zeroize-audit
CommunitySecurely audit code for secret memory leaks.
Software Engineering#security#rust#c++#memory safety#vulnerability analysis#zeroization#compiler optimization
Authorofelixdev
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill automatically audits C/C++/Rust codebases to detect vulnerabilities related to sensitive data handling, specifically focusing on missing zeroization of secrets in memory and compiler optimizations that might remove security measures.
Core Features & Use Cases
- Comprehensive Analysis: Detects missing zeroization in source code, identifies secrets copied insecurely, and flags sensitive data retained on the stack or in registers.
- Compiler Optimization Auditing: Analyzes LLVM IR and assembly to find zeroization routines eliminated by compiler optimizations like Dead Store Elimination (DSE) or loop unrolling.
- Rust-Specific Checks: Includes MIR and LLVM IR analysis tailored for Rust's memory management and zeroization patterns.
- Use Case: A security engineer can use this Skill to scan a cryptographic library or a system handling PII to ensure secrets like API keys, passwords, and encryption keys are properly wiped from memory before they can be leaked.
Quick Start
Use the zeroize-audit skill to audit the current project's C/C++/Rust code for secret memory vulnerabilities.
Dependency Matrix
Required Modules
pypdfpdfplumberpdf2image
Components
scriptsreferencesschemas
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: zeroize-audit Download link: https://github.com/ofelixdev/cc-kit/archive/main.zip#zeroize-audit Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.