Browse Skills
22656 skills found
scanning-input-validation-practices.md
2
1
export
scanning-input-validation-practices
2
from
"jeremylongshore/claude-code-plugins-nixtla"
from
"jeremylongshore/claude-code-plugins-nixtla"
3
This skill enables Claude to automatically scan source code for potential input validation vulnerabilities. It identifies areas where user-supplied data is not properly sanitized or validated before being used in operations, which could lead to security exploits like SQL injection, cross-site scripting (XSS), or command injection. Use this skill when the user asks to "scan for input validation issues", "check input sanitization", "find potential XSS vulnerabilities", or similar requests related to securing user input. It is particularly useful during code reviews, security audits, and when hardening applications against common web vulnerabilities. The skill leverages the input-validation-scanner plugin to perform the analysis.
2026-01-05
database-design.md
2
1
export
database-design
2
from
"cosmix/claude-code-setup"
from
"cosmix/claude-code-setup"
3
Designs database schemas, relationships, indexes, and migrations for relational and NoSQL databases. Trigger keywords: database design, schema, migration, ERD, normalization, index, foreign key, table design.
2026-01-05
outlook-automation.md
2
1
export
outlook-automation
2
from
"gmickel/outlookctl"
from
"gmickel/outlookctl"
3
Automates reading, searching, drafting, and sending emails AND calendar events in Classic Outlook on Windows using local COM automation. Use this skill when the user asks to process Outlook emails, create drafts, send messages, save attachments, manage calendar events, create meetings, or respond to invitations from the authenticated Outlook session on their Windows Devbox. Requires Classic Outlook (not New Outlook) to be running.
2026-01-05
agent-native-architecture.md
2
1
export
agent-native-architecture
2
from
"hirefrank/hirefrank-marketplace"
from
"hirefrank/hirefrank-marketplace"
3
Build AI agents on Cloudflare's edge using prompt-native architecture where features are defined in prompts, not code. Use when creating autonomous agents with Durable Objects, designing Workers services, implementing self-modifying systems, or adopting the "trust the agent's intelligence" philosophy on the edge.
2026-01-05
modeling-nosql-data.md
2
1
export
modeling-nosql-data
2
from
"jeremylongshore/claude-code-plugins-nixtla"
from
"jeremylongshore/claude-code-plugins-nixtla"
3
This skill enables Claude to design NoSQL data models. It activates when the user requests assistance with NoSQL database design, including schema creation, data modeling for MongoDB or DynamoDB, or defining document structures. Use this skill when the user mentions "NoSQL data model", "design MongoDB schema", "create DynamoDB table", or similar phrases related to NoSQL database architecture. It assists in understanding NoSQL modeling principles like embedding vs. referencing, access pattern optimization, and sharding key selection.
2026-01-05
text-agent-client.md
2
1
export
text-agent-client
2
from
"nxt3d/rest-ap"
from
"nxt3d/rest-ap"
3
Interact with the Text Processing AI Agent. Use when you need text analysis, formatting, or processing capabilities from the agent.
2026-01-05
managing-test-environments.md
2
1
export
managing-test-environments
2
from
"jeremylongshore/claude-code-plugins-nixtla"
from
"jeremylongshore/claude-code-plugins-nixtla"
3
This skill enables Claude to manage isolated test environments using Docker Compose, Testcontainers, and environment variables. It is used to create consistent, reproducible testing environments for software projects. Claude should use this skill when the user needs to set up a test environment with specific configurations, manage Docker Compose files for test infrastructure, set up programmatic container management with Testcontainers, manage environment variables for tests, or ensure cleanup after tests. Trigger terms include "test environment", "docker compose", "testcontainers", "environment variables", "isolated environment", "env-setup", and "test setup".
2026-01-05
plan-product.md
2
1
export
plan-product
2
from
"korallis/Amp-OS"
from
"korallis/Amp-OS"
3
Create and refine a multi-phase product roadmap. Use when starting a new project, planning features, or updating the product roadmap. Leverages oracle for strategic planning.
2026-01-05
creating-github-issues-from-web-research.md
2
1
export
creating-github-issues-from-web-research
2
from
"jeremylongshore/claude-code-plugins-nixtla"
from
"jeremylongshore/claude-code-plugins-nixtla"
3
This skill enhances Claude's ability to conduct web research and translate findings into actionable GitHub issues. It automates the process of extracting key information from web search results and formatting it into a well-structured issue, ready for team action. Use this skill when you need to research a topic and create a corresponding GitHub issue for tracking, collaboration, and task management. Trigger this skill by requesting Claude to "research [topic] and create a ticket" or "find [information] and generate a GitHub issue".
2026-01-05
checking-owasp-compliance.md
2
1
export
checking-owasp-compliance
2
from
"jeremylongshore/claude-code-plugins-nixtla"
from
"jeremylongshore/claude-code-plugins-nixtla"
3
This skill uses the owasp-compliance-checker plugin to automatically identify potential security vulnerabilities based on the OWASP Top 10 (2021) list. It helps ensure your application adheres to industry-standard security practices by providing a detailed analysis of compliance gaps and offering remediation guidance. Use this skill when you need to audit your code for OWASP compliance, identify and fix vulnerabilities, or generate a compliance report. Trigger this skill by asking to "check OWASP compliance", "scan for OWASP vulnerabilities", or using the `/owasp` shortcut.
2026-01-05
generating-stored-procedures.md
2
1
export
generating-stored-procedures
2
from
"jeremylongshore/claude-code-plugins-nixtla"
from
"jeremylongshore/claude-code-plugins-nixtla"
3
This skill uses the stored-procedure-generator plugin to create production-ready stored procedures, functions, triggers, and custom database logic. It supports PostgreSQL, MySQL, and SQL Server. Use this skill when the user asks to "generate stored procedure", "create database function", "write a trigger", or needs help with "database logic", "optimizing database performance", or "ensuring transaction safety" in their database. The skill is activated by requests related to database stored procedures, functions, or triggers.
2026-01-05
subagent-driven-development.md
2
1
export
subagent-driven-development
2
from
"HTRamsey/claude-config"
from
"HTRamsey/claude-config"
3
Use when executing implementation plans with independent tasks in the current session or facing 3+ independent issues that can be investigated without shared state or dependencies - dispatches fresh subagent for each task with code review between tasks, enabling fast iteration with quality gates
2026-01-05
deploying-monitoring-stacks.md
2
1
export
deploying-monitoring-stacks
2
from
"jeremylongshore/claude-code-plugins-nixtla"
from
"jeremylongshore/claude-code-plugins-nixtla"
3
This skill deploys monitoring stacks, including Prometheus, Grafana, and Datadog. It is used when the user needs to set up or configure monitoring infrastructure for applications or systems. The skill generates production-ready configurations, implements best practices, and supports multi-platform deployments. Use this when the user explicitly requests to deploy a monitoring stack, or mentions Prometheus, Grafana, or Datadog in the context of infrastructure setup.
2026-01-05
checking-infrastructure-compliance.md
2
1
export
checking-infrastructure-compliance
2
from
"jeremylongshore/claude-code-plugins-nixtla"
from
"jeremylongshore/claude-code-plugins-nixtla"
3
This skill allows Claude to check infrastructure compliance against industry standards such as SOC2, HIPAA, and PCI-DSS. It analyzes existing infrastructure configurations and reports on potential compliance violations. Use this skill when the user asks to assess compliance, identify security risks related to compliance, or generate reports on compliance status for SOC2, HIPAA, or PCI-DSS. Trigger terms include: "compliance check", "SOC2 compliance", "HIPAA compliance", "PCI-DSS compliance", "compliance report", "infrastructure compliance", "security audit", "assess compliance".
2026-01-05
wrongodb-blogging.md
2
1
export
wrongodb-blogging
2
from
"gabrielelanaro/wrongodb"
from
"gabrielelanaro/wrongodb"
3
Plan and write WrongoDB devlog posts in this repo. Use when asked to plan, outline, draft, or revise posts under blog/, generate blog images, or follow the series structure for WrongoDB. This skill embeds the canonical planning and writing prompts and uses blog/generate_image.py for image generation.
2026-01-05
data-engineer.md
2
1
export
data-engineer
2
from
"daffy0208/ai-dev-standards"
from
"daffy0208/ai-dev-standards"
3
Expert in data pipelines, ETL processes, and data infrastructure
2026-01-05
r3f-performance.md
2
1
export
r3f-performance
2
from
"Bbeierle12/Skill-MCP-Claude"
from
"Bbeierle12/Skill-MCP-Claude"
3
R3F performance optimization—LOD (Level of Detail), frustum culling, instancing strategies, draw call reduction, frame budgets, lazy loading, and profiling tools. Use when optimizing render performance, handling large scenes, or debugging frame rate issues.
2026-01-05
tracking-application-response-times.md
2
1
export
tracking-application-response-times
2
from
"jeremylongshore/claude-code-plugins-nixtla"
from
"jeremylongshore/claude-code-plugins-nixtla"
3
This skill enables Claude to track and optimize application response times. It uses the response-time-tracker plugin to monitor API endpoints, database queries, external service calls, frontend rendering, and background job execution. The plugin calculates P50, P95, and P99 percentiles, average and maximum response times. Use this skill when you need to identify performance bottlenecks, monitor SLOs, or receive alerts about performance degradation. Trigger this skill with phrases like "track response times", "optimize latency", or "monitor application performance".
2026-01-05
prompt-injection-defense.md
2
1
export
prompt-injection-defense
2
from
"daishiman/AIWorkflowOrchestrator"
from
"daishiman/AIWorkflowOrchestrator"
3
AIシステムへのプロンプトインジェクション攻撃を防ぎ、入力検証とコンテキスト分離の設計指針を提供するスキル。Anchors:• OWASP LLM Top 10 / 適用: LLMセキュリティ脅威モデリング / 目的: インジェクション攻撃の分類と防御パターン理解• Simon Willison's Prompt Injection Research / 適用: 実攻撃パターン分析 / 目的: 実世界の攻撃事例から防御戦略を導出• Defense in Depth principle / 適用: 多層防御設計 / 目的: 単一障害点の排除Trigger:Use when designing prompt injection defenses, implementing AI security measures, sanitizing user inputs for LLM systems, separating trusted and untrusted contexts, conducting security reviews for LLM applications, mitigating indirect prompt injection risks.
2026-01-05
checking-session-security.md
2
1
export
checking-session-security
2
from
"jeremylongshore/claude-code-plugins-nixtla"
from
"jeremylongshore/claude-code-plugins-nixtla"
3
This skill enables Claude to check session security implementations within a codebase. It analyzes session management practices to identify potential vulnerabilities. Use this skill when a user requests to "check session security", "audit session handling", "review session implementation", or asks about "session security best practices" in their code. It helps identify issues like insecure session IDs, lack of proper session expiration, or insufficient protection against session fixation attacks. This skill leverages the session-security-checker plugin. Activates when you request "checking session security" functionality.
2026-01-05
server-components-patterns.md
2
1
export
server-components-patterns
2
from
"daishiman/AIWorkflowOrchestrator"
from
"daishiman/AIWorkflowOrchestrator"
3
React Server Componentsの実装パターン専門スキル。データフェッチ最適化、Suspenseストリーミング、サーバーアクション実装を提供する。Anchors:• Next.js Documentation / 適用: Server Components / 目的: パフォーマンス向上• React Server Components RFC / 適用: RSCアーキテクチャ / 目的: フェッチ最適化• Next.js Data Fetching / 適用: キャッシング戦略 / 目的: 効率的なデータ管理Trigger:Use when implementing React Server Components, designing RSC patterns, optimizing data fetching, planning Suspense boundaries, or implementing Server Actions.RSC, Server Components, data fetching, Suspense, streaming, Server Actions, cache, revalidate
2026-01-05
extension-toolchain.md
2
1
export
extension-toolchain
2
from
"phrazzld/claude-config"
from
"phrazzld/claude-config"
3
Apply modern browser extension toolchain patterns: WXT (default), Plasmo, CRXJS for Chrome/Firefox/Safari extensions. Use when building browser extensions, choosing extension frameworks, or discussing manifest v3 patterns.
2026-01-05
architectural-patterns.md
2
1
export
architectural-patterns
2
from
"daishiman/AIWorkflowOrchestrator"
from
"daishiman/AIWorkflowOrchestrator"
3
アーキテクチャパターン(Hexagonal、Onion、Vertical Sliceなど)の選定・比較・適用と、依存関係の準拠評価を支援するスキル。境界設計、レイヤー責務、移行計画を整理し、設計判断の根拠と実装の一貫性を保ちます。Anchors:• Patterns of Enterprise Application Architecture / 適用: パターン比較と選定 / 目的: トレードオフを整理する• Domain-Driven Design / 適用: ドメイン中心設計 / 目的: 境界と責務の明確化• Clean Architecture / 適用: 依存関係ルール / 目的: レイヤーの一方向性を維持Trigger:Use when selecting architecture patterns, designing system boundaries, comparing Hexagonal/Onion/Vertical Slice approaches, or evaluating dependency compliance in a codebase.
2026-01-05
creating-handoffs.md
2
1
export
creating-handoffs
2
from
"galihcitta/dotclaudeskills"
from
"galihcitta/dotclaudeskills"
3
Creates comprehensive handoff documents for seamless AI agent session transfers. Triggered when: (1) user requests handoff/memory/context save, (2) context window approaches capacity, (3) major task milestone completed, (4) work session ending, (5) user says 'save state', 'create handoff', 'I need to pause', 'context is getting full', (6) resuming work with 'load handoff', 'resume from', 'continue where we left off'. Proactively suggests handoffs after substantial work (multiple file edits, complex debugging, architecture decisions). Solves long-running agent context exhaustion by enabling fresh agents to continue with zero ambiguity.
2026-01-05