remediation AI Agent Skills

Browse 200 skills related to remediation

wcag-audit-patterns

29.9k
wshobsonwshobson

Conduct WCAG 2.2 accessibility audits with automated testing, manual verification, and remediation guidance. Use when auditing websites for accessibility, fixing WCAG violations, or implementing accessible design patterns.

132 days ago

threat-mitigation-mapping

29.9k
wshobsonwshobson

Map identified threats to appropriate security controls and mitigations. Use when prioritizing security investments, creating remediation plans, or validating control effectiveness.

132 days ago

accessibility-compliance-accessibility-audit

18.0k
sickn33sickn33

You are an accessibility expert specializing in WCAG compliance, inclusive design, and assistive technology compatibility. Conduct audits, identify barriers, and provide remediation guidance.

132 days ago

codebase-cleanup-deps-audit

18.0k
sickn33sickn33

You are a dependency security expert specializing in vulnerability scanning, license compliance, and supply chain security. Analyze project dependencies for known vulnerabilities, licensing issues, outdated packages, and provide actionable remediation strategies.

132 days ago

threat-mitigation-mapping

18.0k
sickn33sickn33

Map identified threats to appropriate security controls and mitigations. Use when prioritizing security investments, creating remediation plans, or validating control effectiveness.

132 days ago

dependency-management-deps-audit

18.0k
sickn33sickn33

You are a dependency security expert specializing in vulnerability scanning, license compliance, and supply chain security. Analyze project dependencies for known vulnerabilities, licensing issues, outdated packages, and provide actionable remediation strategies.

132 days ago

wcag-audit-patterns

18.0k
sickn33sickn33

Conduct WCAG 2.2 accessibility audits with automated testing, manual verification, and remediation guidance. Use when auditing websites for accessibility, fixing WCAG violations, or implementing accessible design patterns.

132 days ago

fix-review

3.0k
trailofbitstrailofbits

Verifies that git commits address security audit findings without introducing bugs. This skill should be used when the user asks to "verify these commits fix the audit findings", "check if TOB-XXX was addressed", "review the fix branch", "validate remediation commits", "did these changes address the security report", "post-audit remediation review", "compare fix commits to audit report", or when reviewing commits against security audit reports.

132 days ago

swift-concurrency-expert

2.1k
steipetesteipete

Swift Concurrency review and remediation for Swift 6.2+. Use when asked to review Swift Concurrency usage, improve concurrency compliance, or fix Swift concurrency compiler errors in a feature or file.

132 days ago

swift-concurrency-expert

2.0k
DimillianDimillian

Swift Concurrency review and remediation for Swift 6.2+. Use when asked to review Swift Concurrency usage, improve concurrency compliance, or fix Swift concurrency compiler errors in a feature or file.

132 days ago

openclaw-security-audit

1.8k
openclawopenclaw

Audit OpenClaw configuration for security risks and generate a remediation report using the user's configured LLM.

132 days ago

clawdbot-self-security-audit

1.8k
openclawopenclaw

Perform a comprehensive read-only security audit of Clawdbot's own configuration. This is a knowledge-based skill that teaches Clawdbot to identify hardening opportunities across the system. Use when user asks to "run security check", "audit clawdbot", "check security hardening", or "what vulnerabilities does my Clawdbot have". This skill uses Clawdbot's internal capabilities and file system access to inspect configuration, detect misconfigurations, and recommend remediations. It is designed to be extensible - new checks can be added by updating this skill's knowledge.

132 days ago

responding-to-security-incidents

1.5k
Jeremylongshore Claude Code Plugins Plus Skills Security Incident ResponderJeremylongshore Claude Code Plugins Plus Skills Security Incident Responder

Assists with security incident response, investigation, and remediation. This skill is triggered when the user requests help with incident response, mentions specific incident types (e.g., data breach, ransomware, DDoS), or uses terms like "incident response plan", "containment", "eradication", or "post-incident activity". It guides the user through the incident response lifecycle, from preparation to post-incident analysis. It is useful for classifying incidents, creating response playbooks, collecting evidence, constructing timelines, and generating remediation steps. Use this skill when needing to respond to a "security incident".

132 days ago

detecting-sql-injection-vulnerabilities

1.5k
Jeremylongshore Claude Code Plugins Plus Skills Sql Injection DetectorJeremylongshore Claude Code Plugins Plus Skills Sql Injection Detector

This skill enables Claude to detect SQL injection vulnerabilities in code. It uses the sql-injection-detector plugin to analyze codebases, identify potential SQL injection flaws, and provide remediation guidance. Use this skill when the user asks to find SQL injection vulnerabilities, scan for SQL injection, or check code for SQL injection risks. The skill is triggered by phrases like "detect SQL injection", "scan for SQLi", or "check for SQL injection vulnerabilities".

132 days ago

assisting-with-soc2-audit-preparation

1.5k
jeremylongshorejeremylongshore

This skill assists with SOC2 audit preparation by automating tasks related to evidence gathering and documentation. It leverages the soc2-audit-helper plugin to generate reports, identify potential compliance gaps, and suggest remediation steps. Use this skill when the user requests help with "SOC2 audit", "compliance check", "security controls", "audit preparation", or "evidence gathering" related to SOC2. It streamlines the initial stages of SOC2 compliance, focusing on automated data collection and preliminary analysis.

132 days ago

scanning-database-security

1.5k
Jeremylongshore Claude Code Plugins Plus Skills Database Security ScannerJeremylongshore Claude Code Plugins Plus Skills Database Security Scanner

This skill enables Claude to perform comprehensive database security scans using the database-security-scanner plugin. It is triggered when the user requests a security assessment of a database, including identifying vulnerabilities like weak passwords, SQL injection risks, and insecure configurations. The skill leverages OWASP guidelines to ensure thorough coverage and provides remediation suggestions. Use this skill when the user asks to 'scan database security', 'check database for vulnerabilities', 'perform OWASP compliance check on database', or 'assess database security posture'. The plugin supports PostgreSQL and MySQL.

132 days ago

data-safety-auditor

651
ananddtyagiananddtyagi

Comprehensive data safety auditor for Vue 3 + Pinia + IndexedDB + PouchDB applications. Detects data loss risks, sync issues, race conditions, and browser-specific vulnerabilities with actionable remediation guidance.

132 days ago

remediation

411
incidentfoxincidentfox

Safe remediation actions for Kubernetes. Use when proposing or executing pod restarts, deployment scaling, or rollbacks. Always use dry-run first.

132 days ago

kotlin-concurrency-expert

384
new-silvermoonnew-silvermoon

Kotlin Coroutines review and remediation for Android. Use when asked to review concurrency usage, fix coroutine-related bugs, improve thread safety, or resolve lifecycle issues in Kotlin/Android code.

132 days ago

accessibility-compliance-auditing

376
a5c-aia5c-ai

Evaluate learning materials and educational technology for WCAG 2.1 and Section 508 accessibility compliance, and provide prioritized remediation recommendations.

132 days ago

technical-debt-quantifier

376
a5c-aia5c-ai

Measure, categorize, and prioritize technical debt for migration planning and remediation

132 days ago

sast-analyzer

376
a5c-aia5c-ai

Static Application Security Testing orchestration and analysis. Execute Semgrep, Bandit, ESLint security plugins, CodeQL, and other SAST tools. Parse, prioritize, and deduplicate findings across multiple tools with remediation guidance.

132 days ago

secret-detection-scanner

376
a5c-aia5c-ai

Detect secrets, credentials, and sensitive data in code and configurations. Scan git history for secrets, detect API keys, tokens, passwords, check environment files, monitor CI/CD logs for exposure, generate remediation steps, and track secret rotation status.

132 days ago

docs-accessibility

376
a5c-aia5c-ai

Documentation accessibility validation and remediation. Check WCAG 2.1 compliance, validate alt text, analyze heading hierarchy, verify color contrast, and generate accessibility reports.

132 days ago

wcag

376
a5c-aia5c-ai

WCAG 2.1/2.2 compliance, auditing, and remediation.

132 days ago

accessibility-planning

234
Prorise-coolProrise-cool

Plan accessibility compliance - WCAG 2.2, Section 508, EN 301 549, inclusive design principles, audit planning, and remediation strategies.

132 days ago

sast-semgrep

228
rohunjrohunj

Static application security testing (SAST) using Semgrep for vulnerability detection, security code review, and secure coding guidance with OWASP and CWE framework mapping. Use when: (1) Scanning code for security vulnerabilities across multiple languages, (2) Performing security code reviews with pattern-based detection, (3) Integrating SAST checks into CI/CD pipelines, (4) Providing remediation guidance with OWASP Top 10 and CWE mappings, (5) Creating custom security rules for organization-specific patterns, (6) Analyzing dependencies for known vulnerabilities.

sastsemgrepvulnerability-scanning+4
132 days ago

sca-trivy

228
rohunjrohunj

Software Composition Analysis (SCA) and container vulnerability scanning using Aqua Trivy for identifying CVE vulnerabilities in dependencies, container images, IaC misconfigurations, and license compliance risks. Use when: (1) Scanning container images and filesystems for vulnerabilities and misconfigurations, (2) Analyzing dependencies for known CVEs across multiple languages (Go, Python, Node.js, Java, etc.), (3) Detecting IaC security issues in Terraform, Kubernetes, Dockerfile, (4) Integrating vulnerability scanning into CI/CD pipelines with SARIF output, (5) Generating Software Bill of Materials (SBOM) in CycloneDX or SPDX format, (6) Prioritizing remediation by CVSS score and exploitability.

scatrivycontainer-security+5
132 days ago

qe-a11y-ally

215
proffesor-for-testingproffesor-for-testing

Comprehensive WCAG accessibility auditing with multi-tool testing (axe-core + pa11y + Lighthouse), TRUE PARALLEL execution with Promise.allSettled, graceful degradation, retry with backoff, context-aware remediation, learning integration, and video accessibility. Uses 3-tier browser cascade: Vibium → agent-browser → Playwright+Stealth.

accessibilitywcaga11y+14
132 days ago

a11y-ally

215
proffesor-for-testingproffesor-for-testing

Comprehensive WCAG accessibility auditing with multi-tool testing (axe-core + pa11y + Lighthouse), TRUE PARALLEL execution with Promise.allSettled, graceful degradation, retry with backoff, context-aware remediation, learning integration, and video accessibility. Uses 3-tier browser cascade: Vibium → agent-browser → Playwright+Stealth.

accessibilitywcaga11y+14
132 days ago

security-patterns

210
groupzer0groupzer0

Security vulnerability detection patterns including OWASP Top 10, language-specific vulnerabilities, and remediation guidance. Load when reviewing code for security issues, conducting audits, or implementing authentication/authorization.

132 days ago

doc-generator

196
atholaathola

Generate or remediate documentation with human-quality writing and style adherence. Use when creating new documentation, rewriting AI-generated content, or applying style profiles. Do not use for slop detection only (use slop-detector) or learning styles (use style-learner).

documentationwritinggeneration+2
132 days ago

design-by-contract

132
MicrockMicrock

Automated contract verification, detection, and remediation across multiple languages using formal preconditions, postconditions, and invariants. This skill provides both reference documentation AND execution capabilities for the full PLAN -> CREATE -> VERIFY -> REMEDIATE workflow.

132 days ago

ln-761-secret-scanner

131
levnikolaevichlevnikolaevich

Scans codebase for hardcoded secrets. Returns normalized findings with severity and remediation guidance. Pre-commit hook integration.

132 days ago

security-health-inline

131
maslennikov-igmaslennikov-ig

Inline orchestration workflow for security vulnerability detection and remediation with Beads integration. Provides step-by-step phases for security-scanner detection, priority-based fixing with vulnerability-fixer, and verification cycles.

132 days ago

account-health-framework

96
gtmagentsgtmagents

Use to score accounts, flag risks, and standardize remediation triggers.

132 days ago

variance-analysis

96
gtmagentsgtmagents

Use to attribute forecast vs actual deltas and recommend remediation actions.

132 days ago

confirm-action

87
dandyedandye

Ask the user to confirm before taking a significant action. Use before containment, remediation, or other impactful operations to ensure analyst approval. Presents options and waits for response.

132 days ago

web-performance-seo

82
ZhanlinCuiZhanlinCui

Fix PageSpeed Insights/Lighthouse accessibility "!" errors caused by contrast audit failures (CSS filters, OKLCH/OKLAB, low opacity, gradient text, image backgrounds). Use for accessibility-driven SEO/performance debugging and remediation.

132 days ago

mpm-circuit-breaker-enforcement

80
bobmatnycbobmatnyc

Complete circuit breaker enforcement patterns with examples and remediation

circuit-breakerenforcementpm-required+1
132 days ago

k8s-troubleshooter

79
ahmedasmarahmedasmar

Systematic Kubernetes troubleshooting and incident response. Use when diagnosing pod failures, cluster issues, performance problems, networking issues, storage failures, or responding to production incidents. Provides diagnostic workflows, automated health checks, and comprehensive remediation guidance for common Kubernetes problems.

132 days ago

axe-core Accessibility Automation

71
PramodDuttaPramodDutta

Automated accessibility testing with axe-core integrated into CI pipelines, including custom rule configuration, issue prioritization, and remediation guidance.

axe-coreaccessibilityautomation+2
132 days ago

Infrastructure Drift Detection

71
PramodDuttaPramodDutta

Detecting and testing infrastructure drift between desired state and actual state using automated scanning, alerting, and remediation patterns.

driftinfrastructurecompliance+2
132 days ago

openlark-design-review

67
foxzoolfoxzool

A code design and public API specification review skill for the OpenLark Rust SDK (focused on crates/modules). It systematically checks entry points and API surface design, feature gating, Request/Service/Builder consistency, endpoint taxonomy, Config and error handling, export and documentation synchronization, testing and alerting controls, and generates a prioritized remediation checklist and actionable refactor plans. Trigger keywords: design review, crate design, API design, public API, feature flag, endpoint, Builder/Service, architectural consistency.

132 days ago

container-grype

64
AgentSecOpsAgentSecOps

Container vulnerability scanning and dependency risk assessment using Grype with CVSS severity ratings, EPSS exploit probability, and CISA KEV indicators. Use when: (1) Scanning container images and filesystems for known vulnerabilities, (2) Integrating vulnerability scanning into CI/CD pipelines with severity thresholds, (3) Analyzing SBOMs (Syft, SPDX, CycloneDX) for security risks, (4) Prioritizing remediation based on threat metrics (CVSS, EPSS, KEV), (5) Generating vulnerability reports in multiple formats (JSON, SARIF, CycloneDX) for security toolchain integration.

container-securityvulnerability-scanningsca+5
132 days ago

sca-blackduck

64
AgentSecOpsAgentSecOps

Software Composition Analysis (SCA) using Synopsys Black Duck for identifying open source vulnerabilities, license compliance risks, and supply chain security threats with CVE, CWE, and OWASP framework mapping. Use when: (1) Scanning dependencies for known vulnerabilities and security risks, (2) Analyzing open source license compliance and legal risks, (3) Identifying outdated or unmaintained dependencies, (4) Integrating SCA into CI/CD pipelines for continuous dependency monitoring, (5) Providing remediation guidance for vulnerable dependencies with CVE and CWE mappings, (6) Assessing supply chain security risks and third-party component threats.

scablackduckdependency-scanning+5
132 days ago

container-hadolint

64
AgentSecOpsAgentSecOps

Dockerfile security linting and best practice validation using Hadolint with 100+ built-in rules aligned to CIS Docker Benchmark. Use when: (1) Analyzing Dockerfiles for security misconfigurations and anti-patterns, (2) Enforcing container image security best practices in CI/CD pipelines, (3) Detecting hardcoded secrets and credentials in container builds, (4) Validating compliance with CIS Docker Benchmark requirements, (5) Integrating shift-left container security into developer workflows, (6) Providing remediation guidance for insecure Dockerfile instructions.

dockerhadolintdockerfile+4
132 days ago

iac-checkov

64
AgentSecOpsAgentSecOps

Infrastructure as Code (IaC) security scanning using Checkov with 750+ built-in policies for Terraform, CloudFormation, Kubernetes, Dockerfile, and ARM templates. Use when: (1) Scanning IaC files for security misconfigurations and compliance violations, (2) Validating cloud infrastructure against CIS, PCI-DSS, HIPAA, and SOC2 benchmarks, (3) Detecting secrets and hardcoded credentials in IaC, (4) Implementing policy-as-code in CI/CD pipelines, (5) Generating compliance reports with remediation guidance for cloud security posture management.

iaccheckovterraform+5
132 days ago
ClawiskillClawiskill
Network
Building with
?

Join Clawiskill today. The decentralized skill network for AI Agents.

Registry
70K+
Agent Joins
120K+
Explore Network