ReddRadar
Topic: security
1,299 skills in this topic.
-
site-architecture
Technical SEO - robots.txt, sitemap, meta tags, Core Web Vitals
alinaqi/claude-bootstrap 569
-
supabase
Core Supabase CLI, migrations, RLS, Edge Functions
alinaqi/claude-bootstrap 569
-
supabase-nextjs
Next.js with Supabase and Drizzle ORM
alinaqi/claude-bootstrap 569
-
supabase-node
Express/Hono with Supabase and Drizzle ORM
alinaqi/claude-bootstrap 569
-
supabase-python
FastAPI with Supabase and SQLAlchemy/SQLModel
alinaqi/claude-bootstrap 569
-
team-coordination
Multi-person projects - shared state, todo claiming, handoffs
alinaqi/claude-bootstrap 569
-
ticket-craft
Create Jira/Asana/Linear tickets optimized for Claude Code execution - AI-native ticket writing
alinaqi/claude-bootstrap 569
-
typescript
TypeScript strict mode with eslint and jest
alinaqi/claude-bootstrap 569
-
ui-mobile
Mobile UI patterns - React Native, iOS/Android, touch targets
alinaqi/claude-bootstrap 569
-
ui-testing
Visual testing - catch invisible buttons, broken layouts, contrast
alinaqi/claude-bootstrap 569
-
ui-web
Web UI - glassmorphism, Tailwind, dark mode, accessibility
alinaqi/claude-bootstrap 569
-
user-journeys
User experience flows - journey mapping, UX validation, error recovery
alinaqi/claude-bootstrap 569
-
web-content
SEO and AI discovery (GEO) - schema, ChatGPT/Perplexity optimization
alinaqi/claude-bootstrap 569
-
web-payments
Stripe Checkout, subscriptions, webhooks, customer portal
alinaqi/claude-bootstrap 569
-
woocommerce
WooCommerce REST API - products, orders, customers, webhooks
alinaqi/claude-bootstrap 569
-
workspace
Dynamic multi-repo and monorepo awareness for Claude Code. Analyze workspace topology, track API contracts, and maintain cross-repo context.
alinaqi/claude-bootstrap 569
-
code-security
Security guidelines for writing secure code. Use when writing code, reviewing code for vulnerabilities, or asking about secure coding practices like 'check for SQL injection' or 'review security'. IMPORTANT: Always consult this skill when writing or reviewing any code that handles user input, authentication, file operations, database queries, network requests, cryptography, or infrastructure configuration (Terraform, Kubernetes, Docker, GitHub Actions) — even if the user doesn't explicitly mention security. Also use when users ask to 'review my code', 'check this for bugs', or 'is this safe'.
semgrep/skills 170
-
llm-security
Security guidelines for LLM applications based on OWASP Top 10 for LLM 2025. Use when building LLM apps, reviewing AI security, implementing RAG systems, or asking about LLM vulnerabilities like 'prompt injection' or 'check LLM security'. IMPORTANT: Always consult this skill when building chatbots, AI agents, RAG pipelines, tool-using LLMs, agentic systems, or any application that calls an LLM API (OpenAI, Anthropic, Gemini, etc.) — even if the user doesn't explicitly mention security. Also use when users import 'openai', 'anthropic', 'langchain', 'llamaindex', or similar LLM libraries.
semgrep/skills 170
-
semgrep
Run Semgrep static analysis scans and create custom detection rules. Use when asked to scan code with Semgrep, find security vulnerabilities, write custom YAML rules, or detect specific bug patterns. IMPORTANT: Also use this skill when users ask to 'scan for bugs', 'check code quality', 'find vulnerabilities', 'static analysis', 'lint for security', 'audit this code', or want to enforce coding standards — even if they don't mention Semgrep by name. Semgrep is the right tool for pattern-based code scanning across 30+ languages.
semgrep/skills 170
-
varlock
Secure environment variable management with Varlock. Use when handling secrets, API keys, credentials, or any sensitive configuration. Ensures secrets are never exposed in terminals, logs, traces, or Claude's context. Trigger phrases include "environment variables", "secrets", ".env", "API key", "credentials", "sensitive", "Varlock".
wrsmith108/varlock-claude-skill 16
-
hetzner-vps-provisioning
Use this skill when the user wants to provision a Hetzner VPS, create a cloud server, deploy to Hetzner, set up a development server, configure server security (UFW, fail2ban), or estimate cloud hosting costs. Handles secure VPS provisioning with Claude Code pre-installed.
The-Resonance/claude-code-hetzner-vps 9
-
secure-flow
A comprehensive security skill that integrates with Secure Flow to help AI coding agents write secure code, perform security reviews, and implement security best practices. Use this skill when writing, reviewing, or modifying code to ensure secure-by-default practices are followed.
plutosecurity/secure-flow 5
-
skill-name
[REQUIRED] Comprehensive description of what this skill does and when to use it. Include: (1) Primary functionality, (2) Specific use cases, (3) Security operations context. Must include specific "Use when:" clause for skill discovery. Example: "SAST vulnerability analysis and remediation guidance using Semgrep and industry security standards. Use when: (1) Analyzing static code for security vulnerabilities, (2) Prioritizing security findings by severity, (3) Providing secure coding remediation, (4) Integrating security checks into CI/CD pipelines." Maximum 1024 characters.
AgentSecOps/SecOpsAgentKit 84
-
api-mitmproxy
Interactive HTTPS proxy for API security testing with traffic interception, modification, and replay capabilities. Supports HTTP/1, HTTP/2, HTTP/3, WebSockets, and TLS-protected protocols. Includes Python scripting API for automation and multiple interfaces (console, web, CLI). Use when: (1) Intercepting and analyzing API traffic for security testing, (2) Modifying HTTP/HTTPS requests and responses to test API behavior, (3) Recording and replaying API traffic for testing, (4) Debugging mobile app or thick client API communications, (5) Automating API security tests with Python scripts, (6) Exporting traffic in HAR format for analysis.
AgentSecOps/SecOpsAgentKit 84