Use when auditing DevSecOps pipeline and application security posture — workflows, IaC, release artifacts, and code-level security smells — against the bundled rubric at souroldgeezer-audit/docs/security-reference/devsecops.md. Supports quick single-target audits and deep whole-repo audits with conditional MCP live-state probes and configurable cost stance.
This listing is imported from SkillsMP metadata and should be treated as untrusted until upstream source review is completed.
Install skill "devsecops-audit" with this command: npx skills add tommimarkus/skillsmp-tommimarkus-tommimarkus-devsecops-audit
This source entry does not include full markdown content beyond metadata.
This detail page is rendered from real SKILL.md content. Trust labels are metadata-based hints, not a safety guarantee.
Related by shared tags or category signals.
Use when building, extracting, reviewing, rendering, validating, repairing, or looking up ArchiMate® 3.2 OEF XML architecture models, especially layout/runtime checks, readiness review, PNG validation, drift detection, or reverse lookup from code, UI, API, or workflows to Business Processes.
Audit AI agent skills for security vulnerabilities. Use when scanning installed skills against the OWASP Agentic Skills Top 10, checking skills before runnin...
AI runtime security monitoring — context graph analysis, runtime audit log correlation with CVE findings, and vulnerability analytics queries. Use when the u...
Open security scanner for agentic infrastructure — agents, MCP, packages, blast radius, runtime, and trust for package CVEs (OSV, NVD, EPSS, KEV), container...