medusa-security

This skill provides centralized JSON validation for the AGENT_SUCCESS_CRITERIA environment variable. It prevents injection attacks (CVSS 8.2) through defensive parsing and ensures consistent error handling across all agents. Use it when you need secure, validated parsing of success criteria in your Claude Code agents.

The `audit-expert` skill provides expert-level security auditing and compliance guidance for developers, specializing in code reviews, vulnerability assessments, and regulatory frameworks like SOC 2 and GDPR. It helps conduct security audits, analyze code for vulnerabilities, and ensure infrastructure compliance. Use this skill when you need to review code security, prepare for compliance audits, or assess your application against established security standards.

The audit-expert skill provides expert-level security auditing and compliance assessment for codebases and systems. It performs vulnerability assessments, code reviews, and checks against standards like SOC 2, GDPR, and OWASP ASVS. Use this skill for security analysis, regulatory compliance verification, and infrastructure configuration reviews during development.

The codeql-expert skill provides expert-level guidance for CodeQL static analysis, specializing in vulnerability detection, custom query development, and security code scanning. It helps developers integrate CodeQL into CI/CD pipelines and write custom QL queries for security, quality, and compliance analysis. Use this skill when you need to perform deep static analysis, identify security vulnerabilities in multiple languages, or set up automated security scanning in your development workflow.