Stats
Actions
Available In
Tags
Plugin
soundcheck
Run 50+ OWASP security checks against codebases during development — detecting injection flaws, broken authentication, cryptographic misuse, prompt injection, SSRF, and supply-chain risks across web, API, and LLM applications — with automated fix generation and attack chain analysis
What's Inside
Agents7
attack-chain-analysis
/attack-chain-analysis
Given a list of security findings, identifies chains where one finding enables another and writes a plain-English attack narrative. Invoked after vulnerability-audit and design-review have returned.
contract-audit
/contract-audit
Audits one code hotspot for a contract mismatch — a divergence between what callers assume the hotspot guarantees and what the hotspot body actually enforces. Returns hypotheses tagged VERIFIED, REFUTED, or NEEDS_MORE. Invoked once per hotspot per round by the contract-review orchestrator.
design-review
/design-review
Audits a codebase for missing security controls — the gaps that pattern-matching auditors won't catch, like no timeout, no cost cap, no rate limit, prose-only guards. Invoked in parallel with vulnerability-audit calls.
finding-validate
/finding-validate
Second-pass refutation filter for security-review findings. Reads each candidate finding's cited code and drops the ones with concrete refutation evidence (a guard, middleware, sanitizer, or correct API call at the cited location). Bias is toward keeping; uncertain findings pass through.
hotspot-mapping
/hotspot-mapping
Finds security-sensitive code locations in a repository — the files and functions a reviewer should look at. Reads the threat model for context, then enumerates and ranks hotspots. Invoked after threat-modeling, before per-hotspot review.
Skills52
memory-api-misuse
/memory-api-misuse
Detects function-local misuse of memory and resource APIs in C, C++, and Rust unsafe — allocations whose return value is not checked, frees on error paths that race the success path, locks initialized incorrectly, file descriptors leaked across exec. Use when writing or modifying C or C++ code that calls malloc/calloc/realloc/free, mmap/munmap, pthread_mutex_*, fopen/open, or any kernel/library memory or resource primitive. Use when writing Rust code inside an unsafe block that calls a raw allocation or pointer API.
model-dos
/model-dos
Detects LLM endpoints missing token caps, rate limits, or prompt-length bounds, enabling cost and resource exhaustion. Use when writing LLM API call handlers, setting up inference endpoints, implementing chatbot backends, or configuring token limits for LLM services. Also invoke when accepting user- provided prompts without length constraints.
model-theft
/model-theft
Detects inference endpoints without authentication or throttling, allowing model weight reconstruction. Use when writing inference API endpoints, deploying LLM-serving infrastructure, implementing model access controls, or configuring rate limiting and authentication for model endpoints.
multi-agent-trust
/multi-agent-trust
Detects agent-to-agent calls without authentication, authorization, or permission scoping. Use when writing code that calls other agents, spawns subagents, builds multi-agent pipelines, or passes messages between LLM agents. Also invoke when an orchestrator delegates tasks to worker agents or when agents share tools and permissions.
nosql-injection
/nosql-injection
Detects MongoDB and other NoSQL queries that mix user input into operators or filters without validation. Use when writing MongoDB queries, Elasticsearch queries, or other NoSQL database operations that include user-supplied input. Also invoke when building query filters from request parameters or constructing aggregation pipelines with dynamic values.
Stats
Version1.16.3
Released
LanguagePython
Stars18
MaintenanceExcellent
LicenseMIT
Last Commit
Added
Available In
Safety Signals
Caution
Modifies files
Hook triggers on file write and edit operations
Tags
