ahmad-ubaidillah/security-scanning-security-hardening
aizen-gate/skills-reference/.agent/skills/security-scanning-security-hardening/SKILL.md
Coordinate multi-layer security scanning and hardening across application, infrastructure, and compliance controls.
testing
Updated Mar 28, 2026
$ install --global
skillsauthnpx skillsauth add ahmad-ubaidillah/aizen-gate security-scanning-security-hardeningInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Mar 30, 2026, 9:58 PM57.1s14 files scanned
SKILL.md
- version:
- 4.1.0-fractal
- name:
- security-scanning-security-hardening
- description:
- Coordinate multi-layer security scanning and hardening across application, infrastructure, and compliance controls.
Implement comprehensive security hardening with defense-in-depth strategy through coordinated multi-agent orchestration:
[Extended thinking: This workflow implements a defense-in-depth security strategy across all application layers. It coordinates specialized security agents to perform comprehensive assessments, implement layered security controls, and establish continuous security monitoring. The approach follows modern DevSecOps principles with shift-left security, automated scanning, and compliance validation. Each phase builds upon previous findings to create a resilient security posture that addresses both current vulnerabilities and future threats.]
Use this skill when
- Running a coordinated security hardening program
- Establishing defense-in-depth controls across app, infra, and CI/CD
- Prioritizing remediation from scans and threat modeling
Do not use this skill when
- You only need a quick scan without remediation work
- You lack authorization for security testing or changes
- The environment cannot tolerate invasive security controls
Instructions
- Execute Phase 1 to establish a security baseline.
- Apply Phase 2 remediations for high-risk issues.
- Implement Phase 3 controls and validate defenses.
- Complete Phase 4 validation and compliance checks.
Safety
- Avoid intrusive testing in production without approval.
- Ensure rollback plans exist before hardening changes.
Phase 1: Comprehensive Security Assessment
🧠 Knowledge Modules (Fractal Skills)
1. 1. Initial Vulnerability Scanning
2. 2. Threat Modeling and Risk Analysis
3. 3. Architecture Security Review
4. 4. Critical Vulnerability Fixes
5. 5. Backend Security Hardening
6. 6. Frontend Security Implementation
7. 7. Mobile Security Hardening
8. 8. Authentication and Authorization Enhancement
9. 9. Infrastructure Security Controls
10. 10. Secrets Management Implementation
11. 11. Penetration Testing and Validation
12. 12. Compliance and Standards Verification
13. 13. Security Monitoring and SIEM Integration
Related Skills
ahmad-ubaidillah/angular
development
VerifiedTrustedCommunity
Modern Angular (v20+) expert with deep knowledge of Signals, Standalone Components, Zoneless applications, SSR/Hydration, and reactive patterns.
SKILL.mdUpdated Mar 28, 2026
ahmad-ubaidillah/angular-ui-patterns
development
VerifiedTrustedCommunity
Modern Angular UI patterns for loading states, error handling, and data display. Use when building UI components, handling async data, or managing component states.
SKILL.mdUpdated Mar 28, 2026
ahmad-ubaidillah/angular-state-management
tools
VerifiedTrustedCommunity
Master modern Angular state management with Signals, NgRx, and RxJS. Use when setting up global state, managing component stores, choosing between state solutions, or migrating from legacy patterns.
SKILL.mdUpdated Mar 28, 2026
ahmad-ubaidillah/angular-migration
development
VerifiedTrustedCommunity
Migrate from AngularJS to Angular using hybrid mode, incremental component rewriting, and dependency injection updates. Use when upgrading AngularJS applications, planning framework migrations, or ...
SKILL.mdUpdated Mar 28, 2026