Agent skills
Skills you can use with AI coding agents, indexed from public GitHub repositories.
-
passport
Implements Passport.js authentication middleware with local, OAuth, and JWT strategies for Express/Node.js. Use when building Node.js APIs, implementing custom auth flows, or needing flexible authentication strategies.
majiayu000/claude-skill-registry 163
-
auth-route-protection-checker
This skill should be used when the user requests to audit, check, or generate authentication and authorization protection for Next.js routes, server components, API routes, and server actions. It analyzes existing routes for missing auth checks and generates protection logic based on user roles and permissions. Trigger terms include auth check, route protection, protect routes, secure endpoints, auth middleware, role-based routes, authorization check, api security, server action security, protect pages.
majiayu000/claude-skill-registry 163
-
building-api-authentication
Build secure API authentication systems with OAuth2, JWT, API keys, and session management.
Use when implementing secure authentication flows.
Trigger with phrases like "build authentication", "add API auth", or "secure the API".
majiayu000/claude-skill-registry 163
-
api-best-practices
REST API design patterns, OpenAPI specifications, versioning strategies, authentication, error handling, and security best practices. Use when designing APIs, creating endpoints, documenting APIs, or implementing backend services that expose HTTP APIs.
majiayu000/claude-skill-registry 163
-
wordpress-security-patterns
WordPress security best practices and vulnerability prevention patterns. Use when reviewing WordPress code for security issues, writing secure WordPress code, or checking for common vulnerabilities like SQL injection, XSS, CSRF, and authentication issues.
majiayu000/claude-skill-registry 163
-
api-key-manager
Api Key Manager - Auto-activating skill for Security Fundamentals.
Triggers on: api key manager, api key manager
Part of the Security Fundamentals skill category.
majiayu000/claude-skill-registry 163
-
hono-authentication
Use this skill whenever the user wants to design, implement, or refactor authentication and authorization in a Hono + TypeScript backend, including JWT, sessions/cookies, middleware, guards-like patterns, and route protection for Node/Edge/Workers runtimes.
majiayu000/claude-skill-registry 163
-
cfn-agent-lifecycle
Unified agent management from selection through completion - spawning, execution, output processing. Use when selecting agents for tasks, spawning agents with dependency validation, processing agent outputs, or tracking agent lifecycle events with audit trails.
majiayu000/claude-skill-registry 163
-
scanning-api-security
Detect API security vulnerabilities including injection, broken auth, and data exposure.
Use when scanning APIs for security vulnerabilities.
Trigger with phrases like "scan API security", "check for vulnerabilities", or "audit API security".
majiayu000/claude-skill-registry 163
-
festival-operations
Expert knowledge for running winter festival operations covering customer experience, security, vendor relations, lost & found, and marketing communications
majiayu000/claude-skill-registry 163
-
license-compliance-scanner
License Compliance Scanner - Auto-activating skill for Security Fundamentals.
Triggers on: license compliance scanner, license compliance scanner
Part of the Security Fundamentals skill category.
majiayu000/claude-skill-registry 163
-
waf-rule-creator
Waf Rule Creator - Auto-activating skill for Security Advanced.
Triggers on: waf rule creator, waf rule creator
Part of the Security Advanced skill category.
majiayu000/claude-skill-registry 163
-
wp-orchestrator
Master WordPress project orchestrator - coordinates all WordPress skills for complete site setup, audit, and optimization. Use for new project setup, site audits, or comprehensive reviews. Runs interview phases and manages todo lists.
majiayu000/claude-skill-registry 163
-
api-expert
Expert API architect specializing in RESTful API design, GraphQL, gRPC, and API security. Deep expertise in OpenAPI 3.1, authentication patterns (OAuth2, JWT), rate limiting, pagination, and OWASP API Security Top 10. Use when designing scalable APIs, implementing API gateways, or securing API endpoints.
majiayu000/claude-skill-registry 163
-
threat-model-generator
Creates comprehensive threat models using STRIDE methodology with asset identification, threat enumeration, mitigation strategies, and residual risk assessment. Use for "threat modeling", "security analysis", "STRIDE", or "risk assessment".
majiayu000/claude-skill-registry 163
-
attack-surface-analyzer
Attack Surface Analyzer - Auto-activating skill for Security Advanced.
Triggers on: attack surface analyzer, attack surface analyzer
Part of the Security Advanced skill category.
majiayu000/claude-skill-registry 163
-
understanding-ocsf
Understand the OCSF schema. Use when working with OCSF, looking up classes or objects, normalizing security events, or asking about the schema.
majiayu000/claude-skill-registry 163
-
security-audit
Agent Skill: Security audit patterns for PHP/OWASP. Use when conducting security assessments, identifying vulnerabilities (XXE, SQL injection, XSS), or CVSS scoring. By Netresearch.
majiayu000/claude-skill-registry 163
-
attack-surface-analyzer
Attack Surface Analyzer - Auto-activating skill for Security Advanced.
Triggers on: attack surface analyzer, attack surface analyzer
Part of the Security Advanced skill category.
majiayu000/claude-skill-registry 163
-
agent-compliance-auditor
Expert compliance auditor specializing in regulatory frameworks, data privacy laws, and security standards. Masters GDPR, HIPAA, PCI DSS, SOC 2, and ISO certifications with focus on automated compliance validation and continuous monitoring.
majiayu000/claude-skill-registry 163
-
analyzing-session-management
Detects session management vulnerabilities including session fixation, session hijacking, and insecure cookie handling. Use when analyzing authentication sessions, cookie security, or investigating session-related vulnerabilities.
majiayu000/claude-skill-registry 163
-
authentication-patterns
Authentication patterns for external services: API keys, OAuth, token management, verification.
Triggers: authentication, API keys, OAuth, token management, credentials
Use when: integrating external services or implementing authentication flows
majiayu000/claude-skill-registry 163
-
github-oauth-nango-integration
Use when implementing GitHub OAuth + GitHub App authentication with Nango - provides two-connection pattern for user login and repo access with webhook handling
majiayu000/claude-skill-registry 163
-
security-essentials
Security best practices, OWASP compliance, authentication patterns, and vulnerability prevention
majiayu000/claude-skill-registry 163