Question 1

What is the zeroize-audit skill?

Accepted Answer

Detects missing zeroization of sensitive data in source code and identifies zeroization removed by compiler optimizations, with assembly-level analysis, and control-flow verification. Use for auditing C/C++/Rust code handling secrets, keys, passwords, or other sensitive data.

Question 2

What tools does zeroize-audit use?

Accepted Answer

zeroize-audit is allowed to use: Read, Grep, Glob, Bash, Write, Task, AskUserQuestion, mcp__serena__activate_project, mcp__serena__find_symbol, mcp__serena__find_referencing_symbols, mcp__serena__get_symbols_overview.

zeroize-audit

Details

Allowed tools

FAQ