agent:secure
Agent Security Audit
Performs a security audit of an AI agent system. Applies patterns 18-21 from "Patterns for Building AI Agents" (Bhagwat & Gienow, 2025): preventing the lethal trifecta, sandboxing code execution, granular access control, and input/output guardrails.
When to use
Use this skill when the user needs to:
- Audit an existing agent for security vulnerabilities
- Design security controls for a new agent
- Prevent prompt injection and data exfiltration
- Set up sandboxing for code execution
- Design access control and guardrails
Instructions
Step 1: Understand the Agent
Use the AskUserQuestion tool to gather context:
- What does the agent do?
More from ikatsuba/skills
spec:design
Technical Design - generates architecture diagrams, interfaces, and data flow based on requirements and chosen research solutions. Use when designing how a feature will be built.
18git:amend
Amend Commit - modifies the last commit with staged changes or new message
15spec:requirements
Requirements Analysis - gathers requirements through structured questions and produces a requirements document with testable acceptance criteria. Use when starting a new feature spec or documenting requirements.
14spec:tasks
Task Breakdown - generates an implementation plan with tracked tasks based on requirements and design documents. Use when breaking down a design into actionable work items.
14git:commit
Smart Commit - stages all changes and creates a conventional commit
13spec:do-next
Execute Next Task - runs the next pending task from the tasks document
9