Agent skills
Skills you can use with AI coding agents, indexed from public GitHub repositories.
-
react-native-best-practices
Provides React Native performance optimization guidelines for FPS, TTI, bundle size, memory leaks, re-renders, and animations. Applies to tasks involving Hermes optimization, JS thread blocking, bridge overhead, FlashList, native modules, or debugging jank and frame drops.
majiayu000/claude-skill-registry 163
-
security-scan
Run comprehensive security vulnerability scans when reviewing code. Automatically uses basic mode (fast, high/medium severity only) for first reviews, advanced mode (comprehensive, all severities) for iterations. Detects SQL injection, XSS, hardcoded secrets, insecure dependencies. Use before approving any code changes or pull requests.
majiayu000/claude-skill-registry 163
-
grey-haven-security-analysis
Comprehensive security analysis with vulnerability detection, OWASP Top 10 compliance, penetration testing simulation, and remediation. Use when conducting security audits, pre-deployment security checks, investigating vulnerabilities, or performing compliance assessments.
majiayu000/claude-skill-registry 163
-
Security Scanning Patterns
Security vulnerability scanning, secret detection, dependency auditing, and OWASP best practices. Use when performing security audits, scanning for vulnerabilities, detecting exposed secrets, checking dependencies, validating security headers, implementing OWASP patterns, or when user mentions security, vulnerabilities, secrets, CVE, OWASP, npm audit, security headers, or penetration testing.
majiayu000/claude-skill-registry 163
-
owasp-checker
Verify compliance with OWASP Top 10 2021 security standards. Use when performing OWASP compliance checks and security certification.
majiayu000/claude-skill-registry 163
-
violetconnect-shopify
Shopify OAuth integration patterns for VioletConnect merchant onboarding
majiayu000/claude-skill-registry 163
-
xss-vulnerability-scanner
Xss Vulnerability Scanner - Auto-activating skill for Security Fundamentals.
Triggers on: xss vulnerability scanner, xss vulnerability scanner
Part of the Security Fundamentals skill category.
majiayu000/claude-skill-registry 163
-
authentication-strategies
Authentication patterns including JWT, sessions, and OAuth. Use when implementing user authentication.
majiayu000/claude-skill-registry 163
-
jwt-token-validator
Jwt Token Validator - Auto-activating skill for Security Fundamentals.
Triggers on: jwt token validator, jwt token validator
Part of the Security Fundamentals skill category.
majiayu000/claude-skill-registry 163
-
cybersecurity-analyst
Analyzes events through cybersecurity lens using threat modeling, attack surface analysis, defense-in-depth,
zero-trust architecture, and risk-based frameworks (CIA triad, STRIDE, MITRE ATT&CK).
Provides insights on vulnerabilities, attack vectors, defense strategies, incident response, and security posture.
Use when: Security incidents, vulnerability assessments, threat analysis, security architecture, compliance.
Evaluates: Confidentiality, integrity, availability, threat actors, attack patterns, controls, residual risk.
majiayu000/claude-skill-registry 163
-
security-pattern-detection
Detect OWASP Top 10 vulnerabilities via static analysis. Calculate security score (0.00-1.00) for code quality. Auto-generate remediation suggestions with implementation examples. Integrate with Serena for vulnerability tracking and SLA compliance. Use when: securing code, detecting vulnerabilities, improving security posture, validating fixes, enforcing security standards.
majiayu000/claude-skill-registry 163
-
owasp-security-review
Security review and implementation support based on OWASP Cheat Sheet Series. Use for code review requests, security-related implementation/research, and vulnerability checks. Covers security topics such as XSS, SQL Injection, CSRF, and authentication/authorization.
majiayu000/claude-skill-registry 163
-
threat-model-generation
Generate a STRIDE-based security threat model for a repository. Use when setting up security monitoring, after architecture changes, or for security audits.
majiayu000/claude-skill-registry 163
-
add-authorization-methods
Add authorization methods for a new entity to AuthorizationService. Use after creating a resource service. Triggers on "add permissions", "authorization methods", "entity permissions", "add auth methods".
majiayu000/claude-skill-registry 163
-
odoo-module-creator
Creates complete Odoo 16.0 modules with proper structure, manifests, models, views, and security. This skill should be used when the user requests creation of a new Odoo module, such as "Create a new module for inventory tracking" or "I need a new POS customization module" or "Generate module structure for vendor management".
majiayu000/claude-skill-registry 163
-
cryptographic-practices
暗号化・ハッシュ・CSPRNG・鍵管理の実装を安全に進めるためのスキル。
要件整理から設計、実装、監査までの一連フローを提供する。
Anchors:
• Applied Cryptography / 適用: アルゴリズム選定と強度判断 / 目的: 標準準拠の基礎固め
• Web Application Security / 適用: 脅威モデリング / 目的: 実装リスクの明確化
• NIST SP 800-57 / 適用: 鍵管理 / 目的: ライフサイクル設計
Trigger:
Use when implementing cryptographic functions, selecting algorithms, generating secure random values, managing encryption keys, or auditing crypto implementations.
cryptographic practices, crypto implementation, key management, csprng, algorithm selection
majiayu000/claude-skill-registry 163
-
oauth2-flow-helper
Oauth2 Flow Helper - Auto-activating skill for Security Fundamentals.
Triggers on: oauth2 flow helper, oauth2 flow helper
Part of the Security Fundamentals skill category.
majiayu000/claude-skill-registry 163
-
reverse-proxy
Manage incoming internet traffic and reverse proxy configuration on the home network gateway. Configure Caddy, OAuth2 authentication, fail2ban security, and traffic routing.
majiayu000/claude-skill-registry 163
-
security-symfony
Sicherheit & DSGVO - Atoll Tourisme. Use when reviewing security, implementing auth, or hardening code.
majiayu000/claude-skill-registry 163
-
violetconnect-bigcommerce
BigCommerce OAuth, embedded app JWT validation, and pre-registration patterns for VioletConnect
majiayu000/claude-skill-registry 163
-
stripe-payments
Use when processing payments, handling payment methods, implementing PaymentIntents, or integrating Payment Element. Invoke for payment flow setup, 3D Secure authentication, refund processing, payment method management, or checkout implementation.
majiayu000/claude-skill-registry 163
-
session-management-ssg-ssr
Expert skill for implementing session management in SSG (Static Site Generation) and SSR (Server-Side Rendering) contexts. Covers stateless authentication with JWT, database session management, client-side session handling, and security best practices for different rendering strategies. Use when implementing session management in static sites (SSG), handling authentication in server-side rendered applications (SSR), or implementing stateless authentication with JWT tokens.
majiayu000/claude-skill-registry 163
-
sanitizing-user-inputs
Sanitizing and validating user input to prevent XSS, injection attacks, and security vulnerabilities in TypeScript applications
majiayu000/claude-skill-registry 163
-
windsurf-common-errors
Diagnose and fix Windsurf common errors and exceptions.
Use when encountering Windsurf errors, debugging failed requests,
or troubleshooting integration issues.
Trigger with phrases like "windsurf error", "fix windsurf",
"windsurf not working", "debug windsurf".
majiayu000/claude-skill-registry 163