subagent-driven-development
Use when executing implementation plans with independent tasks in the current session Execute plan by dispatching fresh subagent per task, w…
GDPR, SOC2, HIPAA · 320 skills
Use when executing implementation plans with independent tasks in the current session Execute plan by dispatching fresh subagent per task, w…
Full-stack diagnostic for agent and LLM applications.
Review a PR for correctness, security, code quality, and testing issues.
Review backend code for quality, security, maintainability, and best practices based on established checklist rules.
Review backend code for quality, security, maintainability, and best practices based on established checklist rules.
Reviews code for security vulnerabilities, performance issues, and best practices.
Chief Security Officer mode.
Designer's eye QA: finds visual inconsistency, spacing issues, hierarchy problems, AI slop patterns, and slow interactions — then fixes them…
Live developer experience audit.
Visual design audit for iOS apps on real hardware.
Designer's eye plan review — interactive, like CEO and Eng review.
Interactive developer experience plan review.
Review, improve, rewrite, author, or plan Storybook documentation in /docs.
Perform a focused SEO audit on JavaScript concept pages to maximize search visibility, featured snippet optimization, and ranking potential…
> Spawn and coordinate agents for complex multi-agent tasks.
Agent skill for reviewer - invoke with $agent-reviewer color: "#E74C3C" description: Code review and quality assurance specialist priority:…
Agent skill for security-manager - invoke with $agent-security-manager name: security-manager color: "#F44336" description: Implements compr…
Agent skill for sparc-coordinator - invoke with $agent-sparc-coordinator name: sparc-coord type: coordination description: SPARC methodology…
Agent skill for v3-security-architect - invoke with $agent-v3-security-architect name: v3-security-architect version: "3.0.0-alpha" updated:…
Review TypeScript and JavaScript code changes for compliance with Metabase coding standards, style violations, and code quality issues.
Apply typography, color theory, spacing systems, and iconography principles to create cohesive visual designs.
在继续之前,你必须先考虑用户输入(如果不为空)。用户可能会指定: 围绕三个维度组织 CLAUDE.md: 对于较大的项目,建议创建 agent_docs/ 文件夹: |- buildingtheproject.md |- running_tests.md;
Create or update CLAUDE.md files following best practices for optimal AI agent onboarding You MUST consider the user input before proceeding…
Use when the user wants to design, redesign, shape, critique, audit, polish, clarify, distill, harden, optimize, adapt, animate, colorize, e…
Use when the user wants to design, redesign, shape, critique, audit, polish, clarify, distill, harden, optimize, adapt, animate, colorize, e…
| Patterns for adding safety, trust, and policy enforcement to AI agent systems.
| Evaluate AI agent systems against the OWASP Agentic Security Initiative (ASI) Top 10 — the industry standard for agent security posture.
| Patterns for self-improvement through iterative evaluation and refinement.
When the user wants to optimize content for AI search engines, get cited by LLMs, or appear in AI-generated answers.
When the user wants to plan a content strategy, decide what content to create, or figure out what topics to cover.
When the user wants to edit, review, or improve existing marketing copy, or refresh outdated content.
When the user wants to audit, review, or diagnose SEO issues on their site.
Analyze code changes on the current branch and recommend updates to AGENTS.md files that have become stale.
Validate skill files for structural compliance and behavioral correctness.
Run a WCAG 2.1 AA accessibility audit on a design or page.
Review content against your brand voice, style guide, and messaging pillars, flagging deviations by severity with specific before/after fixe…
Run a compliance check on a proposed action, product feature, or business initiative, surfacing applicable regulations, required approvals,…
| A feature is "properly skilled" when all 11 checklist items pass.
> Scan and audit AI agent skills for security risks before installation.
Validate, test, and score the quality of skills within the claude-skills ecosystem.
Security auditing for code, configs, and infrastructure.
'Implement network segmentation based on the Purdue Enterprise Reference Classify all network assets and data flows according to the Purdue…
Generates Spring Boot 3.x configurations, creates REST controllers, implements Spring Security 6 authentication flows, sets up Spring Data J…
Scan agent skills for security issues.
Use when running tests.
> Remove or quiet a community skill after install.
Autonomous novel writing CLI agent with web workbench (InkOS Studio) - use for creative fiction writing, standalone short-fiction packages,…
Audits GitHub Actions workflows for security vulnerabilities in AI agent integrations including Claude Code Action, Gemini CLI, OpenAI Codex…
Scans Algorand smart contracts for 11 common vulnerabilities including rekeying attacks, unchecked transaction fees, missing field validatio…
> Projects findings from external tools (SARIF) and human auditors (weAudit) onto Trailmark code graphs as annotations and subgraphs.
Enables ultra-granular, line-by-line code analysis to build deep architectural context before vulnerability or bug finding.
Prepares codebases for security review using Trail of Bits' checklist.
Searches and explores Burp Suite project files (.burp) from the command line.
Performs comprehensive C/C++ security review for memory corruption, integer overflows, race conditions, and platform-specific vulnerabilitie…
Scans Cairo/StarkNet smart contracts for 6 critical vulnerabilities including felt252 arithmetic overflow, L1-L2 messaging issues, address c…
Systematic code maturity assessment using Trail of Bits' 9-category framework.
Scans Cosmos SDK blockchain modules and CosmWasm contracts for consensus-critical vulnerabilities — chain halts, fund loss, state divergence…
Annotates codebases with dimensional analysis comments documenting units, dimensions, and decimal scaling.
Analyzes smart contract codebases to identify state-changing entry points for security auditing.
Scans Android APKs for Firebase security misconfigurations including open databases, storage buckets, authentication issues, and exposed clo…
Systematically verifies suspected security bugs to eliminate false positives.
> Builds Trailmark code graphs at two source snapshots and computes a structural diff.
Detects fail-open insecure defaults (hardcoded secrets, weak auth, permissive security) that allow apps to run insecurely in production.
>- Run a Semgrep scan with automatic language detection, parallel execution via Task subagents, and merged SARIF output.
Identifies error-prone APIs, dangerous configurations, and footgun designs that enable security mistakes.
Scans Solana programs for 6 critical vulnerabilities including arbitrary CPI, improper PDA validation, missing signer/ownership checks, and…
Verifies code implements exactly what documentation specifies for blockchain audits.
Scans Substrate/Polkadot pallets for 7 critical vulnerabilities including arithmetic overflow, panic DoS, incorrect weights, and bad origin…
Identifies dependencies at heightened risk of exploitation or takeover.
Scans TON (The Open Network) smart contracts for 3 critical vulnerabilities including integer-as-boolean misuse, fake Jetton contracts, and…
Builds and queries multi-language source code graphs for security analysis.
Runs full Trailmark structural analysis on Trailmark 0.2.x by building a graph, running `preanalysis()`, and reporting hotspots, taint, blas…
Find similar vulnerabilities and bugs across codebases using pattern-based analysis.
Detects missing zeroization of sensitive data in source code and identifies zeroization removed by compiler optimizations, with assembly-lev…
Multi-platform paid advertising audit and optimization skill.
Amazon Ads deep analysis covering Sponsored Products, Sponsored Brands (incl.
Full multi-platform paid advertising audit with parallel subagent delegation.
Google Ads deep analysis covering Search, Performance Max, AI Max, Display, YouTube, and Demand Gen campaigns.
LinkedIn Ads deep analysis for B2B advertising.
TikTok Ads deep analysis covering creative quality, tracking, bidding, campaign structure, and TikTok Shop under the TikTok USDS Joint Ventu…
GitHub issue and project-board management for the dotnet/msbuild repo.
Security-first skill vetting protocol for AI agents.
> Audit the live site, not the source tree alone.
This skill should be used when the user asks to "analyze skill quality", "evaluate this skill", "review skill quality", "check my skill", or…
Quality review and audit for Claude Code skills.
Write and improve agent skills (SKILL.md files).
Audit codebases for quality, consistency, and broken patterns — use for pre-release or tech debt review Comprehensive, methodical auditing t…
OpenClaw instance administration — manage hosts across macOS, Ubuntu/Debian, Docker, OCI, and Proxmox DETECT PLATFORM FIRST.
Expert multi-AI code review with inline PR comments — use for thorough quality and security analysis Invokes the code-reviewer persona for t…
Trace codepaths in diffs, map against tests, auto-generate missing coverage — use before shipping PRs Trace every codepath in a diff, map ea…
Debug issues methodically — use when stuck on errors, test failures, or unexpected behavior NO FIXES WITHOUT ROOT CAUSE INVESTIGATION FIRST…
Route ordinary init, review, and security requests to Claude-native capabilities first;
Decompose large tasks across parallel agents — use for migrations, multi-file refactors, or batch work DISCOVER DEFINE DEVELOP DELIVER (prob…
URL validation and content sanitization for untrusted sources — use when handling external input safely This skill defines security patterns…
Package and finalize completed work for delivery — use when a feature is done and ready to ship Finalize and deliver completed work with Mul…
Review code in two passes: spec compliance then quality — use for thorough PR or feature reviews This generated Codex skill preserves an enf…
Create zero-context implementation plans with bite-sized tasks — use for multi-step feature planning Write comprehensive implementation plan…
Trigger: improve skills, audit skills, refactor skills, skill quality.
In-depth guide to Factory, a container-based dependency injection system for Swift and SwiftUI.
> APM (Agent Package Manager) is the open-source package manager for AI coding agents.
Install Claude skills from GitHub repositories with automated security scanning.
Full pipeline: Recon -> Learn -> Hunt -> Validate -> Report.
Authors and structures professional-grade agent skills following the agentskills.io spec.
| Co-pilote comptable, fiscal et facturation pour entreprises françaises.
Inspect third-party Claude/OpenClaw/Codex/OpenCode skills, plugins, repos, npm packages, pip packages, shell installers, and GitHub Actions…
Release skills to ClawhHub through the full publication pipeline — auto-scaffolding, OPSEC scan, dual review (agent + user), force-push rele…
Security vetting protocol before installing any AI agent skill.
Vet ClawHub skills for security and utility before installation.
Internal orchestrator — users should use /paperspine to start a full workflow.
>- Read-only consistency audit across the skillshare codebase.
>- Sync website documentation with recent code changes.
Evaluate Agent Skill design quality against official specifications and best practices.
Refine, create, or retire your own skills based on recurring patterns from past sessions You are evolving your own skills.
Use when the user asks about WordPress codebases (plugins, themes, block themes, Gutenberg blocks, WP core checkouts) and you need to quickl…
Spring Boot 3.x development - REST APIs, JPA, Security, Testing, and Cloud-native patterns.
A phase-based playbook for shipping pull requests that maintainers actually want to merge.
This skill should be used when setting up, auditing, or enforcing internationalization/localization in UI codebases (React/TS, i18next or si…
>- Run a comprehensive, evidence-based health check of this Claude Code skills marketplace repo using a parallel fan-out Dynamic Workflow.
Multi-path parallel product analysis that combines Claude Code agent teams and Codex CLI for cross-model test-time compute scaling.
This skill should be used when establishing comprehensive QA testing processes for any software project.
>- Use when creating a new skill, reviewing or auditing skill structure and frontmatter, or debugging skill loading and triggering issues.
Design, improve, and evaluate reusable agent skills with high-quality SKILL.md files, precise trigger descriptions, progressive disclosure,…
Write unit and integration tests for Akka.NET actors using modern Akka.Hosting.TestKit patterns.
Organize DI registrations using IServiceCollection extension methods.
Provides guidance for implementing OpenTelemetry instrumentation in .NET codebases, covering tracing (Activities/Spans), metrics, naming con…
Use when fixing or auditing ANY accessibility issue — VoiceOver, Dynamic Type, color contrast, touch targets, WCAG compliance, App Store acc…
Use when the user has a crash log (.
Use when the user mentions Swift performance audit, code optimization, or performance review.
Use when the user mentions accessibility checking, App Store submission, code review, or WCAG compliance.
Use this agent to scan Swift code for camera, video, and audio capture issues including deprecated APIs, missing interruption handlers, thre…
Use when the user mentions Codable review, JSON encoding/decoding issues, data serialization audit, or modernizing legacy code.
Use when the user mentions concurrency checking, Swift 6 compliance, data race prevention, or async code review.
Use when the user mentions Core Data review, schema migration, production crashes, or data safety checking.
Use when the user mentions database schema review, migration safety, GRDB migration audit, or SQLite schema checking.
Use when the user mentions battery drain, energy optimization, power consumption audit, or pre-release energy check.
Use when the user mentions Foundation Models review, on-device AI audit, LanguageModelSession issues, @Generable checking, or Apple Intellig…
Use when the user mentions GRDB performance review, slow GRDB queries, app-group database setup audit, or pre-release GRDB scan.
Use when the user mentions in-app purchase review, IAP audit, StoreKit issues, purchase bugs, transaction problems, or subscription manageme…
Use when the user mentions iCloud sync issues, CloudKit errors, ubiquitous container problems, or asks to audit cloud sync.
Use when the user mentions Liquid Glass review, iOS 26 UI updates, toolbar improvements, or visual effect migration.
Use when the user mentions memory leak prevention, code review for memory issues, or proactive leak checking.
Use when the user mentions networking review, deprecated APIs, connection issues, or App Store submission prep.
Use when the user wants to audit SpriteKit game code for common issues.
Use when the user mentions file storage issues, data loss, backup bloat, or asks to audit storage usage.
Use when the user mentions SwiftData review, @Model issues, SwiftData migration safety, or SwiftData performance checking.
Use when the user mentions SwiftUI architecture review, separation of concerns, testability issues, or "logic in view" problems.
Use when the user mentions SwiftUI layout review, adaptive layout issues, GeometryReader problems, or multi-device layout checking.
Use when the user mentions SwiftUI navigation issues, deep linking problems, state restoration bugs, or navigation architecture review.
Use when the user wants to audit test quality, find flaky test patterns, speed up test execution, or prepare for Swift Testing migration.
Use when the user mentions TextKit review, text layout issues, Writing Tools integration, or UITextView/NSTextView code review.
Use when the user mentions UX flow issues, dead-end views, dismiss traps, missing empty states, broken user journeys, or wants a UX audit of…
Use this agent for closed-loop test debugging - automatically analyzes test failures, suggests fixes, and re-runs tests until passing.
Use when making design decisions, implementing HIG patterns, Liquid Glass, SF Symbols, typography, or structuring app entry points and authe…
Use when the user mentions Xcode build failures, build errors, or environment issues.
Use when the user wants a comprehensive project-wide audit, full health check, or scan across all domains.
Use when the user mentions slow builds, build performance, or build time optimization.
Use when app feels slow, memory grows, battery drains, or diagnosing ANY performance issue.
Use when the user wants automated performance profiling, headless Instruments analysis, or CLI-based trace collection.
Use when the user wants to run XCUITests, parse test results, view test failures, or export test attachments.
Use when storing credentials securely, encrypting data, implementing passkeys, securing AI/agentic features against prompt injection, code s…
Use when the user mentions simulator testing, visual verification, push notification testing, location simulation, screenshot capture, OR li…
Use when the user mentions App Store screenshot validation, screenshot review, checking screenshots before submission, or verifying screensh…
Critically review a workspace skill and suggest improvements.
A comprehensive auditor for any agent skill — including Manus, OpenClaw/ClawHub, Claude, LobeHub, or custom SKILL.md-based skills.
Scan agent skills for security issues.
Universal consolidation & audit skill for Claude Code skills.
Audit skill configurations for correctness and freshness Audits all skill configurations, checks for stale or broken skills, and reports on…
Scan Clawdbot and MCP skills for malware, spyware, crypto-miners, and malicious code patterns before you install them.
Security-first skill vetting for AI agents.
Security scanner for AgentSkill packages.
When the user wants to define, audit, or apply brand strategy—purpose, values, positioning, storytelling, voice, narrative (not only visuals…
When the user wants to design, optimize, or audit carousel/slider layouts for content display.
Benchmark AI skill effectiveness by measuring implementation quality against legacy constraints.
>- Use when the user says things like "compare designs", "what changed", "diff my schematic", "show changes from main", or "diff base vs hea…
Audit all Claude Code skills for stale references, broken paths, and deprecated tool names Audit .claude/skills/ for drift: broken file path…
Audit skill metrics, file/resolve issues in memory/issues/, and notify on state change only <!-- autoresearch: variation C — more robust: me…
Audit skills, workflows, and companion scripts for injection, exfiltration, traversal, and prompt-override risks with delta tracking, baseli…
Weekly fleet-level skill-run analytics — ranks skills by 7d run count, surfaces success rates, exit-taxonomy distribution, and anomaly flags…
Audit every enabled skill's upstream file dependencies for staleness — flags chained skills about to consume yesterday's article or a long-d…
Check imported skills for upstream changes and security regressions since the version in skills.lock <!-- autoresearch: variation B — sharpe…
> Create new agent skills that work across Claude Code (CLI/IDE) and IBM Bob.
Audit a ClawHub skill for security risks BEFORE installation.
Evaluates agent skills against Anthropic's best practices.
Authors and structures professional-grade agent skills following the agentskills.io spec.
Audits skills in this repo for consistency, API drift, and structural gaps.
'Audit an existing SKILL.md against the unified AgentOps template (15 Use when ` markers OR `metadata.
Scaffold a new SKILL.md.
Review code changes against WooCommerce iOS standards Review the current changes for compliance with WooCommerce iOS conventions.
这是一个带强制 checkpoint 的工作流,不是参考手册。每个阶段有 MUST 输出,未通过不进下一阶段。详细 payload / playbook / H1 案例按需 Read,不准凭记忆生成。
Safety Monitor Agent responsible for compliance and safety checks.
Show sprint progress Show current sprint progress with minimal token usage.
Audit AI Agent skills for security vulnerabilities including malicious code, remote execution, credential leaks, and supply chain risks.
微信小程序全自动安全审计 Skill。使用 Agent Teams 编排多个 Agent,分阶段完成从反编译到报告生成的全流程静态安全分析。
Implement the security design principle of secure system modification in [organization-defined].
> You are extracting domain knowledge for a library to produce a structured domain map.
Guide creating Claude Code skills with TDD and persuasion principles.
Audit Skill() refs; detect hubs, isolates, and dangling targets.
Evaluate Claude skill quality through auditing.
Use when the user asks to review a skill, analyze skill quality, update a skill version, or run a repeatable keep/disable/archive decision l…
Use when auditing a large local skill collection, identifying duplicate or imported skills, comparing skill roots, or deciding what to keep,…
Evaluate Agent Skill design quality against official specifications and best practices.
Improve a SKILL.md to pass the skill-creator standard (quick_validate, frontmatter audit, ≤500 lines) AND the asm-eval 85/8 floor.
Add GitHub skill repos to the ASM index: clone, audit, eval, regenerate index, rebuild catalog, open PR.
基于《OpenClaw 极简安全实践指南》和《安全验证与攻防演练手册》的 Skill 安全审计工具。对 OpenClaw Skill 进行从源码到运行时的全生命周期安全审查,覆盖供应链投毒、Prompt 注入载荷、恶意代码模式、权限越权等威胁向量。
Qualitaet installierter Skills prüfen: Normaktualitaet, Description-Qualitaet, Struktur-Compliance.
Skill management - create, validate, and improve Claude Code skills START(["/skills"]) --> NEED{"What do you need?"} NEED -->|New skill| WOR…
Scan a repository to bootstrap new skills or audit and update existing ones Bootstrap skills for a new repo, or audit and update skills in a…
Validate skill files meet the standard format and naming conventions Skills operate on either sandbox (safe) or management (requires approva…
Amazon listing builder and optimizer for sellers.
Evaluates and optimizes skill file quality using 8 content patterns and 9 editing principles.
Audit the agent's own skill library for malicious, misconfigured, or untrusted SKILL.md files.
Guidelines for writing Agent Skills that comply with the agentskills.io specification.
Step-by-step guide for creating your own Claude Skills, from deciding whether a skill is the right tool to writing the SKILL.md file, struct…
>- Use when creating a new skill, reviewing or auditing skill structure and frontmatter, or debugging skill loading and triggering issues.
>- Read-only consistency audit across the skillshare codebase.
>- Sync website documentation with recent code changes.
| Run scenarios without the skill (RED — watch agent fail), write skill addressing those failures (GREEN), then close loopholes (REFACTOR).
Lifecycle guard.
Validates all CI skills in this repo.
Use when the user wants to validate, lint, or audit agent skill files (SKILL.md).
> Scan and audit AI agent skills for security risks before installation.
> The agent validates skill packages for structure compliance, tests Python scripts for syntax and stdlib-only imports, and scores quality a…
AI-powered code review via roborev.
| 从先知社区5600+篇安全文档中提炼的漏洞挖掘核心思维框架。
开始时声明:"我正在使用 gen skill 运行代码生成。" 默认运行 API 代码生成(storagev2、iam、media、audit): 如果用户提到 sandbox,则运行: make generate-sandbox 对比生成前后的变更,列出生成产生的文件差异。
|- <powerpointprofessionalsuite> <highfidelitycreation> The preferred method for precise layout positioning: </highfidelitycreation> <templa…
Audit all outdated dependencies with detailed research on changelogs, breaking changes, bug fixes, and deprecations.
| Use when MCP returns no images, or when page-region cropping is needed:.
Documenta projeto Power BI (PBIP) inteiro em markdown estruturado + HTML navegável (mini-site de doc).
Universal prompt engineering techniques for any LLM.
Orchestrate sequential documentation audits with checkpointing and resumption.
Single source of truth for all paths, naming conventions, and data formats across the OpenClaw Greek Accounting system.
ERNE — Autonomous ticket execution — polls a provider, picks up ready tickets, and runs the full ERNE pipeline (validate, plan, code, test,…
Use when working with Apple's MLX or MLX-LM: fact-checking current behavior against upstream source/runtime, patching MLX-based repos, porti…
Angular 21.x SPA development skill with TailwindCSS 4.x and daisyUI 5.5.5.
Improves an existing skill based on real project pain (prior eval corpora under .ai-engineering/evals/, Engram cross-session observations, L…
Safety hooks for Claude Code — 700 pre-built hooks that prevent file deletion, credential leaks, git disasters, and token waste during auton…
Comprehensive, research-backed Hinge dating profile optimization.
Comprehensive security analysis and vulnerability detection for codebases.
Audit state, docs drift, and stack best-practice compliance — works on any project Output this banner as the first thing on every invocation…
Enable ControlKeel governance for Cloudflare Agents with policy gates, budget enforcement, PII detection, and secure execution.
Performs comprehensive deep analysis of entire codebase and deployment pipeline to identify issues in production environment.
Analyze manufacturing defect detection and quality control systems — computer vision inspection pipelines, SPC control charts, Six Sigma pro…
Automates browser interactions for web testing, form filling, screenshots, and data extraction.
Audit interfaces for accessibility issues across semantics, keyboard use, focus management, color contrast, labels, and announcements.
Check whether backup and restore plans are actually restorable, verifiable, and operationally safe.
Gather code, config, docs, and operational proof points for audits and internal compliance reviews.
Turn incident timelines, logs, tickets, and chat snippets into a clear postmortem covering impact, detection, root cause, contributing facto…
Review Kubernetes manifests, deployment defaults, probes, resources, security context, and rollout safety.
Explain what changed between old and new policy documents and why the differences matter.
Review diffs like a senior engineer by checking correctness, architectural fit, style, missing tests, security smells, and migration or oper…
Build (or refresh) a structured hypothesis on whether a specific company can grow 5x and 10x in valuation over the next 5 years, then track…
Audits Claude Code agent configuration against latest best practices.
Audit and score an agent-definition markdown such as `AGENTS.md`, `CLAUDE.md`, `SKILL.md`, `SOUL.md`, `.cursorrules`, or a system prompt usi…
Guide humans through creating effective instruction rules for coding agents (Copilot, Claude Code, Cursor, Windsurf, Aider, AGENTS.md, CLAUD…
Audit and trim AI agent instruction files (AGENTS.md, CLAUDE.md, CONVENTIONS.md, .cursorrules, etc.) by testing which facts an AI agent can…
Full-spectrum marketing and SEO skill library with 160+ specialist skills.
Creates, updates, improves, and audits Agent Skills.
> Use when this capability is needed.
Audit a repository after large refactors, branch merges, or parallel agent threads for contradictions between implementation, docs, configs,…
Scaffold/audit GitHub Actions CI/CD — Go/Rust/TS.
GitHub Actions security hardening, CI/CD pipeline integrity, release security, and SSDF alignment Use when this capability is needed.
Audit and improve project-memory artifacts (CLAUDE.md, AGENTS.md, .claude/rules/*.md, .claude.local.md).
Review code changes, diffs, commits, branches, or PRs for correctness, regressions, security-sensitive mistakes, maintainability issues, and…
| Use when this capability is needed.
Build Codex-native workflows for open-source maintenance.
Creates new Claude Code agent configuration files or audits existing ones in .claude/agents/.
Run and triage Django/DRF security smoke checks for settings hardening, throttling, safe HTML, ORM race/idempotency patterns, and model inte…
Create, refresh, or reconcile the repository root `AGENTS.md` using current branch truth.
| Use when this capability is needed.
Use the upstream install or setup path that matches your environment: Requirements and caveats from upstream: Basic usage or getting-started…
FastAPI patterns for async APIs, dependency injection, Pydantic request and response models, OpenAPI docs, tests, security, and production r…
This skill covers the implementation of privacy-preserving machine learning Use when this capability is needed.
Drive the FFT_demo_dash holodeck system — scene triggers, agent commentary, canvas presets, and live weather mirroring — to produce impactfu…
Monitors the fleet of concurrent workflows across every registered domain (api/shared/domains.py).
Generate sandbox security policies from plain-language requirements and optional REST API documentation.
Troubleshoot Golang programs systematically - find and fix the root cause.
Verify Codex configuration health — AGENTS.md, hooks, config.toml, agents, skills, secrets scan, and MCP reachability.
Use this skill to audit, review, validate, or check the quality of AI assistant configurations including prompt text, prompt files, skills (…
Configure AIDE (Advanced Intrusion Detection Environment) for file integrity monitoring including baseline creation, Use when this capabilit…
Kubernetes NetworkPolicies provide pod-level network segmentation by defining ingress and egress rules that control Use when this capability…
Audit Copilot instruction files for bloat, overlap, stale rules, and weak applyTo scope.
> Use when this capability is needed.
| Use when this capability is needed.
This skill covers hardening managed Kubernetes clusters on EKS, AKS, and GKE by implementing Pod Security Standards, network policies, workl…
Assess the security posture of Kubernetes etcd clusters by evaluating encryption at rest, TLS configuration, access controls, backup encrypt…
Auditing Kubernetes cluster RBAC configurations to identify overly permissive roles, wildcard permissions, dangerous ClusterRoleBindings, se…
Audit Kubernetes cluster security posture against CIS benchmarks using kube-bench with automated checks for control plane, worker nodes, and…
Perform security risk analysis on Kubernetes resource manifests using Kubesec to identify misconfigurations, privilege escalation risks, and…
Pod Security Standards (PSS) define three levels of security policies -- Privileged, Baseline, and Restricted -- enforced by the Pod Securit…
Kubernetes NetworkPolicies provide pod-level network segmentation by defining ingress and egress rules that control traffic flow between pod…
Implement Kubernetes network segmentation using Calico NetworkPolicy and GlobalNetworkPolicy for zero-trust pod-to-pod communication.
Use when building a Kubernetes Operator — custom controllers that reconcile CRD state.
Kubernetes penetration testing systematically evaluates cluster security by simulating attacker techniques against the API server, kubelet,…
Audit LangChain configuration and security Use when: "audit langchain, Use when this capability is needed.
When the user wants to audit, review, or diagnose SEO issues on their site.
>- Use when this capability is needed.
> Use when this capability is needed.
Agent-driven cold-start onboarding.
Run and audit OperatorOne Stage1 marketing SEO shadow experiments across input sync, context index, keyword graph, experiment synthesis, and…
Use when reviewing code for security vulnerabilities, implementing authentication/authorization, handling user input, or discussing web appl…
Kubernetes penetration testing systematically evaluates cluster security by simulating attacker techniques against Use when this capability…
Scaffold a polyglot library project as TypeScript + Python twin packages under `packages/ts/` + `packages/py/`, with a shared `SPEC.md`, cro…
Use when publishing or updating the ResearchBuddy Homebrew tap.
Юрист-профессионал по законодательству РФ.
Evaluate the quality of existing agent instruction rule sets — CLAUDE.md, AGENTS.md, .cursorrules, copilot-instructions.md, or any coding-ag…
Set up Rust quality gates (cargo check/build, clippy, rustfmt, dead code, unused deps via cargo-machete, doc build, tests) in any Rust repo,…
| Use when this capability is needed.
Static Application Security Testing (SAST) for multi-language codebases.
Perform language and framework specific security best-practice reviews and suggest improvements.
This skill should be used when the user asks to "design REST APIs", "optimize database queries", "implement authentication", "build microser…
| Use when this capability is needed.
Run a full SEO, AEO, and LLM discoverability audit on cc4.marketing Use when this capability is needed.
Ship current branch — CI, SonarCloud, code review, security review, fix all issues, merge.
Package for distribution and inject context into CLAUDE.md/AGENTS.md/.cursorrules.
Audits a Claude Code / Agent SDK skill (or folder of skills) against 10 QA Use when this capability is needed.
When the user/agent works with SpinnGo (Spill 4 / game5 / spillorama-slug), databingo classification, the 30%-til-organisasjoner-regel, the…
Use this skill when the agent is designing schemas, reviewing migrations, tuning queries, modeling NoSQL access patterns, configuring replic…
Review Swift/iOS code: SwiftUI, Combine, UIKit, App Store guidelines and iOS architecture Use when this capability is needed.
**UTILITY SKILL** — Reusable Azure Terraform patterns: hub-spoke, private endpoints, diagnostics, AVM-TF modules.