoring efforts, helping teams create scalable architectures with documented trade-offs. Ideal for engineering teams starting greenfield projects or evaluating architectural changes.
Code Review Analyzer is a comprehensive code review skill that examines code for best practices, bugs, security issues, and optimization opportunities. It's valuable for developers seeking thorough code analysis before merging pull requests or improving existing codebases.
A reverse engineering workflow booster that guides AI assistants through CTF binary analysis using static and dynamic analysis techniques. Useful for cybersecurity students and CTF competitors tackling capture-the-flag challenges.
"name": "mcp-keyring-injector", "description": "Securely inject MCP API credentials from system keyring into Claude Code configuration at session start", "name": "Sankalp Gilda, Ph.D.",
Enterprise-grade MCP server that integrates Cloudflare APIs with Claude, enabling developers to programmatically manage Cloudflare infrastructure and services while maintaining NIST 800-53/FedRAMP High compliance standards.
An AI-powered code reviewer that identifies quality issues, security vulnerabilities, and optimization opportunities across multiple programming languages. Developers use it to enforce best practices, reduce technical debt, and maintain high code standards automatically.
A web vulnerability assessment skill for CTF challenges that automates reconnaissance and exploit development against target URLs. Useful for security practitioners and CTF competitors looking to systematically identify and exploit web vulnerabilities.
A binary exploitation analysis booster that automates reconnaissance and vulnerability detection for CTF challenges, helping security researchers and students quickly identify exploitation vectors in compiled binaries.
A Windsurf rules file that enforces Kubernetes manifest organization standards (flat structure, single-file resources, strict naming conventions) to keep K8s projects clean and maintainable. Developers managing Kubernetes deployments benefit from automated consistency checks and clear structural guidelines.
A security-hardened Chrome DevTools Protocol MCP server enabling safe browser automation with post-quantum encryption and credential vault protection. Ideal for developers building AI agents that need secure, automated browser control.
An MCP server that integrates FFmpeg for multimedia processing with security, caching, and batch operations support, enabling developers to perform video and audio transformations seamlessly within Claude Desktop and Claude Code environments.
A production-ready Python development agent that enforces PEP 8 standards, type hints, design patterns, and security best practices across projects. Developers building Python applications benefit from automated guidance on code quality and maintainability.
SkillGuard is a security reviewer for Claude/Cursor Skills that detects prompt injection, tool injection, data exfiltration, and unsafe automation risks. It's essential for developers and organizations installing or developing AI skills to ensure safe, policy-compliant code execution.
A comprehensive MongoDB security and administration agent that teaches and implements authentication methods (SCRAM/X.509/LDAP), role-based access control, encryption, and enterprise compliance strategies. Ideal for developers and DBAs securing MongoDB deployments in production environments.
AgentTrust provides identity, trust verification, and secure orchestration for autonomous AI agents communicating with each other (A2A), with built-in protections against prompt injection and human-in-the-loop controls. Developers building multi-agent systems, especially those requiring security and auditability, benefit from its official A2A partnership and MCP integration.
A security and compliance agent that helps teams audit, implement, and review security controls across authentication, authorization, encryption, and major compliance frameworks (GDPR, HIPAA, SOC2, PCI-DSS, ISO27001). Essential for security teams, DevOps engineers, and compliance officers building secure systems.
Tinman provides systematic security auditing and hardening guidance for OpenClaw projects and system infrastructure, helping developers identify and remediate security risks across credentials, tokens, SSH, and firewall configurations.
A specialized forensics analyst agent for investigating security incidents, analyzing malware, and collecting evidence from compromised systems. Ideal for security engineers, incident responders, and system administrators handling breach investigations.
An agent that automates npm SDK package lifecycle management including publishing, dependency audits, and security checks for the @rockfridrich/villa-sdk package. Useful for SDK maintainers and teams managing package releases.
A specialized agent for security compliance professionals to implement, audit, and maintain security controls across industry standards like SOC2, ISO 27001, and HIPAA. Ideal for compliance officers, security teams, and organizations needing automated governance frameworks.
An expert agent for penetration testing and vulnerability assessment that helps security professionals conduct authorized red team operations and identify security weaknesses. Ideal for security engineers, penetration testers, and organizations needing structured ethical hacking guidance.
