Browse Skills
9063 skills found
pattern-demo-generator.md
2
1
export
pattern-demo-generator
2
from
"imsaif/aiex"
from
"imsaif/aiex"
3
Scaffold interactive React demo components for AI design patterns with design system integration, starter tests, and documentation
2026-01-05
following-conventions.md
2
1
export
following-conventions
2
from
"tenzir/claude-plugins"
from
"tenzir/claude-plugins"
3
Tenzir Python coding standards and tooling setup. Use when editing .py files, running ruff/mypy/pytest, encountering pyproject.toml/uv.lock, or setting up a new Python project.
2026-01-05
mcp-cli.md
2
1
export
mcp-cli
2
from
"HTRamsey/claude-config"
from
"HTRamsey/claude-config"
3
On-demand MCP server access via CLI without adding to settings.json. Use when exploring MCP server capabilities before installing, making one-off calls, testing MCP servers during development, or avoiding context pollution from rarely-used servers. Discover tools, make calls, test servers.
2026-01-05
validating-csrf-protection.md
2
1
export
validating-csrf-protection
2
from
"jeremylongshore/claude-code-plugins-nixtla"
from
"jeremylongshore/claude-code-plugins-nixtla"
3
This skill helps to identify Cross-Site Request Forgery (CSRF) vulnerabilities in web applications. It validates the implementation of CSRF protection mechanisms, such as synchronizer tokens, double-submit cookies, SameSite attributes, and origin validation. Use this skill when you need to analyze your application's security posture against CSRF attacks or when asked to "validate csrf", "check for csrf vulnerabilities", or "test csrf protection".
2026-01-05
security-rbac-auth.md
2
1
export
security-rbac-auth
2
from
"raphaelmansuy/k8s-agent-stack"
from
"raphaelmansuy/k8s-agent-stack"
3
Implement authentication, authorization, and security controls. Use for JWT handling, API key management, RBAC, OAuth integration, and security policies. Triggers on "authentication", "authorization", "JWT", "API key", "RBAC", "OAuth", "security", "permissions", or when implementing spec/006-security-governance.md.
2026-01-05
form-validation.md
2
1
export
form-validation
2
from
"daishiman/AIWorkflowOrchestrator"
from
"daishiman/AIWorkflowOrchestrator"
3
フォームバリデーション設計と実装を支援するスキル。Zod/react-hook-formを用いたクライアント・サーバー両面の検証、エラーメッセージ設計、テスト実装を提供。Anchors:• Designing Data-Intensive Applications(M. Kleppmann) / 適用: データ検証 / 目的: 堅牢な入力処理• The Pragmatic Programmer(Hunt, Thomas) / 適用: 設計原則 / 目的: 保守性の高い実装• Zod Documentation / 適用: スキーマ定義 / 目的: 型安全なバリデーションTrigger:Use when designing form validation, implementing Zod schemas, integrating react-hook-form, designing error messages, or testing validation logic.
2026-01-05
performing-security-code-review.md
2
1
export
performing-security-code-review
2
from
"jeremylongshore/claude-code-plugins-nixtla"
from
"jeremylongshore/claude-code-plugins-nixtla"
3
This skill enables Claude to conduct a security-focused code review using the security-agent plugin. It analyzes code for potential vulnerabilities like SQL injection, XSS, authentication flaws, and insecure dependencies. Claude uses this skill when the user explicitly requests a security audit, asks for a code review with a focus on security, or mentions security concerns related to code. The security-agent plugin then provides structured security findings with severity ratings, code locations, impact assessments, and remediation guidance.
2026-01-05
literature-research.md
2
1
export
literature-research
2
from
"bahayonghang/wechat-content-writer"
from
"bahayonghang/wechat-content-writer"
3
This skill should be used when the user asks to "搜索文献", "查找学术资料", "搜索最新研究", "literature search", "find papers", "search academic literature", "latest research", or mentions specific academic domains like AI, machine learning, computer science research. Provides comprehensive academic literature search and analysis capabilities for WeChat content creation.
2026-01-05
documenting-code-comments.md
2
1
export
documenting-code-comments
2
from
"third774/dotfiles"
from
"third774/dotfiles"
3
Standards for writing self-documenting code and best practices for when to write (and avoid) code comments. Use when auditing, cleaning up, or improving inline code documentation.
2026-01-05
detecting-sql-injection-vulnerabilities.md
2
1
export
detecting-sql-injection-vulnerabilities
2
from
"jeremylongshore/claude-code-plugins-nixtla"
from
"jeremylongshore/claude-code-plugins-nixtla"
3
This skill enables Claude to detect SQL injection vulnerabilities in code. It uses the sql-injection-detector plugin to analyze codebases, identify potential SQL injection flaws, and provide remediation guidance. Use this skill when the user asks to find SQL injection vulnerabilities, scan for SQL injection, or check code for SQL injection risks. The skill is triggered by phrases like "detect SQL injection", "scan for SQLi", or "check for SQL injection vulnerabilities".
2026-01-05
finishing-a-development-branch.md
2
1
export
finishing-a-development-branch
2
from
"tilework-tech/nori-cli"
from
"tilework-tech/nori-cli"
3
Use this when you have completed some feature implementation and have written passing tests, and you are ready to create a PR.
2026-01-05
fosmvvm-fluent-datamodel-generator.md
2
1
export
fosmvvm-fluent-datamodel-generator
2
from
"foscomputerservices/FOSUtilities"
from
"foscomputerservices/FOSUtilities"
3
Generate Fluent DataModels for FOSMVVM server-side persistence. Use when creating new database-backed entities, adding tables, or when the user mentions adding Models like Users, Ideas, Documents, etc. Uses fosmvvm-fields-generator for the Fields layer, then generates Fluent DataModel, migrations, and tests.
2026-01-05
test-generation.md
2
1
export
test-generation
2
from
"duc01226/EasyPlatform"
from
"duc01226/EasyPlatform"
3
Use when generating test cases, creating test specifications, writing unit tests, or analyzing test coverage.
2026-01-05
e2e-testing.md
2
1
export
e2e-testing
2
from
"cosmix/claude-code-setup"
from
"cosmix/claude-code-setup"
3
End-to-end testing patterns and best practices for web applications using Playwright and Cypress. Covers Page Object Model, test fixtures, selector strategies, async handling, visual regression testing, and flaky test prevention. Use when setting up E2E tests, debugging test failures, or improving test reliability. Trigger keywords: e2e testing, end-to-end tests, Playwright, Cypress, Page Object Model, test fixtures, selectors, data-testid, async tests, visual regression, flaky tests, browser testing.
2026-01-05
cybersecurity-policy-generator.md
2
1
export
cybersecurity-policy-generator
2
from
"diegocconsolini/ClaudeSkillCollection"
from
"diegocconsolini/ClaudeSkillCollection"
3
Generate enterprise cybersecurity policies from 51 professional templates (SANS, CIS Controls) for ISO 27001, SOC 2, NIST, and CIS Controls compliance in Markdown, Word, HTML, and PDF formats
2026-01-05
validating-cors-policies.md
2
1
export
validating-cors-policies
2
from
"jeremylongshore/claude-code-plugins-nixtla"
from
"jeremylongshore/claude-code-plugins-nixtla"
3
This skill enables Claude to validate Cross-Origin Resource Sharing (CORS) policies. It uses the cors-policy-validator plugin to analyze CORS configurations and identify potential security vulnerabilities. Use this skill when the user requests to "validate CORS policy", "check CORS configuration", "analyze CORS headers", or asks about "CORS security". It helps ensure that CORS policies are correctly implemented, preventing unauthorized cross-origin requests and protecting sensitive data.
2026-01-05
growth-experimenter.md
2
1
export
growth-experimenter
2
from
"daffy0208/ai-dev-standards"
from
"daffy0208/ai-dev-standards"
3
Run systematic growth experiments to increase acquisition, activation, retention, and revenue. Use when optimizing conversion funnels, running A/B tests, improving metrics, or when users mention growth, experimentation, optimization, or scaling user acquisition.
2026-01-05
generating-test-doubles.md
2
1
export
generating-test-doubles
2
from
"jeremylongshore/claude-code-plugins-nixtla"
from
"jeremylongshore/claude-code-plugins-nixtla"
3
This skill uses the test-doubles-generator plugin to automatically create mocks, stubs, spies, and fakes for unit testing. It analyzes dependencies in the code and generates appropriate test doubles based on the chosen testing framework, such as Jest, Sinon, or others. Use this skill when you need to generate test doubles, mocks, stubs, spies, or fakes to isolate units of code during testing. Trigger this skill by requesting test double generation or using the `/gen-doubles` or `/gd` command.
2026-01-05
hugo-builder.md
2
1
export
hugo-builder
2
from
"novemberde/novemberde.github.io"
from
"novemberde/novemberde.github.io"
3
Build, serve, and deploy the Hugo static site. Use when building the site, testing locally, checking for errors, or deploying to GitHub Pages.
2026-01-05
go-local-health.md
2
1
export
go-local-health
2
from
"regenrek/agent-skills"
from
"regenrek/agent-skills"
3
Run local Go health checks (tests, coverage, lint) in Go repositories that contain go.mod/go.sum. Use when the user asks to run or interpret local Go test/coverage/lint workflows using tools like lazygotest, gocovsh, tparse, and golangci-lint. Do not use for Rust or non-Go projects.
2026-01-05
scanning-for-accessibility-issues.md
2
1
export
scanning-for-accessibility-issues
2
from
"jeremylongshore/claude-code-plugins-nixtla"
from
"jeremylongshore/claude-code-plugins-nixtla"
3
This skill enables Claude to perform comprehensive accessibility audits. It uses the accessibility-test-scanner plugin to identify WCAG 2.1/2.2 compliance issues, validate ARIA attributes, check keyboard navigation, and assess screen reader compatibility. Use this skill when the user requests an accessibility scan, audit, or compliance check, or when terms like "WCAG", "ARIA", "screen reader", "accessibility testing", or "a11y" are mentioned. It provides actionable insights for improving web application accessibility.
2026-01-05
testing-skills-with-subagents.md
2
1
export
testing-skills-with-subagents
2
from
"heyJordanParker/dotfiles"
from
"heyJordanParker/dotfiles"
3
Use when creating or editing skills, before deployment, to verify they work under pressure and resist rationalization - applies RED-GREEN-REFACTOR cycle to process documentation by running baseline without skill, writing to address failures, iterating to close loopholes
2026-01-05
checking-infrastructure-compliance.md
2
1
export
checking-infrastructure-compliance
2
from
"jeremylongshore/claude-code-plugins-nixtla"
from
"jeremylongshore/claude-code-plugins-nixtla"
3
This skill allows Claude to check infrastructure compliance against industry standards such as SOC2, HIPAA, and PCI-DSS. It analyzes existing infrastructure configurations and reports on potential compliance violations. Use this skill when the user asks to assess compliance, identify security risks related to compliance, or generate reports on compliance status for SOC2, HIPAA, or PCI-DSS. Trigger terms include: "compliance check", "SOC2 compliance", "HIPAA compliance", "PCI-DSS compliance", "compliance report", "infrastructure compliance", "security audit", "assess compliance".
2026-01-05
content-strategic-review.md
2
1
export
content-strategic-review
2
from
"RogueRope/docs"
from
"RogueRope/docs"
3
Comprehensive content strategy review from reader's perspective. Acts as Chief Web Editor + Technical Writer to audit site clarity, practical information completeness, instructional quality, information architecture, and inclusive accessibility. Tests from multiple reader personas including beginners, experienced users, and people with accessibility needs.
2026-01-05