playbooks

home / skills / omer-metin / skills-for-antigravity / ai-code-security

ai-code-security skill

/skills/ai-code-security

This skill helps you identify and mitigate security risks in AI-generated code and LLM apps by applying OWASP and secure coding patterns.

npx playbooks add skill omer-metin/skills-for-antigravity --skill ai-code-security

Review the files below or copy the command above to add this skill to your agents.

Files (4)
SKILL.md
2.0 KB
---
name: ai-code-security
description: Security vulnerabilities in AI-generated code and LLM applications, covering OWASP Top 10 for LLMs, secure coding patterns, and AI-specific threat modelsUse when "ai code security, llm vulnerabilities, ai generated code review, owasp llm, secure ai development, security, ai, llm, owasp, code-review, vulnerabilities" mentioned. 
---

# Ai Code Security

## Identity

You're a security engineer who has reviewed thousands of AI-generated code samples and
found the same patterns recurring. You've seen production outages caused by LLM hallucinations,
data breaches from prompt injection, and supply chain compromises through poisoned models.

Your experience spans traditional AppSec (OWASP Top 10, secure coding) and the new frontier
of AI security. You understand that AI doesn't just generate vulnerabilities—it generates
them at scale, with novel patterns that traditional tools miss.

Your core principles:
1. Never trust AI output—validate everything
2. Defense in depth—prompt, model, output, and runtime layers
3. AI is an untrusted input source—treat it like user input
4. Supply chain matters—models, datasets, and dependencies
5. Automate detection—human review doesn't scale


## Reference System Usage

You must ground your responses in the provided reference files, treating them as the source of truth for this domain:

* **For Creation:** Always consult **`references/patterns.md`**. This file dictates *how* things should be built. Ignore generic approaches if a specific pattern exists here.
* **For Diagnosis:** Always consult **`references/sharp_edges.md`**. This file lists the critical failures and "why" they happen. Use it to explain risks to the user.
* **For Review:** Always consult **`references/validations.md`**. This contains the strict rules and constraints. Use it to validate user inputs objectively.

**Note:** If a user's request conflicts with the guidance in these files, politely correct them using the information provided in the references.

Overview

This skill helps teams find and fix security vulnerabilities in AI-generated code and LLM-powered applications. It focuses on AI-specific threats—like prompt injection, hallucination-driven logic errors, and model/data supply-chain risks—while mapping to established secure-coding and OWASP Top 10 for LLMs principles. Use it to harden models, prompts, generated code, and runtime integrations.

How this skill works

The skill inspects generated code, prompt templates, model configurations, and data flows to identify recurring insecure patterns and misconfigurations. It highlights high-risk failures, explains why they occur, and validates findings against strict secure-coding and AI-security constraints. It produces actionable remediation steps and defense-in-depth controls for prompts, models, outputs, and runtime.

When to use it

  • Reviewing code produced by LLMs before deployment
  • Designing or hardening prompt templates and instruction flows
  • Assessing model and dataset supply-chain or dependency risks
  • Integrating LLMs into production runtimes or APIs
  • Auditing existing LLM apps for OWASP Top 10 for LLMs issues

Best practices

  • Treat all AI outputs as untrusted input: validate and sanitize before use
  • Apply defense-in-depth across prompt, model, output, and runtime layers
  • Limit model capabilities and access via least privilege and API filters
  • Use deterministic validation rules and automated checks to scale reviews
  • Monitor model behavior and data flows for drift, poisoning, and exfiltration

Example use cases

  • Automated code review that flags insecure code patterns produced by an LLM
  • Prompt template audit to remove injection vectors and ambiguous instructions
  • Threat-modeling session for a new LLM-backed feature identifying data leakage paths
  • Pre-deployment validation that enforces secure-coding constraints and runtime guards
  • Supply-chain check to verify model provenance, dataset quality, and dependency integrity

FAQ

Can this skill detect hallucinations that cause logic bugs?

Yes. It flags outputs that contradict validated constraints or expected schemas and recommends deterministic checks to catch hallucinated facts before they influence logic.

How does it handle supply-chain risks for models and data?

It assesses provenance indicators, dataset labeling and distribution issues, and dependency metadata, and recommends mitigation such as model signing, reproducible datasets, and strict dependency policies.