This is a multi-phase orchestration workflow that coordinates specialized security agents to scan, harden, and validate your entire stack. It runs SAST/DAST scanning, threat modeling with STRIDE, then systematically remediates vulnerabilities across backend, frontend, and mobile layers while implementing controls like WAF rules, secrets management, and zero-trust architecture. You'd use this when you need a comprehensive security program, not just a quick scan. The approach is thorough but heavy, cycling through vulnerability assessment, remediation, control implementation, and pen testing across four distinct phases. It's overkill for a simple audit but makes sense if you're establishing defense-in-depth controls across application, infrastructure, and CI/CD pipelines with proper authorization and rollback plans in place.
npx skills add https://github.com/sickn33/antigravity-awesome-skills --skill security-scanning-security-hardening