[exit dev]

security-audit

193 agents ranked25 in quarantine
rankcapabilitysource
#51
quarantine

Gate GKE deployment mutations, node pool upgrades, and cluster control-plane version changes against rollback posture and PDB audit before any production change. Prevents irreversible node pool upgrades from proceeding without PodDisruptionBudget verification, surge settings…

Raishin/vanguard-frontier-agentic
@Raishin
#52
quarantine

Gate IAM binding mutations, org policy changes, and Service Account key creation against the GCP resource hierarchy. IAM bindings at org level propagate to all folders and projects — this guard enforces blast-radius assessment, audit-trail confirmation, and explicit authority…

Raishin/vanguard-frontier-agentic
@Raishin
#53
quarantine

Gate Cloud KMS key version destruction and key ring deletion against a complete CMEK dependency audit. All Cloud SQL, GCS, BigQuery, Compute Engine disk, and Secret Manager resources encrypted by the key version become permanently inaccessible once destruction completes — this…

Raishin/vanguard-frontier-agentic
@Raishin
#54
quarantine

Investigate GCP network issues by analyzing VPC Flow Logs, firewall logs, Cloud NAT logs, threat logs, and networking metrics. Diagnose connectivity, packet loss, top talkers, and firewall block events using BigQuery-first methodology and Cloud Monitoring fallback. Use when…

Raishin/vanguard-frontier-agentic
@Raishin
#55
quarantine

Govern GCP Artifact Registry — container image signing via Binary Authorization, vulnerability scanning via Container Analysis, repository IAM least privilege, artifact retention policies, and supply chain security posture.

Raishin/vanguard-frontier-agentic
@Raishin
#56
quarantine

Audit and govern Cloud KMS key lifecycles, Secret Manager secrets, CMEK configurations across GCP services (Cloud SQL, BigQuery, GCS, Compute), key rotation schedules, and envelope encryption patterns. Prefer gcp-iam-least-privilege-review for IAM binding review on KMS keys and…

Raishin/vanguard-frontier-agentic
@Raishin
#57
quarantine

Review GCP security posture via Security Command Center findings, CIS GCP Benchmark gaps, org policy enforcement baseline, Assured Workloads controls, Binary Authorization, and CSPM recommendations. Prefer gcp-iam-least-privilege-review for IAM binding surgery and…

Raishin/vanguard-frontier-agentic
@Raishin
#58
quarantine

Evaluate GCP workload security posture against the Google Cloud Well-Architected Framework security pillar — covering zero trust, shift-left security, preemptive cyber defense, AI security governance, and regulatory compliance. Use when assessing architecture security…

Raishin/vanguard-frontier-agentic
@Raishin
#59
quarantine

> Agent for `alibaba-actiontrail-audit-analyst`. Query ActionTrail management API events, build governance audit reports, create SLS-based compliance evidence trails, detect anomalous admin activity.

Raishin/vanguard-frontier-agentic
@Raishin
#60
quarantine

> Agent for `alibaba-china-compliance`. Advise on MLPS 2.0 (GB/T 22239-2019), Data Security Law (DSL), Cybersecurity Law (CSL), PIPL, ICP filing requirements, and cross-border data transfer obligations for mainland China (CN-*) workloads.

Raishin/vanguard-frontier-agentic
@Raishin
#61
quarantine

> Agent for `alibaba-daily-operations-briefing-coordinator`. Coordinate the daily Alibaba Cloud operations standup — cost delta from Cost Manager, ActionTrail anomaly review, ACK pod failure triage, quota utilization warnings, Security Center finding review, and action item…

Raishin/vanguard-frontier-agentic
@Raishin
#62
quarantine

> Agent for `alibaba-ram-iam-review`. Audit RAM users, groups, roles, and policies; review STS token lifecycle; assess Resource Directory permission boundaries; review Control Policy statements for gaps or over-privilege.

Raishin/vanguard-frontier-agentic
@Raishin
#63
quarantine

> Agent for `alibaba-security-center-hardening`. Harden Alibaba Cloud security posture via Security Center (threat detection, vulnerability scanning), WAF, Anti-DDoS Pro, Cloud Firewall (north-south and east-west), and Network Traffic Analysis (NTA).

Raishin/vanguard-frontier-agentic
@Raishin
#64
quarantine

> Agent for `alibaba-serverless-production-readiness`. Review Function Compute 3.0 (FC3), SAE (Serverless App Engine), and EDAS for production readiness — cold start optimization, VPC binding, RAM role injection, ARMS distributed tracing, security group rules, concurrency…

Raishin/vanguard-frontier-agentic
@Raishin
#65
quarantine

> Agent for `alibaba-waf-security-review`. Assess Alibaba Cloud workload security posture: RAM least-privilege, VPC isolation, KMS/HSM encryption, Cloud Security Center threat detection, ActionTrail audit, WAF/Anti-DDoS web protection, and Chinese regulatory compliance (MLPS…

Raishin/vanguard-frontier-agentic
@Raishin
#66
quarantine

> Agent for `huawei-iac-change-safety-review`. Review Terraform and RFS (Resource Formation Service) changes targeting Huawei Cloud — blast radius analysis, resource deletion detection, Organizations SCP cascade scope, cross-stack dependency impact, state file security, and…

Raishin/vanguard-frontier-agentic
@Raishin
#67
quarantine

> Agent for `huawei-iam-least-privilege-review`. Audit IAM fine-grained policies, SCP (Service Control Policy) statements at Organizations level, agency trust relationships, and enterprise project permission boundaries for Huawei Cloud.

Raishin/vanguard-frontier-agentic
@Raishin
#68
quarantine

> Agent for `huawei-secmaster-security-operations`. Drive SecMaster SIEM/SOAR threat detection, HSS host risk baseline, CFW policy review, WAF rule governance, Anti-DDoS EIP binding audit, and VSS vulnerability scan management on Huawei Cloud.

Raishin/vanguard-frontier-agentic
@Raishin
#69
quarantine

> Agent for `huawei-waf-security-review`. Assess Huawei Cloud workload security posture via IAM SCP governance, VPC isolation, DEW key management, SecMaster SIEM/SOAR, and MLPS 2.0 technical controls.

Raishin/vanguard-frontier-agentic
@Raishin
#70
quarantine

> Agent for oci-cloud-guard-responder. Triage and govern OCI Cloud Guard problems, targets, responder recipes, detector findings, and security remediation safely. Use for Cloud Guard reviews, problem prioritization, remediation planning, and compliance evidence when official…

Raishin/vanguard-frontier-agentic
@Raishin
#71
quarantine

> Agent for `oci-live-autonomous-db-lifecycle-guard`. Guard Autonomous Database scale, start, stop, clone, and terminate operations with protection-tag check, wallet backup, and connection-string audit before any lifecycle mutation.

Raishin/vanguard-frontier-agentic
@Raishin
#72
quarantine

> Agent for `oci-live-iam-policy-compartment-guard`. Guard OCI IAM policy changes and dynamic group mutations using verb-hierarchy audit and tag-condition review before write.

Raishin/vanguard-frontier-agentic
@Raishin
#73
quarantine

> Agent for `oci-live-network-security-rule-guard`. Guard live OCI Security List and NSG rule changes with current-state capture, open-internet and sensitive-port detection, stateful/stateless assessment, subnet criticality audit, and explicit approval before ingress or egress…

Raishin/vanguard-frontier-agentic
@Raishin
#74
quarantine

> Agent for `oci-live-resource-manager-stack-guard`. Guard OCI Resource Manager plan, apply, and destroy jobs with drift detection evidence, state-version audit, and stack-lock awareness before any mutation.

Raishin/vanguard-frontier-agentic
@Raishin
#75
quarantine

> Agent for oci-network-architect. Design, review, and troubleshoot OCI networking with safe compartment/region scoping, least-privilege network access, VCN/subnet/routing/security-list/NSG analysis, and evidence-based MCP or CLI discovery.

Raishin/vanguard-frontier-agentic
@Raishin