ersinkoc

Comprehensive AI-powered security scanning suite with 48 skills covering OWASP Top 10, 7 language-specific deep scanners (Go, TypeScript, Python, PHP, Rust, Java, C#), supply chain analysis, infrastructure-as-code scanning, and 3000+ checklist items. Use when you need to run a security audit, find vulnerabilities, scan a PR for security issues, or perform a penetration test on a codebase.

C#/.NET-specific security deep scan

Go-specific security deep scan

Java/Kotlin-specific security deep scan

PHP-specific security deep scan

Python-specific security deep scan

Rust-specific security deep scan

TypeScript/JavaScript-specific security deep scan

Universal meta-skill that bootstraps ANY software project regardless of programming language. Auto-generates 15-30+ hyper-detailed, project-specific coding skills BEFORE writing code. Language-agnostic: works with TypeScript, Python, Go, Rust, Java, C#, Swift, Kotlin, PHP, Ruby, and polyglot projects. AGGRESSIVE version enforcement: EVERY technology version MUST be verified via real-time lookup — never use memorized versions. Generates skills for architecture, security, performance, privacy, testing, error handling, accessibility, observability, data modeling, API design, DevOps. Each skill enforces zero-bug standards with concrete code examples, anti-patterns, and measurable budgets. Triggers on: "bootstrap", "new project", "start project", "create project", "set up", "generate skills" — use BEFORE any code exists.

Acts as a vigilant project manager throughout development, ensuring all code adheres to the project's skill rules. Monitors .claude/skills/ for changes, validates code against active skills, prevents skill drift, enforces pre-commit checks, generates compliance reports, and guides developers back to skill compliance when deviations occur. Activates on every code change, file creation, refactoring, or when developers say "implement", "add feature", "refactor", "fix", or "code review". Must read active skills before any code modification.

Universal multi-agent coordination protocol for AI code assistants. Enables this AI instance to participate in an imece — a coordinated group of agents working on the same codebase. Use this skill ALWAYS when: you see a .imece/ directory in the project, another agent sends you a message, you need to coordinate with other AI agents, the user mentions "imece", "agents", "multi-terminal", "team", or asks you to work with other AI instances. ALWAYS check for .imece/ at the start of every conversation. Works with ANY AI code assistant.

Universal multi-agent coordination protocol for AI code assistants. Enables this AI instance to participate in an imece — a coordinated group of agents working on the same codebase. Use this skill ALWAYS when: you see a .imece/ directory in the project, another agent sends you a message, you need to coordinate with other AI agents, the user mentions "imece", "agents", "multi-terminal", "team", or asks you to work with other AI instances. ALWAYS check for .imece/ at the start of every conversation. Works with ANY AI code assistant.

Documentation-first project planning that produces implementation-ready blueprints and single-shot coding agent prompts. Generates 4 interconnected docs: SPECIFICATION.md, IMPLEMENTATION.md, TASKS.md, BRANDING.md — plus a PROMPT.md prompt for autonomous execution. Includes interactive tech stack selection, design pattern recommendations, and architecture decisions with trade-off analysis. Trigger when user wants to: plan a project, create specs, architect a system, break work into tasks, choose a tech stack, get design pattern advice, generate a coding agent prompt, or do documentation-first development. Phrases: "plan my project", "spec this out", "architect", "help me plan", "what stack should I use", "generate a prompt", "break this into tasks", "project docs", "I want to build X".