Browse Skills
9063 skills found
code-review.md
2
1
export
code-review
2
from
"duc01226/EasyPlatform"
from
"duc01226/EasyPlatform"
3
Use when reviewing code changes, pull requests, or performing refactoring analysis with focus on patterns, security, and performance.
2026-01-05
forensic-data-engineer.md
2
1
export
forensic-data-engineer
2
from
"daffy0208/ai-dev-standards"
from
"daffy0208/ai-dev-standards"
3
Expert in data forensics, anomaly detection, audit trail analysis, fraud detection, and breach investigation
2026-01-05
go-test.md
2
1
export
go-test
2
from
"Tencent/awesome-devbuddy"
from
"Tencent/awesome-devbuddy"
3
Go语言单元测试专家,帮助生成测试代码、运行测试、生成覆盖率报告,支持ARM64架构自适应
2026-01-05
github-speckit-tester.md
2
1
export
github-speckit-tester
2
from
"panchal-ravi/ai-iac-consumer-template"
from
"panchal-ravi/ai-iac-consumer-template"
3
Test harness for executing Speckit workflows non-interactively using subagents. Use when you need to test the complete Speckit pipeline (Phase 0 → Phase 3) or individual phases, validate artifact generation across all commands, automate testing of specification-to-implementation workflows, or verify cross-phase consistency. This skill orchestrates the execution of all Speckit commands in order without user intervention.
2026-01-05
secure-headers-csp-builder.md
2
1
export
secure-headers-csp-builder
2
from
"patricio0312rev/skillset"
from
"patricio0312rev/skillset"
3
Implements security headers and Content Security Policy with safe rollout strategy (report-only → enforce), testing, and compatibility checks. Use for "security headers", "CSP", "HTTP headers", or "XSS protection".
2026-01-05
reviewing-code.md
2
1
export
reviewing-code
2
from
"ryugen04/dotfiles"
from
"ryugen04/dotfiles"
3
Use when executing /code:review-uncommited, /code:review-unpushed, or /code:review-pr commands. Triggers: code review request, PR review, uncommited changes review. Defines 12 parallel review agents covering security, performance, quality, consistency, and more.
2026-01-05
marp-html-to-png.md
2
1
export
marp-html-to-png
2
from
"Ryunosuke-Tanaka-sti/claude_and_blog_seminar"
from
"Ryunosuke-Tanaka-sti/claude_and_blog_seminar"
3
Create HTML diagrams for Marp slides and capture them as PNG screenshots using Playwright MCP
2026-01-05
skill-builder.md
2
1
export
skill-builder
2
from
"TrevorS/dot-claude"
from
"TrevorS/dot-claude"
3
Create and validate Agent Skills with proper structure and effective descriptions. Use when building custom skills, testing skill discovery, or designing new skill workflows.
2026-01-05
systematic-type-migration.md
2
1
export
systematic-type-migration
2
from
"cipherstash/cipherpowers"
from
"cipherstash/cipherpowers"
3
Safe refactoring workflow for replacing old types with new type-safe implementations through integration-test-first, file-by-file migration with incremental verification
2026-01-05
dependency-tracker.md
2
1
export
dependency-tracker
2
from
"sovrium/sovrium"
from
"sovrium/sovrium"
3
Tracks package.json dependencies and identifies undocumented, outdated, or misaligned tools. Compares installed packages against documented versions in docs/infrastructure/, detects unused dependencies, and flags version mismatches. Use when user requests "check dependencies", "audit package.json", "find undocumented packages", or mentions dependency alignment.
2026-01-05
responding-to-security-incidents.md
2
1
export
responding-to-security-incidents
2
from
"jeremylongshore/claude-code-plugins-nixtla"
from
"jeremylongshore/claude-code-plugins-nixtla"
3
Assists with security incident response, investigation, and remediation. This skill is triggered when the user requests help with incident response, mentions specific incident types (e.g., data breach, ransomware, DDoS), or uses terms like "incident response plan", "containment", "eradication", or "post-incident activity". It guides the user through the incident response lifecycle, from preparation to post-incident analysis. It is useful for classifying incidents, creating response playbooks, collecting evidence, constructing timelines, and generating remediation steps. Use this skill when needing to respond to a "security incident".
2026-01-05
test-workflow.md
2
1
export
test-workflow
2
from
"ManuelKugelmann/BitBot"
from
"ManuelKugelmann/BitBot"
3
Run BitBot's iterative test workflow (implement → test → fix → commit → push). Use PROACTIVELY during development to ensure quality before committing.
2026-01-05
implementing-database-audit-logging.md
2
1
export
implementing-database-audit-logging
2
from
"jeremylongshore/claude-code-plugins-nixtla"
from
"jeremylongshore/claude-code-plugins-nixtla"
3
This skill helps implement database audit logging for tracking changes and ensuring compliance. It is triggered when the user requests to "implement database audit logging", "add audit trails", "track database changes", or mentions "audit_log" in relation to a database. The skill provides options for trigger-based auditing, application-level logging, Change Data Capture (CDC), and parsing database logs. It generates a basic audit table schema and guides the user through selecting the appropriate auditing strategy.
2026-01-05
api-gateway-configurator.md
2
1
export
api-gateway-configurator
2
from
"Dexploarer/hyper-forge"
from
"Dexploarer/hyper-forge"
3
Configure and manage API gateways including Kong, Tyk, AWS API Gateway, and Apigee. Activates when users need help setting up API gateways, rate limiting, authentication, request transformation, or API management.
2026-01-05
self-hosted-runners.md
2
1
export
self-hosted-runners
2
from
"daishiman/AIWorkflowOrchestrator"
from
"daishiman/AIWorkflowOrchestrator"
3
GitHub Actionsセルフホストランナーの設計、セットアップ、セキュリティ管理を行うスキル。インストールから運用、トラブルシューティングまでの完全なライフサイクル管理を提供する。Anchors:• GitHub Actions Documentation / 適用: セルフホストランナー公式仕様 / 目的: 正確なAPI使用と設定• CIS Benchmark for Linux / 適用: ランナーホストのセキュリティ / 目的: セキュリティ強化• The Pragmatic Programmer / 適用: 実践的改善 / 目的: 段階的な実装と継続的改善Trigger:Use when setting up self-hosted runners, configuring runner labels, implementing security measures, troubleshooting runner issues, or optimizing runner performance.self-hosted, runner, GitHub Actions, ephemeral, labels, security, setup, configuration
2026-01-05
detecting-sql-injection-vulnerabilities.md
2
1
export
detecting-sql-injection-vulnerabilities
2
from
"jeremylongshore/claude-code-plugins-nixtla"
from
"jeremylongshore/claude-code-plugins-nixtla"
3
This skill enables Claude to detect SQL injection vulnerabilities in code. It uses the sql-injection-detector plugin to analyze codebases, identify potential SQL injection flaws, and provide remediation guidance. Use this skill when the user asks to find SQL injection vulnerabilities, scan for SQL injection, or check code for SQL injection risks. The skill is triggered by phrases like "detect SQL injection", "scan for SQLi", or "check for SQL injection vulnerabilities".
2026-01-05
contract-testing-builder.md
2
1
export
contract-testing-builder
2
from
"patricio0312rev/skillset"
from
"patricio0312rev/skillset"
3
Implements API contract testing to ensure provider-consumer compatibility using Pact or similar tools. Prevents breaking changes with contract specifications and bi-directional verification. Use for "contract testing", "API contracts", "Pact", or "consumer-driven contracts".
2026-01-05
correct-git-commits-no-exceptions.md
2
1
export
correct-git-commits-no-exceptions
2
from
"ships/eden"
from
"ships/eden"
3
Enforce mature commit hygiene and documentation standards for long-lived projects. Trigger this skill automatically in ANY project before ANY commit creation, whether prompted by human, agent, or another skill; always do this, to ensure changesets are clean, tests pass, commit messages are terse and insightful, and all committed content is timeless rather than dependent on circumstantial context to cohere or be useful. Targets senior/staff engineer standards - no cruft, no debug statements, no transient language, no obvious comments. Maintains README accuracy and prevents documentation bloat.
2026-01-05
cloud-skill.md
2
1
export
cloud-skill
2
from
"pluginagentmarketplace/custom-plugin-devops"
from
"pluginagentmarketplace/custom-plugin-devops"
3
Cloud infrastructure with AWS, Azure, GCP - architecture, services, security, and cost optimization.
2026-01-05
finding-security-misconfigurations.md
2
1
export
finding-security-misconfigurations
2
from
"jeremylongshore/claude-code-plugins-nixtla"
from
"jeremylongshore/claude-code-plugins-nixtla"
3
This skill enables Claude to identify potential security misconfigurations in various systems and configurations. It leverages the security-misconfiguration-finder plugin to analyze infrastructure-as-code, application configurations, and system settings, pinpointing common vulnerabilities and compliance issues. Use this skill when the user asks to "find security misconfigurations", "check for security vulnerabilities in my configuration", "audit security settings", or requests a security assessment of a specific system or file. This skill will assist in identifying and remediating potential security weaknesses.
2026-01-05
security-scan.md
2
1
export
security-scan
2
from
"mehdic/bazinga"
from
"mehdic/bazinga"
3
Run comprehensive security vulnerability scans when reviewing code. Automatically uses basic mode (fast, high/medium severity only) for first reviews, advanced mode (comprehensive, all severities) for iterations. Detects SQL injection, XSS, hardcoded secrets, insecure dependencies. Use before approving any code changes or pull requests.
2026-01-05
tdd-cycle.md
2
1
export
tdd-cycle
2
from
"Fortiz2305/dotfiles"
from
"Fortiz2305/dotfiles"
3
Use when implementing any feature or bugfix, before writing implementation code. Execute strict Red-Green-Refactor TDD cycle following industry testing standards. Write the test first, watch it fail, write minimal code to pass; ensures tests actually verify behavior by requiring failure first.
2026-01-05
accessibility.md
2
1
export
accessibility
2
from
"cosmix/claude-code-setup"
from
"cosmix/claude-code-setup"
3
Web accessibility patterns and WCAG compliance guidelines. Use when implementing accessible UI components, keyboard navigation, screen reader support, or auditing for a11y compliance. Triggers: accessibility, a11y, WCAG, ARIA, screen reader, keyboard navigation, color contrast, semantic HTML, assistive technology.
2026-01-05
gemini.md
2
1
export
gemini
2
from
"ryugen04/dotfiles"
from
"ryugen04/dotfiles"
3
Use when delegating tasks to Gemini MCP. Two main use cases: (1) large-scale codebase investigation with @ syntax, (2) web search for latest information. Also for long log analysis, context optimization. Always request concrete report format without omissions or personal opinions.
2026-01-05