Cryptographic key lifecycle management orchestration including generation, rotation, and destruction across key management systems
Generate OpenVEX / CycloneDX VEX attestations from `.vulnetix/memory.yaml` triage decisions, optionally sign with cosign, optionally upload to Vulnetix and post to a GitHub PR.
Post-quantum cryptography evaluation skill for quantum-safe migration
Encrypt and decrypt files with age (FiloSottile/age), a simple, modern encryption tool with small explicit keys, post-quantum support, no config options, and UNIX-style…
ZKP Protocol Engineer for 0xagentprivacy. Activates when the user needs zero-knowledge proof design, circuit architecture (Groth16, PLONK, Nova), mixer protocols, recursive…
Zero-knowledge proof systems for 0xagentprivacy. Activates when discussing ZKP circuits (Groth16, PLONK, Nova), proof composition, Privacy Pool cryptography, reconstruction…
Quantum threat response persona. Activates when discussing post-quantum security, the 1200-qubit threshold, secp256k1 vulnerability, dragon flight conditions, or the transition…
General AI Supply Chain Security Skill for any AI agent platform in 2026. Detects the exact class of attack that hit Vercel (and every similar real threat): over-privileged…
Monitor Certificate Transparency logs using crt.sh and Certstream to detect phishing domains, lookalike certificates,
Certificate Lifecycle Manager - Auto-activating skill for Security Advanced. Triggers on: certificate lifecycle manager, certificate lifecycle manager Part of the Security…
Zero-knowledge proof circuit development using circom. Use when implementing arithmetic circuits for zkSNARKs, including circuit design, constraint verification, witness…
Hardware Security Modules (HSMs) are tamper-resistant physical devices that safeguard cryptographic keys and
Decision-aid skill for choosing cryptographic primitives (AEAD, KDF, MAC, signature) and identifying anti-patterns (CBC-without-MAC, ad-hoc KDF, key reuse, PBKDF2-on-high-entropy,…
Comprehensive cryptography guidance covering encryption algorithms, password hashing, TLS configuration, key management, and post-quantum considerations.
Email operations skill for sending, fetching, and reading emails via IMAP/SMTP. Uses curl with OpenSSL/LibreSSL for reliable TLS compatibility with Tencent Enterprise Mail and…
Validate encryption implementations and cryptographic practices. Use when reviewing data security measures.
Manages GPG key lifecycle and file encryption operations using GnuPG CLI and GPGME library. Handles keyserver synchronization, trust model management, and automated encrypted…
AES (Advanced Encryption Standard) is a symmetric block cipher standardized by NIST (FIPS 197) used to protect
Envelope encryption is a strategy where data is encrypted with a data encryption key (DEK), and the DEK itself
RSA (Rivest-Shamir-Adleman) is the most widely deployed asymmetric cryptographic algorithm, used for digital
Implement software supply chain integrity verification for container builds using the in-toto framework to create
Key Rotation Manager - Auto-activating skill for Security Advanced. Triggers on: key rotation manager, key rotation manager Part of the Security Advanced skill category.
Use when implementing client-side encryption, master key derivation, vault key management, secret storage, or any cryptographic operation for KeyArc.
Zero-knowledge circuit design with Noir (Aztec's ZK DSL). TRIGGER when: working with .nr files, Nargo.toml, ZK circuits/proofs, Aztec contracts, zoir extension, or discussing…
Integrate Hardware Security Modules (HSMs) using PKCS#11 interface for cryptographic key management, signing
Assesses organizational readiness for post-quantum cryptography migration per NIST FIPS 203/204/205 standards.
Verifies container image signatures and SBOMs using Sigstore Cosign and Rekor transparency log. Enforces supply chain security policies by validating keyless signatures against…
Activate when reviewing or modifying dependency resolution, lockfile schema, package downloaders, signature/integrity checks, file integration cleanup, or anything that could…
Validates Tekton pipeline supply chain security using Sigstore cosign verification and SLSA provenance checks.
Zero-knowledge circuit development using Circom and Noir languages. Supports constraint optimization, ZK-friendly cryptographic primitives, proof generation (Groth16, PLONK), and…
This skill enables Claude to encrypt and decrypt data using various algorithms provided by the encryption-tool plugin.
Use this skill when reviewing Sigstore Cosign supply chain security for Kubernetes workloads. Trigger when the user asks whether images are properly signed, whether Kyverno…
GPG (GNU Privacy Guard) encryption and signing reference. Covers key generation (Ed25519/RSA), export/import, keyservers, file encryption (symmetric + asymmetric), git commit…