Browse Skills

Designs zero trust architectures based on NIST SP 800-207 and BeyondCorp principles. Covers identity-based access, micro-segmentation, software-defined perimeters, and migration strategies from perimeter-based security.

Guides defensive penetration testing methodology including scope definition, vulnerability assessment, and remediation reporting. Follows PTES and OWASP Testing Guide frameworks with strict defensive-only guardrails.

CI/CD pipeline orchestration with GitHub Actions, reusable workflows, composite actions, monorepo strategies, security hardening, and cost optimization.

Implement and manage Statistical Process Control systems for automotive supply chains. Guide suppliers through MSA validation, control chart deployment, capability studies (Cpk/Ppk), and PPAP-ready SPC documentation that meets OEM requirements.

Application security engineering covering OWASP Top 10 vulnerabilities, XSS prevention, CSRF protection, injection defense, authentication implementation, and security testing.

Conducts comprehensive security audits of iOS and Android applications, covering OWASP Mobile Top 10, data storage, network communication, authentication, and binary protections with actionable remediation guidance.

Design production-grade Redis caching architectures including data structure selection, caching patterns (cache-aside, write-through, write-behind), eviction policies (LRU, LFU, volatile), TTL strategies, Redis Cluster and Sentinel topologies, Lua scripting, Redis Streams for event processing, and memory optimization techniques.

Designs and implements WCAG 2.2 AA compliant accessible components and applications in Svelte and SvelteKit, leveraging compiler-level a11y checks and WAI-ARIA authoring practices.

End-to-end web application development guidance covering frontend-backend integration, full-stack frameworks, deployment pipelines, monorepo architecture, and the complete journey from idea to production.

Design and implement production-grade MCP servers with well-crafted tools, resources, and prompts that enable AI assistants to interact with external services securely and effectively.

Optimize Core Web Vitals for mobile devices, with special focus on low-end Android hardware, adaptive loading strategies, and device-tier-aware performance budgets.

Design and implement event-sourced systems with CQRS, domain-driven design, and production-grade operational patterns for complex business domains.

Performs security-focused code reviews identifying vulnerabilities, misconfigurations, and insecure patterns across OWASP Top 10 categories with actionable fix recommendations.

Design and build robust event-driven architectures and stream processing systems — from event modeling and schema design to Kafka/Flink implementation, failure handling, and operational observability at scale.

Guides you through Pythonic code patterns, type hints, async/await, modern packaging, testing with pytest, and clean architecture. Helps you write idiomatic, maintainable, and well-typed Python code.

Designs and implements Zustand state management for React applications with type-safe stores, optimal selector patterns, middleware composition, and scalable architecture for apps of any complexity.

Design, build, and deploy production-grade serverless functions on AWS Lambda, Vercel Functions, and Cloudflare Workers with optimized cold starts, security, and cost efficiency.

Comprehensive testing guidance covering unit tests, integration tests, E2E tests, TDD, test architecture, mocking strategies, CI testing, and quality assurance practices for building reliable software.

Designs structured logging architectures with consistent log schemas, severity levels, aggregation pipelines, search patterns, retention policies, and compliance-aware log management strategies.

Cross-platform iOS and Android development with Expo, React Native new architecture, native modules, and production deployment pipelines for app stores.

Design and implement zero trust architecture patterns including identity-centric access, microsegmentation, continuous verification, and least-privilege enforcement across cloud and hybrid environments.

Designs production-grade Kubernetes Helm v3 charts with expert-level Go templating, values.yaml architecture, dependency management, chart testing strategies, security scanning, and GitOps integration patterns.

Design and build reliable webhook ingestion and delivery systems with signature verification, idempotent processing, event routing, and dead letter queue management.

Design CDN architectures with edge functions, caching strategies, cache invalidation patterns, and geographic routing for optimal web performance and scalability.