Browse Skills
9063 skills found
authentication-authorization-security.md
2
1
export
authentication-authorization-security
2
from
"daishiman/AIWorkflowOrchestrator"
from
"daishiman/AIWorkflowOrchestrator"
3
認証・認可の設計とセキュリティ検証(OAuth 2.0、JWT、セッション管理、アクセス制御)の実務指針を提供するスキル。脅威モデリング、トークン管理、権限モデルの選択を整理し、安全な認証基盤の設計判断を支援します。Anchors:• Web Application Security / 適用: 脅威モデリング / 目的: 認証・認可の脅威整理• OAuth 2.0 Simplified / 適用: フロー選定 / 目的: OAuth実装の安全性確保• OWASP ASVS / 適用: セキュリティ検証 / 目的: 要件基準の確認Trigger:Use when designing or reviewing authentication/authorization flows, selecting OAuth/JWT/session strategies, or validating access control and token security.
2026-01-05
evaluating-machine-learning-models.md
2
1
export
evaluating-machine-learning-models
2
from
"jeremylongshore/claude-code-plugins-nixtla"
from
"jeremylongshore/claude-code-plugins-nixtla"
3
This skill allows Claude to evaluate machine learning models using a comprehensive suite of metrics. It should be used when the user requests model performance analysis, validation, or testing. Claude can use this skill to assess model accuracy, precision, recall, F1-score, and other relevant metrics. Trigger this skill when the user mentions "evaluate model", "model performance", "testing metrics", "validation results", or requests a comprehensive "model evaluation".
2026-01-05
managing-container-registries.md
2
1
export
managing-container-registries
2
from
"jeremylongshore/claude-code-plugins-nixtla"
from
"jeremylongshore/claude-code-plugins-nixtla"
3
This skill enables Claude to manage container registries, including ECR, GCR, and Harbor. It should be used when the user needs to create, configure, or manage container image registries. It helps generate production-ready configurations, implement best practices, and ensure a security-first approach. Use this skill when the user mentions terms like "container registry," "ECR," "GCR," "Harbor," "image repository," or requests assistance with managing container images. It's also helpful for generating configuration code for DevOps pipelines related to container registries.
2026-01-05
playwright-automation.md
2
1
export
playwright-automation
2
from
"brianclaridge/.claude"
from
"brianclaridge/.claude"
3
Execute complex browser automation using Playwright Python. Use for video recording, multi-page navigation, data extraction. Triggers on "browser script", "record video of website", "extract data from webpage".
2026-01-05
github-actions-pipeline-creator.md
2
1
export
github-actions-pipeline-creator
2
from
"patricio0312rev/skillset"
from
"patricio0312rev/skillset"
3
Creates comprehensive GitHub Actions CI/CD workflows for linting, testing, building, and deploying. Includes caching strategies, matrix builds, artifact handling, and failure diagnostics. Use for "GitHub Actions", "CI pipeline", "workflow automation", or "continuous integration".
2026-01-05
checking-session-security.md
2
1
export
checking-session-security
2
from
"jeremylongshore/claude-code-plugins-nixtla"
from
"jeremylongshore/claude-code-plugins-nixtla"
3
This skill enables Claude to check session security implementations within a codebase. It analyzes session management practices to identify potential vulnerabilities. Use this skill when a user requests to "check session security", "audit session handling", "review session implementation", or asks about "session security best practices" in their code. It helps identify issues like insecure session IDs, lack of proper session expiration, or insufficient protection against session fixation attacks. This skill leverages the session-security-checker plugin.
2026-01-05
testing-engineering.md
2
1
export
testing-engineering
2
from
"warpcode/dotfiles"
from
"warpcode/dotfiles"
3
Domain specialist for testing strategies, test frameworks, TDD/BDD methodologies, and quality assurance. Scope: unit testing, integration testing, end-to-end testing, test doubles, test pyramid, coverage strategies, test quality assessment. Excludes: code implementation, architecture, performance. Triggers: "testing", "test", "unit test", "integration test", "e2e test", "TDD", "BDD", "test-driven", "behavior-driven", "mock", "stub", "fake", "test double", "coverage", "PHPUnit", "Jest", "PyTest", "RSpec", "Cypress", "Playwright", "test pyramid".
2026-01-05
assisting-with-soc2-audit-preparation.md
2
1
export
assisting-with-soc2-audit-preparation
2
from
"jeremylongshore/claude-code-plugins-nixtla"
from
"jeremylongshore/claude-code-plugins-nixtla"
3
This skill assists with SOC2 audit preparation by automating tasks related to evidence gathering and documentation. It leverages the soc2-audit-helper plugin to generate reports, identify potential compliance gaps, and suggest remediation steps. Use this skill when the user requests help with "SOC2 audit", "compliance check", "security controls", "audit preparation", or "evidence gathering" related to SOC2. It streamlines the initial stages of SOC2 compliance, focusing on automated data collection and preliminary analysis.
2026-01-05
managing-database-recovery.md
2
1
export
managing-database-recovery
2
from
"jeremylongshore/claude-code-plugins-nixtla"
from
"jeremylongshore/claude-code-plugins-nixtla"
3
This skill manages database recovery operations using the database-recovery-manager plugin. It enables disaster recovery, point-in-time recovery (PITR), and automated failover strategies for production database systems. Use this skill when the user requests help with "database recovery", "disaster recovery", "point-in-time recovery", "PITR", "backup validation", "recovery testing", or "multi-region failover" for databases. It automates backup verification and recovery testing.
2026-01-05
maintaining-claude-code.md
2
1
export
maintaining-claude-code
2
from
"TrevorS/dot-claude"
from
"TrevorS/dot-claude"
3
Validate and improve Claude Code configurations (CLAUDE.md, skills, commands, hooks). Use when auditing config quality, checking skill discoverability, organizing .claude directory, or deciding which entity type to use.
2026-01-05
automating-api-testing.md
2
1
export
automating-api-testing
2
from
"jeremylongshore/claude-code-plugins-nixtla"
from
"jeremylongshore/claude-code-plugins-nixtla"
3
This skill automates API endpoint testing, including request generation, validation, and comprehensive test coverage for REST and GraphQL APIs. It is used when the user requests API testing, contract testing, or validation against OpenAPI specifications. The skill analyzes API endpoints and generates test suites covering CRUD operations, authentication flows, and security aspects. It also validates response status codes, headers, and body structure. Use this skill when the user mentions "API testing", "REST API tests", "GraphQL API tests", "contract tests", or "OpenAPI validation".
2026-01-05
istio.md
2
1
export
istio
2
from
"cosmix/claude-code-setup"
from
"cosmix/claude-code-setup"
3
Service mesh implementation with Istio for traffic management, security, and observability. Use when implementing mTLS, traffic routing, circuit breakers, or service-to-service communication. Triggers: istio, service mesh, virtualservice, destinationrule, gateway, mtls, sidecar, envoy, traffic management.
2026-01-05
fullstory-banking.md
2
1
export
fullstory-banking
2
from
"fullstorydev/fs-skills"
from
"fullstorydev/fs-skills"
3
Industry-specific guide for implementing Fullstory in banking and financial services applications. Covers regulatory requirements (PCI DSS, GLBA, SOX), privacy controls for sensitive financial data, authentication flows, transaction monitoring, and fraud detection patterns. Includes detailed examples for retail banking, investment platforms, and payment applications.
2026-01-05
routing-engineering.md
2
1
export
routing-engineering
2
from
"warpcode/dotfiles"
from
"warpcode/dotfiles"
3
Domain specialist for API routing, route discovery, middleware analysis, and parameter validation. Scope: route discovery patterns, automatic route detection, route mapping, middleware analysis, URL patterns, parameter validation, URL injection prevention. Excludes: backend business logic, database queries, security operations beyond URL injection, frontend routing. Triggers: "routing", "route", "URL pattern", "middleware", "parameter validation", "route discovery", "endpoint", "path", "slug".
2026-01-05
agent-validation-testing.md
2
1
export
agent-validation-testing
2
from
"daishiman/AIWorkflowOrchestrator"
from
"daishiman/AIWorkflowOrchestrator"
3
エージェントの検証とテストケース設計を専門とするスキル。**Anchors:**• Test-Driven Development: By Example(Kent Beck)/ 適用: エージェント検証とテストケース設計 / 目的: Red-Green-Refactorパターンに基づく信頼性の高い検証**Trigger:**エージェント検証・テストケース設計・テスト実装・結果評価・バリデーション実行時に使用**公式リソース:**- Kent Beck『Test-Driven Development: By Example』: TDDの基本原則と実装パターン- Level 1-4のガイドで段階的に習得可能- テストケースパターンと実装テンプレート完備
2026-01-05
design-review.md
2
1
export
design-review
2
from
"mpazaryna/claude-toolkit"
from
"mpazaryna/claude-toolkit"
3
Design audits and submission preparation. Use when reviewing designs for quality, checking accessibility compliance, or preparing for App Store submission.
2026-01-05
sdd-tdd-workflow.md
2
1
export
sdd-tdd-workflow
2
from
"inchan/zettel-memory"
from
"inchan/zettel-memory"
3
Guide AI agents through Specification-Driven Development (SDD) + Test-Driven Development (TDD) integrated workflow. Use when implementing complex features, making architectural decisions, or conducting large-scale refactoring that requires clear specifications and test-first development.
2026-01-05
security.md
2
1
export
security
2
from
"pluginagentmarketplace/custom-plugin-devops"
from
"pluginagentmarketplace/custom-plugin-devops"
3
DevSecOps practices including secrets management, SSL/TLS, vulnerability scanning, and compliance
2026-01-05
validating-cors-policies.md
2
1
export
validating-cors-policies
2
from
"jeremylongshore/claude-code-plugins-nixtla"
from
"jeremylongshore/claude-code-plugins-nixtla"
3
This skill enables Claude to validate Cross-Origin Resource Sharing (CORS) policies. It uses the cors-policy-validator plugin to analyze CORS configurations and identify potential security vulnerabilities. Use this skill when the user requests to "validate CORS policy", "check CORS configuration", "analyze CORS headers", or asks about "CORS security". It helps ensure that CORS policies are correctly implemented, preventing unauthorized cross-origin requests and protecting sensitive data.
2026-01-05
fastapi-endpoint.md
2
1
export
fastapi-endpoint
2
from
"janisto/fastapi-playground"
from
"janisto/fastapi-playground"
3
Guide for creating FastAPI endpoints following this project's conventions including routers, dependency injection, error handling, and OpenAPI documentation.
2026-01-05
configuring-service-meshes.md
2
1
export
configuring-service-meshes
2
from
"jeremylongshore/claude-code-plugins-nixtla"
from
"jeremylongshore/claude-code-plugins-nixtla"
3
This skill configures service meshes like Istio and Linkerd for microservices. It generates production-ready configurations, implements best practices, and ensures a security-first approach. Use this skill when the user asks to "configure service mesh", "setup Istio", "setup Linkerd", or requests assistance with "service mesh configuration" for their microservices architecture. The configurations will be tailored to the specified infrastructure requirements.
2026-01-05
nix-executor.md
2
1
export
nix-executor
2
from
"kitsunoff/Nix"
from
"kitsunoff/Nix"
3
Use when you need to test Nix expressions, validate Nix configuration syntax before applying, debug Nix code or understand evaluation results, inspect derivation attributes, or evaluate flake outputs and inputs
2026-01-05
storybook-development.md
2
1
export
storybook-development
2
from
"nekorush14/dotfiles"
from
"nekorush14/dotfiles"
3
Create component documentation and testing with Storybook using CSF3, interaction testing, and visual regression. Use when documenting components, creating UI catalog, or visual testing.
2026-01-05
github-authenticator.md
2
1
export
github-authenticator
2
from
"EdanStarfire/claudecode_webui"
from
"EdanStarfire/claudecode_webui"
3
Verify and troubleshoot GitHub CLI authentication. Use when gh commands fail with auth errors or when setting up GitHub integration for the first time.
2026-01-05