sermilion/bill-kotlin-code-review-security
platform-packs/kotlin/code-review/bill-kotlin-code-review-security/SKILL.md
Use when reviewing secrets handling, auth/session safety, sensitive data exposure, and transport/storage security in Kotlin code. Use when user mentions secrets, auth tokens, encryption, sensitive data, or security review in Kotlin code.
$ install --global
skillsauthnpx skillsauth add sermilion/mobile-development-plugin bill-kotlin-code-review-securityInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: May 9, 2026, 5:53 AM300.4s5 files scanned
SKILL.md
- name:
- bill-kotlin-code-review-security
- description:
- Use when reviewing secrets handling, auth/session safety, sensitive data exposure, and transport/storage security in Kotlin code. Use when user mentions secrets, auth tokens, encryption, sensitive data, or security review in Kotlin code.
Descriptor
Governed skill: bill-kotlin-code-review-security
Family: code-review
Platform pack: kotlin (Kotlin)
Area: security
Description: Use when reviewing Kotlin changes for secrets handling, auth, and sensitive-data exposure.
Execution
Follow the instructions in content.md.
Ceremony
Follow the shell ceremony in shell-ceremony.md.
When review reporting applies, follow review-orchestrator.md.
When telemetry applies, follow telemetry-contract.md.
Related Skills
sermilion/bill-editorial-assignment-desk
development
VerifiedTrustedCommunity
Use when running a governed editorial assignment desk from Readian recommendations through candidate selection and source-backed story packs.
6SKILL.mdUpdated May 3, 2026
sermilion/bill-unit-test-value-check
testing
VerifiedTrustedCommunity
Use when reviewing unit tests in a file, current changes, or a commit to flag low-value, tautological, or coverage-only tests that do not validate real behavior. Use when user mentions check test quality, review tests, tautological tests, weak tests, or coverage-padding.
6SKILL.mdUpdated Apr 25, 2026
sermilion/bill-skill-remove
data-ai
VerifiedTrustedCommunity
Use when removing an existing skill or platform skill set and cleaning up agent installs, manifests, and supporting links.
6SKILL.mdUpdated Apr 25, 2026
sermilion/bill-quality-check
development
VerifiedTrustedCommunity
Use when you want a generic quality-check entry point that detects the dominant stack in scope and delegates to the matching stack-specific quality-check skill. Use when user mentions run checks, validate, lint, format, quality check, or run quality.
6SKILL.mdUpdated Apr 25, 2026