惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

Hacker News: Ask HN
Hacker News: Ask HN
WordPress大学
WordPress大学
H
Help Net Security
小众软件
小众软件
N
Netflix TechBlog - Medium
C
Check Point Blog
量子位
Last Week in AI
Last Week in AI
GbyAI
GbyAI
Martin Fowler
Martin Fowler
M
MIT News - Artificial intelligence
博客园 - 聂微东
Engineering at Meta
Engineering at Meta
让小产品的独立变现更简单 - ezindie.com
让小产品的独立变现更简单 - ezindie.com
J
Java Code Geeks
D
DataBreaches.Net
Project Zero
Project Zero
P
Proofpoint News Feed
T
Threat Research - Cisco Blogs
Security Latest
Security Latest
Cisco Talos Blog
Cisco Talos Blog
Recorded Future
Recorded Future
I
Intezer
L
Lohrmann on Cybersecurity
Cyberwarzone
Cyberwarzone
博客园_首页
C
Cyber Attacks, Cyber Crime and Cyber Security
L
LangChain Blog
P
Palo Alto Networks Blog
V
V2EX
D
Darknet – Hacking Tools, Hacker News & Cyber Security
T
The Exploit Database - CXSecurity.com
The Hacker News
The Hacker News
Blog — PlanetScale
Blog — PlanetScale
G
GRAHAM CLULEY
T
The Blog of Author Tim Ferriss
C
Cisco Blogs
The Register - Security
The Register - Security
L
LINUX DO - 热门话题
P
Privacy & Cybersecurity Law Blog
Scott Helme
Scott Helme
F
Full Disclosure
博客园 - 司徒正美
Recent Announcements
Recent Announcements
IT之家
IT之家
CTFtime.org: upcoming CTF events
CTFtime.org: upcoming CTF events
Attack and Defense Labs
Attack and Defense Labs
Cloudbric
Cloudbric
Help Net Security
Help Net Security
The Last Watchdog
The Last Watchdog

Hacker News - Newest: "AI"

AI can't read an investor deck AI as an attorney? Student uses ChatGPT, Gemini to sue UW over alleged racial discrimination Hacking MCP Servers in AI Systems – The Rug Pull: Tool Changes After Approval GitHub - MeepCastana/KubeezCut: Free Web based video editor GitHub - GenAI-Gurus/awesome-eu-ai-act: Curated tools, official sources, OSS, templates, and guides for EU AI Act compliance. Can AI judge journalism? A Thiel-backed startup says yes, even if it risks chilling whistleblowers Coming soon: 10 Things That Matter in AI Right Now DARPA built an AI to fact-check enemy weapons claims What explains heterogeneity in AI adoption? When AI Meets Muscle: Context-Aware Electrical Stimulation Promises a New Way to Guide Human Movements - Department of Computer Science AI Changed How We Build. It Did Not Change What Matters. Linux rules on using AI-generated code - Copilot is OK, but humans must take 'full responsibility for the… Meta spins up AI version of Mark Zuckerberg to engage with employees Code Mode: Let Your AI Write Programs, Not Just Call Tools | TanStack Blog GitHub - Delavalom/graft: Go framework for building AI agents. Type-safe tools, multi-provider (OpenAI, Anthropic, Gemini, Bedrock), zero vendor SDKs. India's TCS tops estimates, says new AI models did not dent services demand Gen Z's fading AI hype Strong feeling: we are in a folded AI reality GitHub - machinarii/total-recall-catalog: A reference catalog of latest knowledge retrieval, memory & RAG systems GitHub - mensfeld/code-on-incus: Give each AI agent its own isolated machine with root, Docker, and systemd. Active defense detects and stops threats automatically.. Quantization, LoRA, and the 8% Problem: Benchmarking Local LLMs for Production AI Iran war: We spoke to the man making Lego-style AI videos that experts say are powerful propaganda Powell, Bessent discussed Anthropic's Mythos AI cyber threat with major U.S. banks GitHub - immartian/bellamem: Persistent belief-graph memory for AI agents. Retrieves decisive context by importance — not recency, not RAG, not /compact. recursive-mode: The Repo-Native Operating System for AI Engineering After the attack on Sam Altman's home, will AI CEO's go on the offensive? The biggest advance in AI since the LLM Opus 4.6 vs GPT 5.4 One Prompt Unity World Generation Test “AI polls” are fake polls Client Challenge Can AI be a 'child of God'? Inside Anthropic's meeting with Christian leaders How to Switch AI Chatbots and Why You Might Want To GitHub - MattMessinger1/agentic_refund_guardrail: Safe refund policy layer for AI agents — Python + TypeScript. Same behavior, shared tests. Adam/papers/emergent_values_whitepaper.md at master · strangeadvancedmarketing/Adam Ask HN: How do you stop playing 20 questions with your AI coding tools How far can automation and AI support psychotherapy? - @theU GitHub - stagas/rtdiff: realtime git diff gui and AI-assisted commits A Mac Studio for Local AI — 6 Months Later A History of the Early Years of AI at the University of Edinburgh Why AI Coding Tools Still Feel Stuck on Localhost MSN AI Datacenters Are Becoming Strategic Targets twitter.com Penn Researchers Use AI to Surface Unreported GLP-1 Side Effects in Reddit Posts Show HN: MoodSense AI (ML and FastAPI and Gradio, Deployed on Hugging Face) Moodsense Ai - a Hugging Face Space by aman179102 AI models are terrible at betting on soccer—especially xAI Grok GitHub - xialeistudio/echoic GitHub - HimashaHerath/github-dev-wrapped: AI-powered weekly GitHub activity reports deployed to GitHub Pages GitHub - alejandrobalderas/claude-code-from-source: Architecture, patterns & internals of Anthropic's AI coding agent — reverse-engineered from source maps AI and Tech brief: Ireland ascendant GitHub - Titovilal/context0: Context0 - Never Surrender Training for a Marathon with an AI Coach: What Worked and What Didn't Cyber Pulse: Agentic Intel - Apps on Google Play I Built an AI PR Reviewer That Catches Bugs by Not Looking for Bugs Gen Z workers are so fearful AI will take their job they’re intentionally sabotaging their company’s AI rollout | Fortune How AI Is Reimagining the Game of Golf–For Both Players and Courses GitHub - nattergabriel/reseed: A CLI tool for managing and distributing agent skills across projects Is SVG the final frontier? My AI workflow evolved from prompts to a near-autonomous workflow MLSharp Help - 3DGS Viewer & Generator I put my cognitive field based AI's runtime on GitHub Is Numble the first AI-proof game? A3: Kubernetes for autonomous AI agent fleets | Emergent Principles Deepali Vyas ("The Elite Recruiter") GitHub - msmarkgu/RelayFreeLLM: A restful API designed to route user prompts to various AI model providers. Unionized ProPublica staff are on strike over AI, layoffs, and wages Unleashing the Advantage of Quantum AI We're heading for an AI-fueled 'dementia crisis,' brain scientist warns The AI-Assisted Breach of Mexico's Government Infrastructure [pdf] GitHub - stef41/lmscan: 🔍 Detect AI-generated text and fingerprint which LLM wrote it. Open-source GPTZero alternative. Zero dependencies, works offline. MSN GitHub - visionscaper/collabmem: Enabling long-term collaboration with Agentic AI - building up episodic and world model memory over time with in-context awareness We gave an AI a 3 year retail lease in SF and asked it to make a profit | Andon Labs AI Code is Hollowing Out Open Source, and Maintainers are Looking the Other Way What leaked "SteamGPT" files could mean for the PC gaming platform's use of AI AI is the boss at this retail store. What could go wrong? GitHub - Wuzu11517/agentic-proxy: Local proxy meant to help reduce With Drones, Geophysics and ArtificiaI Intelligence, Researchers Prepare to Do Battle Against Land Mines A Single Operator, Two AI Platforms, Nine Government Agencies: The Full Technical Report 在 Steam 上购买 FriedrichAI: Offline AI 立省 10% GitHub - inevolin/resume-cli: Hit Claude usage limits? Resume any AI coding session elsewhere. Switch tools at zero friction. GitHub - atripati/ark: AI Runtime Kernel — a context operating system for AI agents. Eliminates tool bloat, loads only what’s needed, and gives LLMs their reasoning space back. How to Build a Secure AI PR Reviewer with Claude, GitHub Actions, and JavaScript This Startup Wants You to Pay Up to Talk With AI Versions of Human Experts Intel Arc Pro B70 Brings 32GB VRAM to Local AI for $949 WordPress 7.0: The Good, the AI, and the Still Missing AI on the couch: Anthropic gives Claude 20 hours of psychiatry IatroBench: Pre-Registered Evidence of Iatrogenic Harm from AI Safety Measures AI Agents Know About Supabase. They Don't Always Use It Right. The history and future of AI at Google, with Sundar Pichai Inside an AI‑enabled device code phishing campaign How Meta Used AI to Map Tribal Knowledge in Large-Scale Data Pipelines AI for Systems: Using LLMs to Optimize Database Query Execution Forecasting the Economic Effects of AI Introducing Tinker: Play with AI, bring your ideas to life AI sheds light on an ancient gaming mystery People really hate AI but not as much as Iran—or Democrats | Fortune What is an AI Product Engineer? Phoebe Gates wants her $185 million AI startup to succeed with 'no ties to my privilege or my last name': 'I have a chip on my shoulder' | Fortune
GitHub - danygiguere/audit-skills: Language- and framework-agnostic audit checklists for AI coding agents — security, correctness, and operability. Works with Claude Code, GitHub Copilot, Cursor, Codex CLI, OpenCode, and any agent that can read files.
danygiguere · 2026-06-15 · via Hacker News - Newest: "AI"

License: MIT Version: v0.2.2 Validate Format: Agent Skills Audits: 30 Works with: Claude Code · Copilot · Cursor · Codex

Language- and framework-agnostic audit checklists for AI coding agents — security, correctness, and operability. Works with Claude Code, GitHub Copilot, Cursor, Codex CLI, OpenCode, and any agent that can read files.

Every checklist is written as invariants and detection smells, not framework APIs, so the same content audits a Rails app, a Spring service, or an Express API — the agent supplies the framework-specific translation.

Demo

/audit flags the IDOR, the SQL injection, and the writable is_admin field in a sample Flask handler, each with a severity and a fix

/audit on a 20-line money handler — six bugs a static-analysis scanner can't see, because each takes reasoning about ownership, concurrency, and retries, not pattern-matching. Every one flagged, with severity and a fix.

What's inside

  • AGENTS.md — a one-page digest of all 30 invariants; copy its content into your project's AGENTS.md so every agent has it in context.
  • .agents/skills/audit/ — the router skill, with all 30 checklists and remediation patterns bundled under references/ (four categories: access & data security, input/API, correctness, operability).
  • .agents/skills/audit-* — thin per-topic wrapper skills so each checklist is individually invocable (/audit-idor, /audit-injection, /audit-fix-authz, …). Everything this package installs starts with audit, so it stays grouped among your other skills.

The audits

/audit runs the full audit — it identifies what the code does and applies every matching checklist below. Each topic is also individually invocable (click through to read the checklist itself).

Works with any language or framework. Each checklist names eight common ecosystems in its concept glossary (Rails, Laravel, Django, Spring, Node, Vapor, .NET, Go) — those are recognition shortcuts, not a support list. The invariants and detection smells are framework-free, so the audits apply equally to Phoenix, FastAPI, Ktor, or your in-house stack: the agent supplies the translation.

Access & data security

Audit Checks for
/audit-authorization Server-side permission checks at the point of action — privilege escalation, UI-only gating, checks on read but not on mutate
/audit-authn-session Login, logout, and reset flows — session fixation, account enumeration, token expiry and single-use, remember-me storage
/audit-idor Resources fetched or mutated by a request-supplied ID without verifying the requester may touch them
/audit-data-exposure Over-exposed responses, errors, and logs — whole-model serialization, stack traces, PII
/audit-crypto Password hashing, token randomness, constant-time comparison, homemade crypto, key handling
/audit-output-encoding XSS — user data rendered into HTML, JS, CSS, URLs, headers, or emails without context-appropriate encoding
/audit-tenant-isolation Cross-tenant leakage — unscoped queries, tenant-less cache keys, background jobs crossing tenants
/audit-csrf State-changing endpoints on cookie/session auth without CSRF token or origin verification
/audit-mass-assignment Request payloads bound wholesale onto models — writable role/owner/balance fields, denylists instead of allowlists

Input & API

Audit Checks for
/audit-injection SQL/NoSQL, command, template, and path injection — input concatenated into queries, shells, or templates
/audit-config Insecure configuration — debug in production, permissive CORS, missing security headers, cookie flags
/audit-secrets Hardcoded credentials, secrets in logs or version control, overly broad keys, no rotation path
/audit-api-validation Boundary validation — types, bounds, allowed fields, trusting client-computed values like prices or roles
/audit-file-handling Path traversal, unvalidated uploads, missing size limits, files served from the web root, zip-slip
/audit-ssrf Server-side requests to user-influenced URLs — allowlists, private IP ranges, redirect re-validation; includes open redirects
/audit-parser-differentials Inputs a validator accepts but the consumer reads differently — unanchored regexes, startswith allowlists, two URL parsers, validate-then-reparse

Correctness

Audit Checks for
/audit-atomicity Multi-store writes without a transaction — partial state surviving failures
/audit-idempotency Handlers that misbehave when run twice — webhooks, payments, queue redelivery, double submits
/audit-background-work Jobs and consumers — unbounded retries, poison messages, missing timeouts, duplicate or out-of-order delivery
/audit-state-management Race conditions — check-then-act on shared state without locks, atomic primitives, or constraints
/audit-exception-handling Swallowed errors, blanket catches, lost causes, missing cleanup, and wrong HTTP statuses (404 vs 403, 401, 422, 409)
/audit-discarded-async Fire-and-forget bugs — promises, futures, or reactive publishers created but never awaited, returned, or composed; bare subscribe; cold writes that silently never run
/audit-cardinality Operations assuming a query matches one row — UPDATE/DELETE on a non-unique column fanning out, findOne/.single() on non-unique fields, columns treated as unique without a DB constraint

Operability

Audit Checks for
/audit-nplus1 Queries — or HTTP/cache calls — made inside loops over collections
/audit-observability Silent failures — swallowed errors, logs without identifiers, no metric or alert path
/audit-migration-safety Schema changes that lock tables, destructive changes without expand-contract, unbatched backfills
/audit-resource-limits Unbounded work from input — missing pagination, size caps, rate limits, catastrophic regex
/audit-blocking-io-async Blocking calls on event loops or coroutines, CPU work on the scheduler, sync-over-async, missing timeouts
/audit-schema-design Missing indexes on FK columns and hot paths, ORM-only relationships without real foreign keys, defaulted ON DELETE, integrity rules only in app code, float money
/audit-statelessness State that breaks with a second replica or a deploy — in-memory sessions and counters, static mutable state, local-disk uploads, process-local locks and schedulers

Fixes

Skill Applies
/audit-fix-authz Remediation patterns for authorization, IDOR, and tenant-isolation findings — scoped queries, policy objects, deny-by-default
/audit-fix-async Remediation patterns for correctness findings — transactions, outbox, idempotency keys, locking, bounded retries
/audit-fix-observability Remediation patterns for observability gaps — structured logging, correlation IDs, RED metrics, symptom-based alerts

Install

Copy the .agents folder into your project — that's the whole install (it's just markdown; nothing executes):

git clone --depth 1 https://github.com/danygiguere/audit-skills /tmp/audit-skills && cp -R /tmp/audit-skills/.agents your-project/

Cursor can also install directly from the repo link, and if you use the skills CLI: npx skills add danygiguere/audit-skills --all.

Add to your AGENTS.md

This repo's AGENTS.md is the one-page digest of all 30 invariants. Copy its content into your project's AGENTS.md (append it if you already have one — never replace yours): merged there, it gives every agent ambient awareness of the invariants on every prompt; without it, the skills only activate when triggered. Its routing table points at the installed skills folder.

Claude Code note: Claude Code does not yet read .agents/skills/ (anthropics/claude-code#31005). Bridge it with:

mkdir -p .claude && ln -s ../.agents/skills .claude/skills
echo '@AGENTS.md' > CLAUDE.md          # if you don't already have a CLAUDE.md

Alternative: bring your project here

Instead of copying the skills into every project, you can clone audit-skills once and drop your projects inside the projects/ folder — it is gitignored, so your code never shows up in git status and a git pull (or git checkout vX.Y) updates the skills without touching anything you put there.

git clone https://github.com/danygiguere/audit-skills
# drop any project you want to audit inside projects/
cp -R /path/to/myproject audit-skills/projects/myproject

Then audit from inside this repo:

/audit projects/myproject

To stay current: git pull — your projects are untouched.

This is useful when you want to audit a repo you don't own or don't want to modify, or when you'd rather maintain one central copy of the skills instead of one per project.

Use

  • Automatic — ask your agent to "review this endpoint" / "audit this diff"; the skills trigger on their descriptions.
  • By command/audit for a full audit, or per topic: /audit-idor, /audit-injection, /audit-atomicity, … All of them audit your current diff by default; name a file, folder, or branch to audit something else.
  • By name — "run the idempotency checklist on this webhook handler".
  • Fixes — after findings are confirmed: /audit-fix-authz, /audit-fix-async, /audit-fix-observability (see "How fixes work").

How fixes work

Audits and fixes are deliberately separate steps. /audit and the audit-* checklists only find and report — they never change code. Fixing happens when you ask for it: say "fix those" after a report, or run an audit-fix-* command.

Every finding has a fix available; what differs is where it lives:

Most topics — the fix is in the checklist itself. Each checklist's Example section shows the vulnerable shape next to the fixed shape. For topics like injection, secrets, output encoding, or N+1 queries, the fix is mechanical and has one right answer (parameterize the query, move the secret to the environment, bulk-load before the loop). When you say "fix it", the agent applies that fixed shape — no extra command needed.

Eight topics — the fix is an architectural choice. Some findings have several valid fixes with real trade-offs (an idempotency bug: dedupe table, idempotency key, UPSERT, or an absolute-state write?). Those topics point to a remediation playbook that walks the agent through choosing:

Findings from Playbook Command
authorization, IDOR, tenant isolation remediation/authz-patterns.md /audit-fix-authz
atomicity, idempotency, background work, state management remediation/async-patterns.md /audit-fix-async
observability remediation/observability-patterns.md /audit-fix-observability

Either way, the flow is the same: audit → confirmed findings → ask for the fix. Fixes follow the same rules everywhere: the smallest change that restores the invariant, matching the surrounding code style, with a test demonstrating the fix — and never mixed with unrelated refactoring.

Versioning

The canonical version lives in VERSION. It is stamped into the two artifacts that travel into your project: the audit skill (a version: field in its frontmatter plus a source footer) and the AGENTS.md digest (footer). Installed copies therefore always say what version they are and where they come from — compare your stamp against this repo's VERSION to know whether you're outdated. (No need to copy VERSION into your project — the stamps travel with the artifacts.) Your agent can do it for you: "check whether my audit-skills are up to date" gives it everything it needs.

License

MIT