stacks/security-devops
For developers who need to ship securely
The only stack featuring Trail of Bits — one of the world's most respected security research firms. Their skill plus Sigma threat hunting rules, web fuzzing, and safe encryption patterns. AWS CDK for infrastructure. Playwright for automated testing. Exclusive to theskills.directory.
Security skills for static analysis with CodeQL/Semgrep, code auditing, and vulnerability detection.
Modern encryption alternative to GPG/PGP with post-quantum support and agent-to-agent communication.
Hunt for security threats using Sigma detection rules — log analysis, threat detection, and incident response.
Expert guidance for ffuf web fuzzing — directory discovery, parameter fuzzing, and vulnerability scanning.
AWS development with CDK best practices, infrastructure patterns, and deployment workflows.
General-purpose browser automation using Playwright for testing, scraping, and workflow automation.
Pressure-test spec documents with LLM reasoning before writing code — catch design flaws early.
Manage local CLI AI agents via tmux — start, stop, monitor, assign tasks, and schedule with cron.
Security requires institutional knowledge that generic AI models don't carry. Trail of Bits is among the world's most respected security research firms — their skill encodes real review patterns, not surface-level checklists. The Security & DevOps stack is the only one that combines this with Sigma threat hunting, web fuzzing, safe encryption, and AWS CDK — all exclusive to theskills.directory.
Developers who need to ship securely — teams with compliance requirements, security engineers doing code review, and DevOps engineers building production infrastructure. Also useful for solo developers who don't have a security team but can't afford to skip security.