Browse Skills
9063 skills found
threat-model.md
2
1
export
threat-model
2
from
"cosmix/claude-code-setup"
from
"cosmix/claude-code-setup"
3
Threat modeling methodologies (STRIDE, DREAD, PASTA, attack trees) for secure architecture design. Use when planning new systems, reviewing architecture security, identifying threats, or assessing risk. Triggers: threat model, STRIDE, DREAD, attack surface, security architecture, trust boundary, threat vector, risk assessment.
2026-01-05
plugin-architecture.md
2
1
export
plugin-architecture
2
from
"daishiman/AIWorkflowOrchestrator"
from
"daishiman/AIWorkflowOrchestrator"
3
プラグインアーキテクチャの専門スキル。レジストリパターン、動的ロード、依存性注入を活用し、拡張可能なシステム設計を提供する。Anchors:• Clean Architecture (Robert C. Martin) / 適用: 拡張性設計 / 目的: 柔軟性確保• Dependency Injection Principles and Practices (Mark Seemann) / 適用: DI設計 / 目的: 疎結合実現• Design Patterns: Elements of Reusable Object-Oriented Software (Gang of Four) / 適用: レジストリパターン / 目的: 型安全な登録管理Trigger:Use when designing plugin systems, implementing extension points, managing dynamic module loading, creating registry patterns, or building workflow engines with pluggable executors.plugin architecture, registry pattern, dependency injection, dynamic loading, extension points, workflow executor
2026-01-05
agent-deployment-pipeline.md
2
1
export
agent-deployment-pipeline
2
from
"raphaelmansuy/k8s-agent-stack"
from
"raphaelmansuy/k8s-agent-stack"
3
Implement CI/CD pipelines for AI agent deployment with evaluation gates. Use for GitHub Actions workflows, GitOps with ArgoCD, container image building, and automated testing. Triggers on "CI/CD", "pipeline", "GitHub Actions", "GitOps", "ArgoCD", "deployment automation", "continuous deployment", or when implementing safe agent release workflows.
2026-01-05
security-headers.md
2
1
export
security-headers
2
from
"daishiman/AIWorkflowOrchestrator"
from
"daishiman/AIWorkflowOrchestrator"
3
HTTPセキュリティヘッダー設定の専門スキル。CSP、HSTS、X-Frame-Options、CSRF対策などの設計・実装・検証を体系的に提供する。Next.js/Express/Nginx等の環境に対応した具体的な実装パターンを含む。Anchors:• OWASP Secure Headers Project / 適用: ヘッダー設定基準 / 目的: 業界標準準拠• Web Application Security (Andrew Hoffman) / 適用: 脅威モデリング / 目的: 攻撃ベクトル理解• MDN Web Docs - HTTP Headers / 適用: ディレクティブ仕様 / 目的: 正確な構文Trigger:Use when implementing security headers, configuring CSP, setting up CSRF protection, or hardening HTTP responses.security headers, CSP, Content-Security-Policy, HSTS, X-Frame-Options, CSRF, XSS prevention, セキュリティヘッダー
2026-01-05
standards-testing.md
2
1
export
standards-testing
2
from
"korallis/Amp-OS"
from
"korallis/Amp-OS"
3
Comprehensive testing patterns for modern TypeScript applications covering Vitest, React Testing Library, Playwright E2E, and MSW API mocking.
2026-01-05
generating-test-reports.md
2
1
export
generating-test-reports
2
from
"jeremylongshore/claude-code-plugins-nixtla"
from
"jeremylongshore/claude-code-plugins-nixtla"
3
This skill generates comprehensive test reports with coverage metrics, trends, and stakeholder-friendly formats (HTML, PDF, JSON). It aggregates test results from various frameworks, calculates key metrics (coverage, pass rate, duration), and performs trend analysis. Use this skill when the user requests a test report, coverage analysis, failure analysis, or historical comparisons of test runs. Trigger terms include "test report", "coverage report", "testing trends", "failure analysis", and "historical test data".
2026-01-05
llm-gateway-routing.md
2
1
export
llm-gateway-routing
2
from
"phrazzld/claude-config"
from
"phrazzld/claude-config"
3
LLM gateway and routing configuration using OpenRouter and LiteLLM.Invoke when:- Setting up multi-model access (OpenRouter, LiteLLM)- Configuring model fallbacks and reliability- Implementing cost-based or latency-based routing- A/B testing different models- Self-hosting an LLM proxyKeywords: openrouter, litellm, llm gateway, model routing, fallback, A/B testing
2026-01-05
generating-test-doubles.md
2
1
export
generating-test-doubles
2
from
"jeremylongshore/claude-code-plugins-nixtla"
from
"jeremylongshore/claude-code-plugins-nixtla"
3
This skill uses the test-doubles-generator plugin to automatically create mocks, stubs, spies, and fakes for unit testing. It analyzes dependencies in the code and generates appropriate test doubles based on the chosen testing framework, such as Jest, Sinon, or others. Use this skill when you need to generate test doubles, mocks, stubs, spies, or fakes to isolate units of code during testing. Trigger this skill by requesting test double generation or using the `/gen-doubles` or `/gd` command.
2026-01-05
analyzing-security-headers.md
2
1
export
analyzing-security-headers
2
from
"jeremylongshore/claude-code-plugins-nixtla"
from
"jeremylongshore/claude-code-plugins-nixtla"
3
This skill analyzes HTTP security headers of a given domain to identify potential vulnerabilities and misconfigurations. It provides a detailed report with a grade, score, and recommendations for improvement. Use this skill when the user asks to "analyze security headers", "check HTTP security", "scan for security vulnerabilities", or requests a "security audit" of a website. It will automatically activate when security-related keywords are used in conjunction with domain names or URLs.
2026-01-05
catchup.md
2
1
export
catchup
2
from
"ryugen04/dotfiles"
from
"ryugen04/dotfiles"
3
Use when user requests learning review or knowledge consolidation. Triggers: (1) "daily review" or "daily" keywords, (2) "weekly review" or "weekly" keywords, (3) "understanding test" or "test" keywords, (4) "current location" or "where" keywords, (5) end-of-session retrospectives.
2026-01-05
authentication-docs.md
2
1
export
authentication-docs
2
from
"daishiman/AIWorkflowOrchestrator"
from
"daishiman/AIWorkflowOrchestrator"
3
API認証ドキュメント(OAuth 2.0/PKCE、API Key、JWT、トークン管理)の作成と図解を支援するスキル。認証フローの説明、トークン取得手順、セキュリティ注意点をわかりやすく整理します。Anchors:• OAuth 2.0 Simplified / 適用: フロー図解 / 目的: 正確な説明と用語整理• Web Application Security / 適用: セキュリティ注意点 / 目的: 安全な認証ドキュメント• API Documentation Best Practices / 適用: ドキュメント構成 / 目的: 読みやすさの担保Trigger:Use when writing authentication docs, creating OAuth flow diagrams, documenting token management, or preparing quickstart guides for API auth.
2026-01-05
generating-test-reports.md
2
1
export
generating-test-reports
2
from
"jeremylongshore/claude-code-plugins-nixtla"
from
"jeremylongshore/claude-code-plugins-nixtla"
3
This skill generates comprehensive test reports with coverage metrics, trends, and stakeholder-friendly formats (HTML, PDF, JSON). It aggregates test results from various frameworks, calculates key metrics (coverage, pass rate, duration), and performs trend analysis. Use this skill when the user requests a test report, coverage analysis, failure analysis, or historical comparisons of test runs. Trigger terms include "test report", "coverage report", "testing trends", "failure analysis", and "historical test data".
2026-01-05
unity-playmode-testing.md
2
1
export
unity-playmode-testing
2
from
"akiojin/unity-mcp-server"
from
"akiojin/unity-mcp-server"
3
Supports Unity Play Mode control, input simulation, UI automation, and visual verification. Integrates test execution, screenshot/video capture, and console log checking. Use when: starting Play Mode, input simulation, UI clicks, screenshots, video recording, test execution
2026-01-05
service-layer-extractor.md
2
1
export
service-layer-extractor
2
from
"patricio0312rev/skillset"
from
"patricio0312rev/skillset"
3
Refactors route handlers into service layer with clean boundaries, dependency injection, testability, and separation of concerns. Provides service interfaces, folder structure, testing strategy, and migration plan. Use when refactoring "fat controllers", "business logic", "service layer", or "architecture cleanup".
2026-01-05
performing-security-audits.md
2
1
export
performing-security-audits
2
from
"jeremylongshore/claude-code-plugins-nixtla"
from
"jeremylongshore/claude-code-plugins-nixtla"
3
This skill allows Claude to conduct comprehensive security audits of code, infrastructure, and configurations. It leverages various tools within the security-pro-pack plugin, including vulnerability scanning, compliance checking, cryptography review, and infrastructure security analysis. Use this skill when a user requests a "security audit," "vulnerability assessment," "compliance review," or any task involving identifying and mitigating security risks. It helps to ensure code and systems adhere to security best practices and compliance standards. Activates when you request "performing security audits" functionality.
2026-01-05
backend-dev-guidelines.md
2
1
export
backend-dev-guidelines
2
from
"Bbeierle12/Skill-MCP-Claude"
from
"Bbeierle12/Skill-MCP-Claude"
3
Backend development guidelines for Node.js/Express/TypeScript applications. Layered architecture (Routes → Controllers → Services → Repositories), error handling, validation, middleware patterns, database access, and testing. Use when creating routes, endpoints, APIs, controllers, services, repositories, middleware, or working with backend code.
2026-01-05
analyzing-security-headers.md
2
1
export
analyzing-security-headers
2
from
"jeremylongshore/claude-code-plugins-nixtla"
from
"jeremylongshore/claude-code-plugins-nixtla"
3
This skill analyzes HTTP security headers of a given domain to identify potential vulnerabilities and misconfigurations. It provides a detailed report with a grade, score, and recommendations for improvement. Use this skill when the user asks to "analyze security headers", "check HTTP security", "scan for security vulnerabilities", or requests a "security audit" of a website. It will automatically activate when security-related keywords are used in conjunction with domain names or URLs.
2026-01-05
password-generator.md
2
1
export
password-generator
2
from
"warpcode/dotfiles"
from
"warpcode/dotfiles"
3
Generate secure and memorable passwords that are grammatically correct sentences or phrases. Scope: password generation, passphrase creation. Triggers: "password", "passphrase", "secure password", "memorable password".
2026-01-05
shell-scripting.md
2
1
export
shell-scripting
2
from
"nekorush14/dotfiles"
from
"nekorush14/dotfiles"
3
Write and optimize Bash, Zsh, and shell scripts with best practices for error handling, argument parsing, portability, and security. Use when writing shell scripts, debugging scripts, implementing command-line tools, or improving shell script maintainability and security.
2026-01-05
implementation-verifier.md
2
1
export
implementation-verifier
2
from
"korallis/Amp-OS"
from
"korallis/Amp-OS"
3
Verify implementation completeness against spec and tasks. Use after implementation to ensure all tasks are complete, tests pass, and code meets quality standards before marking feature done.
2026-01-05
testing-load-balancers.md
2
1
export
testing-load-balancers
2
from
"jeremylongshore/claude-code-plugins-nixtla"
from
"jeremylongshore/claude-code-plugins-nixtla"
3
This skill enables Claude to test load balancing strategies. It validates traffic distribution across backend servers, tests failover scenarios when servers become unavailable, verifies sticky sessions, and assesses health check functionality. Use this skill when the user asks to "test load balancer", "validate traffic distribution", "test failover", "verify sticky sessions", or "test health checks". It is specifically designed for testing load balancing configurations using the `load-balancer-tester` plugin.
2026-01-05
data-validation.md
2
1
export
data-validation
2
from
"cosmix/claude-code-setup"
from
"cosmix/claude-code-setup"
3
Data validation patterns including schema validation, input sanitization, output encoding, and type coercion. Use when implementing form validation, API input validation, JSON Schema, Zod, Pydantic, sanitization, XSS prevention, or custom validators.
2026-01-05
integrating-secrets-managers.md
2
1
export
integrating-secrets-managers
2
from
"jeremylongshore/claude-code-plugins-nixtla"
from
"jeremylongshore/claude-code-plugins-nixtla"
3
This skill enables Claude to seamlessly integrate with various secrets managers like HashiCorp Vault and AWS Secrets Manager. It generates configurations and setup code, ensuring best practices for secure credential management. Use this skill when you need to manage sensitive information, generate production-ready configurations, or implement a security-first approach for your DevOps infrastructure. Trigger terms include "integrate secrets manager", "configure Vault", "AWS Secrets Manager setup", "manage credentials securely", or requests for secure configuration generation.
2026-01-05
finding-security-misconfigurations.md
2
1
export
finding-security-misconfigurations
2
from
"jeremylongshore/claude-code-plugins-nixtla"
from
"jeremylongshore/claude-code-plugins-nixtla"
3
This skill enables Claude to identify potential security misconfigurations in various systems and configurations. It leverages the security-misconfiguration-finder plugin to analyze infrastructure-as-code, application configurations, and system settings, pinpointing common vulnerabilities and compliance issues. Use this skill when the user asks to "find security misconfigurations", "check for security vulnerabilities in my configuration", "audit security settings", or requests a security assessment of a specific system or file. This skill will assist in identifying and remediating potential security weaknesses.
2026-01-05