Browse Skills
9063 skills found
running-smoke-tests.md
2
1
export
running-smoke-tests
2
from
"jeremylongshore/claude-code-plugins-nixtla"
from
"jeremylongshore/claude-code-plugins-nixtla"
3
This skill runs smoke tests to verify critical application functionality. It executes pre-defined test suites that check system health, authentication, core features, and external integrations. Use this skill after deployments, upgrades, or significant configuration changes to ensure the application is operational. Trigger this skill using the terms "smoke test" or "st".
2026-01-05
config-validator.md
2
1
export
config-validator
2
from
"sovrium/sovrium"
from
"sovrium/sovrium"
3
Validates eslint.config.ts and tsconfig.json against documented architecture patterns and infrastructure requirements. Checks ESLint plugin configurations, TypeScript strict mode, FP enforcement, layer boundaries, and alignment with docs/architecture/ and docs/infrastructure/. Use when user requests "validate config", "check eslint", "verify typescript settings", or mentions config audits.
2026-01-05
audit-security.md
2
1
export
audit-security
2
from
"ferdiangunawan/rpi-stack"
from
"ferdiangunawan/rpi-stack"
3
Security-focused audit that can run in background during implementation. Checks for vulnerabilities, auth issues, data exposure. Injects P0 findings to main agent.
2026-01-05
security-review.md
2
1
export
security-review
2
from
"shiiman/dotfiles"
from
"shiiman/dotfiles"
3
セキュリティ脆弱性を自動検出する。認証情報のハードコード、コマンドインジェクション、危険なシェル構文などをチェック。
2026-01-05
script-bugfix.md
2
1
export
script-bugfix
2
from
"tizee/dotfiles"
from
"tizee/dotfiles"
3
Debug and fix complex scripts by isolating side effects, extracting core logic into a controlled environment, validating behavior there, then reintegrating with minimal changes. Use this when scripts lack unit tests and are hard to reason about due to IO, environment, or orchestration complexity.
2026-01-05
code-static-analysis-security.md
2
1
export
code-static-analysis-security
2
from
"daishiman/AIWorkflowOrchestrator"
from
"daishiman/AIWorkflowOrchestrator"
3
静的解析によるセキュリティ脆弱性検出を整理し、SAST運用と検出ルールの設計を支援するスキル。SQLインジェクション、XSS、コマンドインジェクションなどの検出と改善方針を扱う。Anchors:• Web Application Security (Andrew Hoffman) / 適用: 脅威分析と検出観点 / 目的: 脆弱性検出の精度向上• OWASP ASVS / 適用: 検出基準の整理 / 目的: セキュリティ要件の明文化• Secure by Design (OWASP) / 適用: 改善方針 / 目的: 安全な設計判断Trigger:Use when running SAST, defining detection rules, auditing injection vulnerabilities, or documenting static analysis findings.static analysis, SAST, SQL injection, XSS, command injection, security review
2026-01-05
webhook-receiver-hardener.md
2
1
export
webhook-receiver-hardener
2
from
"patricio0312rev/skillset"
from
"patricio0312rev/skillset"
3
Secures webhook receivers with signature verification, retry handling, deduplication, idempotency keys, and error responses. Provides verification code, dedupe storage strategy, runbook for incidents. Use when implementing "webhooks", "webhook security", "event receivers", or "third-party integrations".
2026-01-05
test-data-management.md
2
1
export
test-data-management
2
from
"daishiman/AIWorkflowOrchestrator"
from
"daishiman/AIWorkflowOrchestrator"
3
テストデータの設計・生成・隔離・クリーンアップを体系化するスキル。E2E/統合/単体テストの再現性を高め、データ依存による不安定化を防ぐ。Anchors:• Test-Driven Development: By Example / 適用: テストデータ設計 / 目的: 再現性と最小実装• Growing Object-Oriented Software, Guided by Tests / 適用: フィクスチャ設計 / 目的: 依存性の分離Trigger:Use when planning or implementing test data setup, seeding, isolation, or cleanup.test data, fixture, seeding, teardown
2026-01-05
interface-segregation.md
2
1
export
interface-segregation
2
from
"daishiman/AIWorkflowOrchestrator"
from
"daishiman/AIWorkflowOrchestrator"
3
SOLID原則のインターフェース分離原則(ISP)を専門とするスキル。クライアントが使用しないメソッドへの依存を強制しない設計を実現する。Anchors:• 『アジャイルソフトウェア開発の奥義』(Robert C. Martin) / 適用: ISP原則の定義と実践 / 目的: クライアント固有インターフェース設計• 『Refactoring』(Martin Fowler) / 適用: Extract Interface, Decompose Interface / 目的: 段階的な分離リファクタリング• 『Test-Driven Development』(Kent Beck) / 適用: Simple Design, テスト容易性評価 / 目的: 設計品質検証Trigger:Use when detecting fat interfaces, segregating bloated interfaces, designing role-based interfaces,analyzing ISP violations, refactoring interfaces, implementing interface composition patterns,IWorkflowExecutor, IValidatable, IRetryable, empty implementation, exception throwing, conditional implementation.
2026-01-05
security-audit.md
2
1
export
security-audit
2
from
"Euda1mon1a/Autonomous-Assignment-Program-Manager"
from
"Euda1mon1a/Autonomous-Assignment-Program-Manager"
3
Security-focused code audit for healthcare and military contexts. Use when reviewing authentication, authorization, data handling, HIPAA compliance, or OPSEC/PERSEC requirements. Essential for PHI handling and military medical residency schedules.
2026-01-05
mocking-assistant.md
2
1
export
mocking-assistant
2
from
"patricio0312rev/skillset"
from
"patricio0312rev/skillset"
3
Creates stable mocks for APIs, services, and UI components using MSW (Mock Service Worker), fixture conventions, and example patterns. Use for "API mocking", "MSW", "test mocks", or "service mocking".
2026-01-05
hetzner-vps-provisioning.md
2
1
export
hetzner-vps-provisioning
2
from
"The-Resonance/claude-code-hetzner-vps"
from
"The-Resonance/claude-code-hetzner-vps"
3
Use this skill when the user wants to provision a Hetzner VPS, create a cloud server, deploy to Hetzner, set up a development server, configure server security (UFW, fail2ban), or estimate cloud hosting costs. Handles secure VPS provisioning with Claude Code pre-installed.
2026-01-05
finishing-a-development-branch.md
2
1
export
finishing-a-development-branch
2
from
"heyJordanParker/dotfiles"
from
"heyJordanParker/dotfiles"
3
Use when implementation is complete, all tests pass, and you need to decide how to integrate the work - guides completion of development work by presenting structured options for merge, PR, or cleanup
2026-01-05
plugin-auditor.md
2
1
export
plugin-auditor
2
from
"jeremylongshore/claude-code-plugins-nixtla"
from
"jeremylongshore/claude-code-plugins-nixtla"
3
Automatically audits Claude Code plugins for security vulnerabilities, best practices, CLAUDE.md compliance, and quality standards when user mentions audit plugin, security review, or best practices check. Specific to claude-code-plugins repository standards.
2026-01-05
dependency-scan.md
2
1
export
dependency-scan
2
from
"cosmix/claude-code-setup"
from
"cosmix/claude-code-setup"
3
Scans project dependencies for known vulnerabilities, outdated packages, and license compliance issues. Trigger keywords: dependency, vulnerability, CVE, npm audit, outdated, license, supply chain, SBOM.
2026-01-05
test-limacharlie-edr.md
2
1
export
test-limacharlie-edr
2
from
"refractionPOINT/documentation"
from
"refractionPOINT/documentation"
3
Deploy a temporary LimaCharlie EDR agent on the local Linux or Mac OS host for testing. Downloads and runs the LC sensor in a temp directory with automatic cleanup. Use for testing detection rules, investigating sensor behavior, or development. Requires selecting or creating a LimaCharlie organization first.
2026-01-05
systematic-debugging.md
2
1
export
systematic-debugging
2
from
"tilework-tech/nori-cli"
from
"tilework-tech/nori-cli"
3
Use when encountering any bug, test failure, or unexpected behavior, before proposing fixes - four-phase framework (root cause investigation, pattern analysis, hypothesis testing, implementation) that ensures understanding before attempting solutions
2026-01-05
tool-security.md
2
1
export
tool-security
2
from
"daishiman/AIWorkflowOrchestrator"
from
"daishiman/AIWorkflowOrchestrator"
3
MCPツールとAPI統合のセキュリティ設計を体系化するスキル。脅威整理、制御設計、設定検証を通じて安全なツール運用を支援する。Anchors:• Web Application Security / 適用: 脅威モデリング / 目的: 攻撃面の整理• OWASP ASVS / 適用: セキュリティ要件 / 目的: 制御の網羅性Trigger:Use when designing tool security controls, validating security configs, or reviewing secrets handling.tool security, threat modeling, config validation
2026-01-05
generating-test-data.md
2
1
export
generating-test-data
2
from
"jeremylongshore/claude-code-plugins-nixtla"
from
"jeremylongshore/claude-code-plugins-nixtla"
3
This skill enables Claude to generate realistic test data for software development. It uses the test-data-generator plugin to create users, products, orders, and custom schemas for comprehensive testing. Use this skill when you need to populate databases, simulate user behavior, or create fixtures for automated tests. Trigger phrases include "generate test data", "create fake users", "populate database", "generate product data", "create test orders", or "generate data based on schema". This skill is especially useful for populating testing environments or creating sample data for demonstrations.
2026-01-05
constraint-preflight.md
2
1
export
constraint-preflight
2
from
"Euda1mon1a/Autonomous-Assignment-Program-Manager"
from
"Euda1mon1a/Autonomous-Assignment-Program-Manager"
3
Pre-flight verification for scheduling constraint development. Use when adding, modifying, or testing constraints to ensure they are properly implemented, exported, registered, and tested before commit.
2026-01-05
webapp-testing.md
2
1
export
webapp-testing
2
from
"ChuDiRen/AI-agent-testing-platform"
from
"ChuDiRen/AI-agent-testing-platform"
3
使用 Playwright 与本地 Web 应用交互与测试的工具包。支持验证前端功能、调试 UI 行为、捕获浏览器截图以及查看浏览器日志。
2026-01-05
helm-charts.md
2
1
export
helm-charts
2
from
"KJone1/dotfiles"
from
"KJone1/dotfiles"
3
Strict guidelines for creating and maintaining production-ready Helm charts. Covers best practices for chart structure, values, security, resources, and dependencies. Applied when creating, modifying, testing, or reviewing Helm charts.
2026-01-05
workflow-security.md
2
1
export
workflow-security
2
from
"daishiman/AIWorkflowOrchestrator"
from
"daishiman/AIWorkflowOrchestrator"
3
GitHub Actionsワークフローセキュリティの専門スキル。権限最小化、シークレット保護、サプライチェーン攻撃対策を提供します。Anchors:- GitHub Actions Security Hardening(GitHub公式)/ 適用: ワークフロー権限・シークレット保護 / 目的: 安全な自動化- OWASP CI/CD Security(OWASP)/ 適用: サプライチェーン対策 / 目的: 脆弱性防止- Principle of Least Privilege / 適用: 権限設計全般 / 目的: 攻撃面最小化Trigger:ワークフロー権限監査時、シークレット漏洩対策時、サプライチェーン攻撃対策時、PRワークフロー設計時に使用
2026-01-05
validating-csrf-protection.md
2
1
export
validating-csrf-protection
2
from
"jeremylongshore/claude-code-plugins-nixtla"
from
"jeremylongshore/claude-code-plugins-nixtla"
3
This skill helps to identify Cross-Site Request Forgery (CSRF) vulnerabilities in web applications. It validates the implementation of CSRF protection mechanisms, such as synchronizer tokens, double-submit cookies, SameSite attributes, and origin validation. Use this skill when you need to analyze your application's security posture against CSRF attacks or when asked to "validate csrf", "check for csrf vulnerabilities", or "test csrf protection".
2026-01-05