Browse Skills
9063 skills found
code-review-checklist.md
2
1
export
code-review-checklist
2
from
"phrazzld/claude-config"
from
"phrazzld/claude-config"
3
Apply comprehensive code review checklist covering purpose, design, quality, correctness, security, performance, testing, and documentation. Use when reviewing pull requests, conducting code reviews, or self-reviewing changes before committing.
2026-01-05
environment-isolation.md
2
1
export
environment-isolation
2
from
"daishiman/AIWorkflowOrchestrator"
from
"daishiman/AIWorkflowOrchestrator"
3
環境分離とアクセス制御スキル。開発・ステージング・本番環境の厳格な分離、環境間Secret共有の防止、最小権限原則の徹底を提供します。Anchors:• Building Secure and Reliable Systems / 適用: Defense in Depth原則 / 目的: 多層防御設計• The Twelve-Factor App / 適用: Config要素とコードの分離 / 目的: 環境変数による設定管理• Railway Secret Management / 適用: 環境グループによるSecret分離 / 目的: 環境別SecretストアTrigger:Use when designing environment isolation strategy, managing secrets across dev/staging/prod environments,implementing access control policies, preventing cross-environment data contamination,or validating environment separation compliance.environment isolation, secret management, access control, Railway secrets, GitHub secrets, security boundaries
2026-01-05
feature-docs.md
2
1
export
feature-docs
2
from
"duc01226/EasyPlatform"
from
"duc01226/EasyPlatform"
3
Use when generating comprehensive feature documentation with verified test cases and code evidence.
2026-01-05
validating-api-contracts.md
2
1
export
validating-api-contracts
2
from
"jeremylongshore/claude-code-plugins-nixtla"
from
"jeremylongshore/claude-code-plugins-nixtla"
3
This skill validates API contracts using consumer-driven testing and OpenAPI validation. It leverages Pact for consumer-driven contract testing, ensuring that API providers adhere to the expectations of their consumers. It also validates APIs against OpenAPI specifications to guarantee compliance and identify breaking changes. Use this skill when the user asks to generate contract tests, validate API responses, check backward compatibility, or validate requests/responses using the terms "contract-test", "ct", "Pact", "OpenAPI validation", or "consumer-driven contract testing".
2026-01-05
matrix-builds.md
2
1
export
matrix-builds
2
from
"daishiman/AIWorkflowOrchestrator"
from
"daishiman/AIWorkflowOrchestrator"
3
GitHub Actionsマトリックスビルド戦略設計・最適化スキル。複数OS、バージョン、環境での並列テストを実現。Anchors:• GitHub Actions Documentation / 適用: strategy.matrix / 目的: 並列CI/CD• GitHub Actions Workflow Syntax / 適用: include/exclude / 目的: 条件付きビルドTrigger:Use when configuring matrix builds, multi-environment testing, CI parallelization,dynamic matrix generation, or optimizing max-parallel settings.
2026-01-05
configuring-auto-scaling-policies.md
2
1
export
configuring-auto-scaling-policies
2
from
"jeremylongshore/claude-code-plugins-nixtla"
from
"jeremylongshore/claude-code-plugins-nixtla"
3
This skill configures auto-scaling policies for applications and infrastructure. It generates production-ready configurations based on user requirements, implementing best practices for scalability and security. Use this skill when the user requests help with auto-scaling setup, high availability, or dynamic resource allocation, specifically mentioning terms like "auto-scaling," "HPA," "scaling policies," or "dynamic scaling." This skill provides complete configuration code for various platforms.
2026-01-05
docker-containerization.md
2
1
export
docker-containerization
2
from
"Euda1mon1a/Autonomous-Assignment-Program-Manager"
from
"Euda1mon1a/Autonomous-Assignment-Program-Manager"
3
Docker development and container orchestration expertise. Use when creating Dockerfiles, docker-compose configurations, debugging container issues, optimizing images, or setting up isolated development environments. Integrates with CI/CD workflows and security scanning.
2026-01-05
test-validator.md
2
1
export
test-validator
2
from
"masanao-ohba/claude-manifests"
from
"masanao-ohba/claude-manifests"
3
Validates PHP test files for CakePHP projects, ensuring compliance with testing standards including proper documentation format, Configure::read usage, and avoiding prohibited patterns
2026-01-05
security-audit.md
2
1
export
security-audit
2
from
"cosmix/claude-code-setup"
from
"cosmix/claude-code-setup"
3
Performs comprehensive security audits identifying vulnerabilities, misconfigurations, and security best practice violations. Trigger keywords: security, audit, vulnerability, CVE, OWASP, penetration, security review, hardening.
2026-01-05
evaluation-harness.md
2
1
export
evaluation-harness
2
from
"patricio0312rev/skillset"
from
"patricio0312rev/skillset"
3
Builds repeatable evaluation systems with golden datasets, scoring rubrics, pass/fail thresholds, and regression reports. Use for "LLM evaluation", "testing AI systems", "quality assurance", or "model benchmarking".
2026-01-05
testing-skills-with-subagents.md
2
1
export
testing-skills-with-subagents
2
from
"cipherstash/cipherpowers"
from
"cipherstash/cipherpowers"
3
Use when creating or editing skills, before deployment, to verify they work under pressure and resist rationalization - applies RED-GREEN-REFACTOR cycle to process documentation by running baseline without skill, writing to address failures, iterating to close loopholes
2026-01-05
scanning-for-xss-vulnerabilities.md
2
1
export
scanning-for-xss-vulnerabilities
2
from
"jeremylongshore/claude-code-plugins-nixtla"
from
"jeremylongshore/claude-code-plugins-nixtla"
3
This skill enables Claude to automatically scan for XSS (Cross-Site Scripting) vulnerabilities in code. It is triggered when the user requests to "scan for XSS vulnerabilities", "check for XSS", or uses the command "/xss". The skill identifies reflected, stored, and DOM-based XSS vulnerabilities. It analyzes HTML, JavaScript, CSS, and URL contexts to detect potential exploits and suggests safe proof-of-concept payloads. This skill is best used during code review, security audits, and before deploying web applications to production.
2026-01-05
stack-audit.md
2
1
export
stack-audit
2
from
"Euda1mon1a/Autonomous-Assignment-Program-Manager"
from
"Euda1mon1a/Autonomous-Assignment-Program-Manager"
3
Comprehensive stack health audit for codebase and infrastructure. Runs 10 health checks covering frontend, backend, migrations, Docker, API integrity, and backup status. Use routinely to prevent "time loops" from accumulated issues.
2026-01-05
managing-permissions.md
2
1
export
managing-permissions
2
from
"wombat9000/claude-plugins"
from
"wombat9000/claude-plugins"
3
Guide for configuring Claude Code permissions in settings.json with security best practices for allow, ask, and deny rules. Use when: (1) Setting up or modifying permissions in settings.json, (2) Discussing tool permissions, access control, or security configuration, (3) User mentions allowing, blocking, or restricting specific tools or file access, (4) Configuring Bash command permissions, file access (Read/Edit/Write), or WebFetch restrictions, (5) Questions about what permissions are safe vs risky, (6) Troubleshooting permission-related errors or "permission denied" issues, (7) Reviewing security configuration or hardening Claude Code access.
2026-01-05
checking-hipaa-compliance.md
2
1
export
checking-hipaa-compliance
2
from
"jeremylongshore/claude-code-plugins-nixtla"
from
"jeremylongshore/claude-code-plugins-nixtla"
3
This skill enables Claude to automatically check for HIPAA (Health Insurance Portability and Accountability Act) compliance issues in codebases, infrastructure configurations, and documentation. It leverages the hipaa-compliance-checker plugin to identify potential violations related to data privacy, security, and access controls. Use this skill when the user explicitly requests to "check HIPAA compliance", "scan for HIPAA violations", "assess HIPAA readiness", or similar phrases related to HIPAA audits and security best practices. It is useful for projects handling protected health information (PHI) and requiring adherence to HIPAA regulations.
2026-01-05
systematic-debugging.md
2
1
export
systematic-debugging
2
from
"third774/dotfiles"
from
"third774/dotfiles"
3
Four-phase debugging framework with root cause tracing - understand the source before proposing fixes. Use when investigating bugs, errors, unexpected behavior, or failed tests.
2026-01-05
playwright.md
2
1
export
playwright
2
from
"dashed/claude-marketplace"
from
"dashed/claude-marketplace"
3
Browser automation with Playwright for Python. Use when testing websites, taking screenshots, filling forms, scraping web content, or automating browser interactions. Triggers on browser, web testing, screenshots, selenium, puppeteer, or playwright.
2026-01-05
tdd-enforcement-algorithm.md
2
1
export
tdd-enforcement-algorithm
2
from
"cipherstash/cipherpowers"
from
"cipherstash/cipherpowers"
3
Algorithmic decision tree enforcing test-first development via boolean conditions instead of imperatives
2026-01-05
dependency-doctor.md
2
1
export
dependency-doctor
2
from
"patricio0312rev/skillset"
from
"patricio0312rev/skillset"
3
Audits project dependencies for outdated packages, duplicates, heavy/problematic libraries, security vulnerabilities, and risky version combinations. Generates prioritized reports with security, performance, and maintainability insights, upgrade paths, and safe pinning recommendations. Use when users request dependency audits, package updates, security checks, or dependency optimization.
2026-01-05
component-creation.md
2
1
export
component-creation
2
from
"lsst-sqre/squareone"
from
"lsst-sqre/squareone"
3
Comprehensive guide for creating React components in the squared package and squareone app. Use this skill when creating new components, setting up component structure, implementing CSS Modules styling, writing Storybook stories, or setting up component tests. Covers TypeScript patterns (type vs interface, no React.FC), CSS Modules with design tokens, compound component patterns, Storybook integration, and vitest testing.
2026-01-05
finding-security-misconfigurations.md
2
1
export
finding-security-misconfigurations
2
from
"jeremylongshore/claude-code-plugins-nixtla"
from
"jeremylongshore/claude-code-plugins-nixtla"
3
This skill enables Claude to identify potential security misconfigurations in various systems and configurations. It leverages the security-misconfiguration-finder plugin to analyze infrastructure-as-code, application configurations, and system settings, pinpointing common vulnerabilities and compliance issues. Use this skill when the user asks to "find security misconfigurations", "check for security vulnerabilities in my configuration", "audit security settings", or requests a security assessment of a specific system or file. This skill will assist in identifying and remediating potential security weaknesses.
2026-01-05
chaos-engineering-setup.md
2
1
export
chaos-engineering-setup
2
from
"Dexploarer/hyper-forge"
from
"Dexploarer/hyper-forge"
3
Implement chaos engineering practices and tools for resilience testing
2026-01-05
git-hooks-concepts.md
2
1
export
git-hooks-concepts
2
from
"daishiman/AIWorkflowOrchestrator"
from
"daishiman/AIWorkflowOrchestrator"
3
Git Hooksの基本概念、ライフサイクル、実装パターンを提供し、コミット前のコード品質チェックとプッシュ前のテスト自動化を実現するスキル。Anchors:• Pro Git (Scott Chacon) / 適用: Git Hooksのライフサイクル理解 / 目的: クライアント/サーバー側フックの適切な選択• Continuous Delivery (Jez Humble) / 適用: 自動化パイプライン設計 / 目的: 品質ゲートの段階的実装Trigger:Use when implementing Git hooks for pre-commit code quality checks, pre-push test execution, or commit message validation.pre-commit, pre-push, git hooks, husky, lint-staged, conventional commits
2026-01-05
golang.md
2
1
export
golang
2
from
"cosmix/claude-code-setup"
from
"cosmix/claude-code-setup"
3
Go language expertise for writing idiomatic, production-quality Go code. Use for Go development, concurrency patterns, error handling, testing, and module management. Triggers: go, golang, goroutine, channel, go mod, go test, effective go.
2026-01-05