Skills

sharp-edges

Installation
Summary

Identifies error-prone APIs, configurations, and designs that enable developer security mistakes.

  • Evaluates six categories of sharp edges: algorithm selection footguns, dangerous defaults, primitive vs. semantic APIs, configuration cliffs, silent failures, and stringly-typed security
  • Provides a four-phase analysis workflow: surface identification, edge case probing, threat modeling against three adversary types (malicious, lazy, confused), and validation
  • Includes severity classification (critical to low) and a quality checklist covering zero/empty/null edge cases, default validation, type confusion, and error paths
  • Organized reference guides by cryptographic domain (auth, session, crypto APIs) and programming language (C/C++, Go, Rust, Python, JavaScript, Java, PHP, and others)
SKILL.md

Sharp Edges Analysis

Evaluates whether APIs, configurations, and interfaces are resistant to developer misuse. Identifies designs where the "easy path" leads to insecurity.

When to Use

  • Reviewing API or library design decisions
  • Auditing configuration schemas for dangerous options
  • Evaluating cryptographic API ergonomics
  • Assessing authentication/authorization interfaces
  • Reviewing any code that exposes security-relevant choices to developers

When NOT to Use

  • Implementation bugs (use standard code review)
  • Business logic flaws (use domain-specific analysis)
  • Performance optimization (different concern)

Agent

Related skills

More from trailofbits/skills

Installs
2.7K
Repository
trailofbits/skills
GitHub Stars
5.1K
First Seen
Jan 19, 2026
Security Audits
Gen Agent Trust HubPass
SocketWarn
SnykPass