Agent skills

Skills you can use with AI coding agents, indexed from public GitHub repositories.

Latest Most Popular

auth-route-protection-checker This skill should be used when the user requests to audit, check, or generate authentication and authorization protection for Next.js routes, server components, API routes, and server actions. It analyzes existing routes for missing auth checks and generates protection logic based on user roles and permissions. Trigger terms include auth check, route protection, protect routes, secure endpoints, auth middleware, role-based routes, authorization check, api security, server action security, protect pages.
majiayu000/claude-skill-registry 163
security-gate Classifies inbound Telegram messages for telclaude as ALLOW/WARN/BLOCK with brief rationale.
majiayu000/claude-skill-registry 163
homebrew-cask-authoring Create, update, validate, and submit Homebrew Casks. Use when the user mentions Homebrew cask/cask, Homebrew/homebrew-cask, adding a new cask, updating a cask, cask token naming, sha256, url verified:, livecheck, zap/uninstall, or when asked to run brew style/audit for a cask.
majiayu000/claude-skill-registry 163
ops-security-audit Structured workflow for infrastructure security audits including compliance validation, vulnerability assessment, and security posture review.
majiayu000/claude-skill-registry 163
auth-route-protection-checker This skill should be used when the user requests to audit, check, or generate authentication and authorization protection for Next.js routes, server components, API routes, and server actions. It analyzes existing routes for missing auth checks and generates protection logic based on user roles and permissions. Trigger terms include auth check, route protection, protect routes, secure endpoints, auth middleware, role-based routes, authorization check, api security, server action security, protect pages.
majiayu000/claude-skill-registry 163
app-sharing Manage Glide app access, privacy, authentication, and publishing. Use when configuring who can access an app, setting up sign-in methods, publishing apps, inviting users, or configuring Row Owners for data security.
majiayu000/claude-skill-registry 163
nodejs-best-practices Node.js best practices including error handling, async patterns, security, and project structure.
majiayu000/claude-skill-registry 163
rr-solidity-microck-ordinary-claude-skil
majiayu000/claude-skill-registry 163
authentication-authorization-security 認証・認可の設計とセキュリティ検証（OAuth 2.0、JWT、セッション管理、アクセス制御）の実務指針を提供するスキル。脅威モデリング、トークン管理、権限モデルの選択を整理し、安全な認証基盤の設計判断を支援します。 Anchors: • Web Application Security / 適用: 脅威モデリング / 目的: 認証・認可の脅威整理 • OAuth 2.0 Simplified / 適用: フロー選定 / 目的: OAuth実装の安全性確保 • OWASP ASVS / 適用: セキュリティ検証 / 目的: 要件基準の確認 Trigger: Use when designing or reviewing authentication/authorization flows, selecting OAuth/JWT/session strategies, or validating access control and token security.
majiayu000/claude-skill-registry 163
auth-system Auth system (Clerk + Convex + anonymous JWT) guidelines and planned permissions/upgrade behavior.
majiayu000/claude-skill-registry 163
auth-configs Configure Supabase authentication providers (OAuth, JWT, email). Use when setting up authentication, configuring OAuth providers (Google/GitHub/Discord), implementing auth flows, configuring JWT settings, or when user mentions Supabase auth, social login, authentication setup, or auth configuration.
majiayu000/claude-skill-registry 163
mfm-hosts Talk to My First Million Hosts about their expertise. My First Million Hosts provides authentic advice using their mental models, core beliefs, and real-world examples.
majiayu000/claude-skill-registry 163
Broken Authentication Testing This skill should be used when the user asks to "test for broken authentication vulnerabilities", "assess session management security", "perform credential stuffing tests", "evaluate password policies", "test for session fixation", or "identify authentication bypass flaws". It provides comprehensive techniques for identifying authentication and session management weaknesses in web applications.
majiayu000/claude-skill-registry 163
internal-linking-optimizer Analyzes and optimizes internal link structure to improve site architecture, distribute page authority, and help search engines understand content relationships. Creates strategic internal linking plans.
majiayu000/claude-skill-registry 163
detecting-logic-bypass Detects logic bypass vulnerabilities including authentication bypass, authorization bypass, and business logic flaws. Use when analyzing authentication mechanisms, access controls, or investigating security control bypasses.
majiayu000/claude-skill-registry 163
querying-gpt52 Queries GPT-5.2 for high-reasoning code analysis, root-cause bug fixing, and complex coding questions. Provides P0-P3 prioritized analysis reports, architecture audits, and security reviews with configurable reasoning effort (none/low/medium/high/xhigh). 400K context, 128K output.
majiayu000/claude-skill-registry 163
pr-to-ticket File Linear tickets from PR review feedback and notify the PR author. Use when asked to file a ticket from PR comments, create a ticket from PR feedback, ticket PR concerns, or create a Linear ticket from a PR review. Triggers on phrases like "file ticket from PR", "ticket the PR concerns", "linear ticket for PR", "create ticket from PR feedback", or "ticket this review".
majiayu000/claude-skill-registry 163
qa-security-scan Security scanning templates and checklists for OWASP Top 10, authentication, authorization, data protection. Use when conducting security testing or vulnerability assessment. This skill provides comprehensive security testing: - OWASP Top 10 checklist with remediation - Authentication and authorization testing - Data protection verification - Security report generation - Integration with Codex CLI MCP for automated scanning Triggers: "security scan", "vulnerability check", "OWASP", "security test", "セキュリティスキャン", "脆弱性チェック", "セキュリティテスト"
majiayu000/claude-skill-registry 163
building-api-authentication Build secure API authentication systems with OAuth2, JWT, API keys, and session management. Use when implementing secure authentication flows. Trigger with phrases like "build authentication", "add API auth", or "secure the API".
majiayu000/claude-skill-registry 163
analysis-tshark Network protocol analyzer and packet capture tool for traffic analysis, security investigations, and forensic examination using Wireshark's command-line interface. Use when: (1) Analyzing network traffic for security incidents and malware detection, (2) Capturing and filtering packets for forensic analysis, (3) Extracting credentials and sensitive data from network captures, (4) Investigating network anomalies and attack patterns, (5) Validating encryption and security controls, (6) Performing protocol analysis for vulnerability research.
majiayu000/claude-skill-registry 163
mcp-installer Find, install, and configure Model Context Protocol (MCP) servers for OpenCode. Use when user asks about finding MCP servers, installing them, configuring OAuth, or troubleshooting MCP issues.
majiayu000/claude-skill-registry 163
reviewing-security OWASP API Security Top 10 (2023) と Rust セキュリティベストプラクティス。脆弱性検出。Use when: セキュリティ、脆弱性、OWASP、認証、認可、監査を依頼された時。
majiayu000/claude-skill-registry 163
wp-security-review WordPress security audit and vulnerability analysis. Use when reviewing WordPress code for security issues, auditing themes/plugins for vulnerabilities, checking authentication/authorization, analyzing input validation, or detecting security anti-patterns, or when user mentions "security review", "security audit", "vulnerability", "XSS", "SQL injection", "CSRF", "nonce", "sanitize", "escape", "validate", "authentication", "authorization", "permissions", "capabilities", "hacked", or "malware".
majiayu000/claude-skill-registry 163
fastapi-security-expert Expert in securing FastAPI applications with JWT tokens and Better Auth. Use this when implementing authentication middleware, route protection, and user isolation.
majiayu000/claude-skill-registry 163