Vibe Index
๐ŸŽฏ

security-review

๐ŸŽฏSkill

from shiplightai/agent-skills

VibeIndex|
What it does
|

A skill that evaluates your application's security posture against OWASP Top 10, ASVS, and NIST standards through browser-based penetration testing, covering authentication flows, HTTP headers, CORS, CSP, supply chain risks, and generating remediation guidance with regression tests.

๐Ÿ“ฆ

Same repository

shiplightai/agent-skills(15 items)

security-review

Installation

Vibe Index InstallInstalls to .claude/skills/
npx vibeindex add shiplightai/agent-skills --skill security-review
skills.sh Installโš  Installs to .agents/skills/
npx skills add shiplightai/agent-skills --skill security-review
Manual InstallCopy SKILL.md content and save to the path below
~/.claude/skills/security-review/SKILL.md

SKILL.md

390Installs
-
AddedApr 21, 2026
View on GitHubBack to Skills

More from this repository10

๐ŸŽฏ
verify๐ŸŽฏSkill

A Shiplight skill that lets AI coding agents visually verify UI changes in the browser after code modifications. Part of the Shiplight test automation suite, it also includes skills for E2E test creation, triage, and comprehensive reviews covering security, accessibility, performance, and SEO.

๐ŸŽฏ
cloud๐ŸŽฏSkill

Syncs local YAML test cases, templates, and TypeScript functions with the Shiplight cloud for scheduled execution, team sharing, and CI integration.

๐ŸŽฏ
compliance-review๐ŸŽฏSkill

Evaluates applications against HIPAA, SOC 2, PCI-DSS, and GDPR technical requirements through browser-based validation and generates YAML regression tests for continuous compliance. Follows a 5-phase workflow of educate, scope, analyze, report, and remediate with findings mapped to specific regulatory sections.

๐ŸŽฏ
design-review๐ŸŽฏSkill

AI-powered test automation skill for design review that lets coding agents verify visual consistency and UI quality autonomously via the Shiplight MCP server.

๐ŸŽฏ
geo-review๐ŸŽฏSkill

A Generative Engine Optimization review skill that evaluates how well your content is optimized for AI-powered search engines like ChatGPT, Perplexity, and Google AI Overviews, assessing citation-worthiness, content structure, authority signals, llms.txt, and AI retrieval readiness across five phases from education to remediation.

๐ŸŽฏ
resilience-review๐ŸŽฏSkill

Evaluates application resilience by testing error handling, graceful degradation, API contract compliance, edge cases, and failure recovery with browser-based fault injection.

๐ŸŽฏ
seo-review๐ŸŽฏSkill

Evaluates SEO and discoverability by checking meta tags, structured data, Open Graph, crawlability, sitemap, robots.txt, semantic HTML, and social sharing with browser-based validation.

๐ŸŽฏ
privacy-review๐ŸŽฏSkill

Evaluates how your application handles personal data by reviewing PII collection, data flows, third-party tracking, consent mechanisms, and storage practices with browser-based validation against GDPR, CCPA, and OWASP standards.

๐ŸŽฏ
triage๐ŸŽฏSkill

AI-powered test automation skills that let coding agents verify, test, and iterate autonomously, supporting Claude Code, Cursor, Codex, and 40+ other agents via the Shiplight MCP server.

๐ŸŽฏ
review๐ŸŽฏSkill

Review orchestrator that assesses applications and recommends the right combination of design, security, privacy, compliance, resilience, performance, SEO, and GEO reviews.