Backend

Hyper-pedantic code review skill that emulates Monty's Django4Lyfe backend engineering philosophy and review style. Use this when reviewing or refactoring Python/Django code in this backend repo and you want a strict, correctness-first, multi-tenant-safe, deeply nitpicky review.

Use when creating API services for backend communication with proper patterns for caching, error handling, and type safety.

Master architectural design with SOLID principles, design patterns, microservices, and event-driven systems. Learn to design scalable backend systems.

Provides development guidance for implementing backend features using Domain-Driven Design, hexagonal architecture, event-driven patterns, and HATEOAS conventions. Use when implementing new domain features, REST APIs, or integrating cross-domain functionality in the backend.

Creates and maintains technical documentation including API docs, README files, architecture docs, and inline code comments. Trigger keywords: document, docs, readme, api docs, jsdoc, docstring, architecture doc.

Use when creating or modifying a CQRS Command (Save, Create, Update, Delete) or command handler in .NET backend.

Pedantic backend pre-commit and atomic commit Skill for Django/Optimo-style repos. Enforces local AGENTS.md / CLAUDE.md, pre-commit hooks, .security/* helpers, and Monty’s backend engineering taste – with no AI signatures in commit messages.

Implement background jobs using ActiveJob for asynchronous task processing. Use when tasks are time-consuming, can be processed asynchronously, or should not block user requests (emails, reports, data processing).

Use when user says "resume session", "what did I work on", or "find conversation about [topic]". Automatically searches, resumes, and analyzes Claude Code sessions. Handles session discovery, content search, and automatic session restoration from any directory.

Uses the Vibesafe MCP server to scan, compile, test, save, diff, and report status for Vibesafe units. Activate when the user asks to run vibesafe CLI commands (scan/compile/test/save/diff/status), regenerate code from specs, or inspect drift/checkpoints.

Cloud-native infrastructure management with Crossplane using Kubernetes APIs. Use when implementing infrastructure as code, composite resources, or multi-cloud provisioning. Triggers: crossplane, xrd, composition, claim, provider, managed resource, composite resource, infrastructure API.

Manage changes to data structure and formats in JSON files, ensuring compatibility and smooth transitions when updating the static site's data sources. Use this skill when modifying data schemas, updating JSON structures, or evolving how data is consumed.

Add or modify PooCommerce backend PHP code following project conventions. Use when creating new classes, methods, hooks, or modifying existing backend code.

Creates production-ready design files, prototypes, and specifications for development teams. Translates validated concepts into detailed, implementable designs with comprehensive specs for developers. Produces Figma files (via API), high-fidelity prototypes, design specifications, and animation files.

Comprehensive guide for implementing Fullstory's Capture Control APIs (shutdown/restart) for web applications. Teaches proper session management, capture pausing, and resource optimization. Includes detailed good/bad examples for performance-sensitive sections, privacy zones, and SPA cleanup to help developers control when Fullstory captures sessions.

Use when working with Electron - IPC security, renderer isolation, Node API access

Facilitate structured brainstorming using parallel sub-agents to explore idea spaces. Use for IDEATION/CONCEPTUAL WORK ONLY, NOT for implementation planning or task breakdown. Use when user wants to brainstorm, explore ideas, generate concepts, develop vision, or discover creative directions. Transforms vague ideas into practical, tangible expressions through 5 rounds of parallel agent analysis and refinement.

完整的 7 阶段功能开发工作流（需求理解、代码探索、架构设计、实施、审查、总结）。适用场景：(1) 新功能实施或模块开发，(2) 复杂代码修改和重构，(3) API/数据库/服务架构设计，(4) 多模块功能开发，(5) 需要代码审查的实施任务。融合 ultrathink 深度分析、MCP 工具增强（context7、exa、sequential-thinking）和并行 agent 执行（code-explorer、code-architect、code-reviewer）。支持全程中文交互。

Guide for creating high-quality MCP (Model Context Protocol) servers that enable LLMs to interact with external services through well-designed tools. Use when building MCP servers to integrate external APIs or services, whether in Python (FastMCP) or Node/TypeScript (MCP SDK).

This skill automates security vulnerability testing. It is triggered when the user requests security assessments, penetration tests, or vulnerability scans. The skill covers OWASP Top 10 vulnerabilities, SQL injection, XSS, CSRF, authentication issues, and authorization flaws. Use this skill when the user mentions "security test", "vulnerability scan", "OWASP", "SQL injection", "XSS", "CSRF", "authentication", or "authorization" in the context of application or API testing.