Cryptography

constant-time-testing is a practical skill for auditing cryptographic code for timing side channels. Use the constant-time-testing skill to inspect secret-dependent branches, memory access patterns, and microarchitectural behavior, then apply a focused constant-time-testing guide for Security Audit workflows.

constant-time-analysis is a security-audit skill for finding timing side-channel risks in cryptographic code before they become exploitable bugs. Use it to review secret-dependent math, branches, comparisons, and compiled output when checking C, C++, Go, Rust, Swift, Java, Kotlin, PHP, JavaScript, TypeScript, Python, or Ruby.

azure-security-keyvault-keys-dotnet helps .NET developers manage Azure Key Vault keys and Managed HSM with Azure.Security.KeyVault.Keys and CryptographyClient. Use it for key creation, rotation, encryption, decryption, signing, verification, and backend development with clear install and usage guidance.

The wycheproof skill helps validate cryptographic implementations with Wycheproof test vectors, focusing on known attacks, edge cases, and pass/fail decisions for Security Audit workflows. Use it to inspect AES-GCM, ECDSA, ECDH, RSA, and related primitives with less guesswork than a generic crypto prompt.