Agent skills
Skills you can use with AI coding agents, indexed from public GitHub repositories.
-
discover-security
Automatically discover security skills when working with authentication, authorization, input validation, security headers, vulnerability assessment, or secrets management. Activates for application security, OWASP, and security hardening tasks.
majiayu000/claude-skill-registry 163
-
input-validation-checker
Input Validation Checker - Auto-activating skill for Security Fundamentals.
Triggers on: input validation checker, input validation checker
Part of the Security Fundamentals skill category.
majiayu000/claude-skill-registry 163
-
konstantinos
Talk to Konstantinos Doulgeridis Youtuber about their expertise. Konstantinos Doulgeridis Youtuber provides authentic advice using their mental models, core beliefs, and real-world examples.
majiayu000/claude-skill-registry 163
-
security-encryption
Game server security including encryption, anti-cheat, and secure communication
majiayu000/claude-skill-registry 163
-
fastapi-zero-to-hero
Complete FastAPI API development framework for Python. Provides comprehensive assistance for building APIs with routing, authentication (JWT, OAuth2, Better Auth), Pydantic models, database integration, and deployment using uv package manager. Use when users ask to build FastAPI applications, implement authentication, create API endpoints, or develop backend services in Python.
majiayu000/claude-skill-registry 163
-
pr-to-ticket
File Linear tickets from PR review feedback and notify the PR author. Use when asked to file a ticket from PR comments, create a ticket from PR feedback, ticket PR concerns, or create a Linear ticket from a PR review. Triggers on phrases like "file ticket from PR", "ticket the PR concerns", "linear ticket for PR", "create ticket from PR feedback", or "ticket this review".
majiayu000/claude-skill-registry 163
-
julien-infra-hostinger-security
Security management for Hostinger VPS srv759970 - Fail2ban, WordPress security audits (25+ checks, 0-100% scoring), infrastructure audit. Use for security hardening, IP bans, or security assessments.
majiayu000/claude-skill-registry 163
-
http-header-security-audit
Http Header Security Audit - Auto-activating skill for Security Fundamentals.
Triggers on: http header security audit, http header security audit
Part of the Security Fundamentals skill category.
majiayu000/claude-skill-registry 163
-
security-rbac-auth
Implement authentication, authorization, and security controls. Use for JWT handling, API key management, RBAC, OAuth integration, and security policies. Triggers on "authentication", "authorization", "JWT", "API key", "RBAC", "OAuth", "security", "permissions", or when implementing spec/006-security-governance.md.
majiayu000/claude-skill-registry 163
-
bird-fast
Post tweets, read threads, search X/Twitter from the terminal using bird CLI. Use when automating Twitter, posting from scripts, analyzing tweet threads, monitoring mentions, or working with the Twitter/X API without OAuth.
majiayu000/claude-skill-registry 163
-
log-analysis-security
Log Analysis Security - Auto-activating skill for Security Advanced.
Triggers on: log analysis security, log analysis security
Part of the Security Advanced skill category.
majiayu000/claude-skill-registry 163
-
encryption-at-rest-checker
Encryption At Rest Checker - Auto-activating skill for Security Advanced.
Triggers on: encryption at rest checker, encryption at rest checker
Part of the Security Advanced skill category.
majiayu000/claude-skill-registry 163
-
power-confidence
Use when creating animations that convey strength, authority, or bold confidence in brand and product.
majiayu000/claude-skill-registry 163
-
auth-bypass
认证绕过漏洞检测与利用。当目标存在登录功能、权限控制、JWT/Session 认证时使用。包括 IDOR、越权访问等。
majiayu000/claude-skill-registry 163
-
dependency-vulnerability-triage
Turns npm audit/Snyk results into prioritized patch plans with severity assessment, safe upgrade paths, breaking change analysis, and rollback strategies. Use for "dependency security", "vulnerability patching", "npm audit", or "security updates".
majiayu000/claude-skill-registry 163
-
oauth-client-setup
Oauth Client Setup - Auto-activating skill for API Integration.
Triggers on: oauth client setup, oauth client setup
Part of the API Integration skill category.
majiayu000/claude-skill-registry 163
-
create-middleware
Create middleware for cross-cutting concerns. Use when creating authentication, validation, or other request processing middleware. Triggers on "create middleware", "auth middleware", "validation middleware".
majiayu000/claude-skill-registry 163
-
.claude/skills/nextauth-patterns/SKILL.md
NextAuth.js v5の設定とカスタマイズパターン。
プロバイダー設定、アダプター統合、セッション戦略、
コールバックカスタマイズ、型安全性の確保を提供。
📖 参照書籍:
- 『Web Application Security』(Andrew Hoffman): 脅威モデリング
📚 リソース参照:
- `resources/Level1_basics.md`: レベル1の基礎ガイド
- `resources/Level2_intermediate.md`: レベル2の実務ガイド
- `resources/Level3_advanced.md`: レベル3の応用ガイド
- `resources/Level4_expert.md`: レベル4の専門ガイド
- `resources/legacy-skill.md`: 旧SKILL.mdの全文
- `resources/provider-configurations.md`: NextAuth.js Provider Configurations
- `resources/session-callbacks-guide.md`: NextAuth.js Session Callbacks Guide
- `scripts/log_usage.mjs`: 使用記録・自動評価スクリプト
- `scripts/validate-nextauth-config.mjs`: NextAuth.js設定ファイルの妥当性検証とプロバイダー設定・コールバック実装の検査スクリプト
- `scripts/validate-skill.mjs`: スキル構造検証スクリプト
- `templates/nextauth-config-template.ts`: Google/GitHub OAuth統合・Drizzleアダプター・JWT/Databaseセッション戦略を含むauth.ts設定テンプレート
Use proactively when handling nextauth patterns tasks.
majiayu000/claude-skill-registry 163
-
shared-setup-patterns
Shared configuration patterns for project setup commands. Provides security hooks, Claude framework structure templates, and framework detection patterns used across multiple setup commands.
majiayu000/claude-skill-registry 163
-
auth-frontend-backend
Expert skill for connecting frontend and backend with Better Auth, implementing user-isolated secure authentication using JWT tokens on every API call with rate limiting in Next.js 16 frontend and FastAPI backend.
majiayu000/claude-skill-registry 163
-
security-engineering
Security auditing and vulnerability detection using OWASP patterns, CWE analysis, and threat modeling. Use when auditing code for security issues, reviewing authentication/authorization, evaluating input validation, analyzing cryptographic usage, reviewing dependency security, or when security-audit, vulnerability-scan, OWASP, threat-model, or --security are mentioned.
majiayu000/claude-skill-registry 163
-
authentication-strategies
Authentication patterns including JWT, sessions, and OAuth. Use when implementing user authentication.
majiayu000/claude-skill-registry 163
-
analyzing-session-management
Detects session management vulnerabilities including session fixation, session hijacking, and insecure cookie handling. Use when analyzing authentication sessions, cookie security, or investigating session-related vulnerabilities.
majiayu000/claude-skill-registry 163
-
AWS Penetration Testing
This skill should be used when the user asks to "pentest AWS", "test AWS security", "enumerate IAM", "exploit cloud infrastructure", "AWS privilege escalation", "S3 bucket testing", "metadata SSRF", "Lambda exploitation", or needs guidance on Amazon Web Services security assessment.
majiayu000/claude-skill-registry 163