Agent skills
Skills you can use with AI coding agents, indexed from public GitHub repositories.
-
sbom-management
Software Bill of Materials management including generation, formats, vulnerability tracking, and supply chain security
majiayu000/claude-skill-registry 163
-
sip-authentication-security
Use when implementing SIP authentication, security mechanisms, and encryption. Use when securing SIP servers, clients, or proxies.
majiayu000/claude-skill-registry 163
-
vulnerability-analysis
Identify vulnerability class, analyze root cause, and plan exploitation strategy.
majiayu000/claude-skill-registry 163
-
love-math
Provides system-independent mathematical functions. Use this skill when working with mathematical operations, random number generation, geometric calculations, or any math-related operations in LÖVE games.
majiayu000/claude-skill-registry 163
-
neo-llm-security
AI security co-pilot for identifying, testing, and fixing vulnerabilities in LLM-powered applications.
Use when: (1) Securing LLM applications or agents, (2) Generating security test suites with promptfoo,
(3) Testing for prompt injection, jailbreaking, data exfiltration, (4) Hardening system prompts,
(5) Compliance mapping for OWASP LLM Top 10, NIST AI RMF, CJIS, SOC2, (6) Threat modeling AI systems,
(7) Analyzing security eval results, (8) Research on LLM attack/defense techniques.
Triggers: "secure my LLM", "prompt injection", "jailbreak test", "AI security", "red team",
"system prompt hardening", "LLM vulnerability", "promptfoo", "OWASP LLM", "AI compliance".
majiayu000/claude-skill-registry 163
-
ops-security-audit
Structured workflow for infrastructure security audits including compliance
validation, vulnerability assessment, and security posture review.
majiayu000/claude-skill-registry 163
-
identity-access
Implement identity and access management. Use when designing authentication, authorization, or user management. Covers OAuth2, OIDC, and RBAC.
majiayu000/claude-skill-registry 163
-
performing-penetration-testing
Perform security penetration testing to identify vulnerabilities. Use when conducting security assessments. Trigger with 'run pentest', 'security testing', or 'find vulnerabilities'.
majiayu000/claude-skill-registry 163
-
lms-auth
LMS authentication system including SSO integration, useAuthReady hook patterns, four-layer security architecture, and permission checking. Use this skill when implementing auth flows, handling user sessions, fixing auth-related bugs, or understanding role-based access control.
majiayu000/claude-skill-registry 163
-
verify
Security scanning with UBS (Ultimate Bug Scanner). Use before commits, when scanning for bugs, when the user mentions "ubs", "bugs", "scan", "verify", or "security".
majiayu000/claude-skill-registry 163
-
security-audit-checklist
Provides exhaustive security vulnerability checklists with severity classifications, point deductions, and detection commands. Use when performing security audits, code reviews, penetration testing preparation, or checking OWASP compliance.
majiayu000/claude-skill-registry 163
-
macos-security
macOSアプリのセキュリティレビュー。Notarization、Hardened Runtime、Sandbox、コード署名をチェック。Use when: macOS、公証、Notarization、Sandbox、署名 を依頼された時。
majiayu000/claude-skill-registry 163
-
codex-code-review
Perform comprehensive code reviews using OpenAI Codex CLI. This skill should be used when users request code reviews, want to analyze diffs/PRs, need security audits, performance analysis, or want automated code quality feedback. Supports reviewing staged changes, specific files, entire directories, or git diffs.
majiayu000/claude-skill-registry 163
-
authentication-authorization
ログイン、セッション、JWT、OAuth、アクセス制御を実装する際に使用。
majiayu000/claude-skill-registry 163
-
code-quality-guardian
Expert code reviewer that enforces best practices, clean code principles, strong typing (TypeScript), architecture guidelines, and security standards. Reviews PRs and code snippets for bugs, code smells, anti-patterns, maintainability risks, performance issues, and security vulnerabilities. Use when reviewing pull requests, analyzing code quality, conducting code audits, or improving TypeScript/JavaScript codebases.
majiayu000/claude-skill-registry 163
-
Create Auth Skill
A skill to create auth service for new applications.
majiayu000/claude-skill-registry 163
-
security-nextjs
Next.js security audit patterns. Load when reviewing Next.js apps (next.config.js present). Covers NEXT_PUBLIC_* exposure, Server Actions, middleware auth, API routes, and App Router security.
majiayu000/claude-skill-registry 163
-
api-contract-design
REST and GraphQL API design patterns, OpenAPI/Swagger specifications, versioning strategies, and authentication patterns. Use when designing APIs, reviewing API contracts, evaluating API technologies, or implementing API endpoints. Covers contract-first design, resource modeling, error handling, pagination, and security.
majiayu000/claude-skill-registry 163
-
securing-server-actions
Teach server action authentication and security patterns in Next.js 16. Use when implementing server actions, form handlers, or mutations that need authentication.
majiayu000/claude-skill-registry 163
-
dapr-middleware-validator
Automatically validate DAPR HTTP middleware configuration files. Checks for correct middleware types, proper secret references, pipeline ordering, and security best practices. Use when configuring OAuth2, Bearer tokens, OPA policies, rate limiting, or other middleware.
majiayu000/claude-skill-registry 163
-
helmet-config-generator
Generate Helmet.js security middleware configuration for Express applications. Triggers on "create helmet config", "generate helmet configuration", "express security headers", "helmet setup".
majiayu000/claude-skill-registry 163
-
bir-tax-filing
Automate Philippine BIR (Bureau of Internal Revenue) tax form generation and filing. Handles 1601-C (withholding tax), 2550Q (quarterly VAT), 1702-RT/EX (annual income tax), and ATP (Authorization to Print) validation. Ensures 100% compliance with BIR regulations.
majiayu000/claude-skill-registry 163
-
encryption-at-rest-checker
Encryption At Rest Checker - Auto-activating skill for Security Advanced.
Triggers on: encryption at rest checker, encryption at rest checker
Part of the Security Advanced skill category.
majiayu000/claude-skill-registry 163
-
auditing-project
Audits the project for consistency issues that may arise from manual editing. Checks package scripts, tsconfig paths, README tables, and other conventions.
majiayu000/claude-skill-registry 163