Agent skills
Skills you can use with AI coding agents, indexed from public GitHub repositories.
-
remediation-library
Index of security remediation skills. Routes to specialized skills for injection, cryptography, authentication, and configuration vulnerabilities.
majiayu000/claude-skill-registry 163
-
vuln-patterns-languages
Language-specific vulnerability detection patterns for JavaScript/TypeScript, Python, Go, Java, Ruby, and PHP. Provides regex patterns and grep commands for common security vulnerabilities.
majiayu000/claude-skill-registry 163
-
AWS Penetration Testing
This skill should be used when the user asks to "pentest AWS", "test AWS security", "enumerate IAM", "exploit cloud infrastructure", "AWS privilege escalation", "S3 bucket testing", "metadata SSRF", "Lambda exploitation", or needs guidance on Amazon Web Services security assessment.
majiayu000/claude-skill-registry 163
-
ops-security-audit
Structured workflow for infrastructure security audits including compliance
validation, vulnerability assessment, and security posture review.
majiayu000/claude-skill-registry 163
-
security-audit-logging
Implement comprehensive security audit logging for compliance, forensics, and SIEM integration. Use when building audit trails, compliance logging, or security monitoring systems.
majiayu000/claude-skill-registry 163
-
security-headers-generator
Security Headers Generator - Auto-activating skill for Security Fundamentals.
Triggers on: security headers generator, security headers generator
Part of the Security Fundamentals skill category.
majiayu000/claude-skill-registry 163
-
content
Generate authentic, compelling copy for portfolios. Covers tone calibration, taglines, bios, project descriptions, and avoiding assumptions.
majiayu000/claude-skill-registry 163
-
standards-gap-analysis
Identify which standards are covered vs. missing, analyze depth of coverage for each standard, prioritize uncovered standards, and recommend content to fill gaps. Use when auditing curriculum coverage. Activates on "gap analysis", "standards gaps", or "coverage audit".
majiayu000/claude-skill-registry 163
-
security-compliance-audit
Conduct comprehensive security compliance audits for SOC 2, GDPR, HIPAA, PCI-DSS, and ISO 27001. Use when preparing for certification, annual audits, or compliance validation.
majiayu000/claude-skill-registry 163
-
security-analyst
Security analyst persona with deep OWASP expertise, vulnerability classification, risk assessment, and compliance mapping
majiayu000/claude-skill-registry 163
-
encryption-at-rest-checker
Encryption At Rest Checker - Auto-activating skill for Security Advanced.
Triggers on: encryption at rest checker, encryption at rest checker
Part of the Security Advanced skill category.
majiayu000/claude-skill-registry 163
-
cloud-security-posture
Cloud Security Posture - Auto-activating skill for Security Advanced.
Triggers on: cloud security posture, cloud security posture
Part of the Security Advanced skill category.
majiayu000/claude-skill-registry 163
-
building-api-authentication
Build secure API authentication systems with OAuth2, JWT, API keys, and session management.
Use when implementing secure authentication flows.
Trigger with phrases like "build authentication", "add API auth", or "secure the API".
majiayu000/claude-skill-registry 163
-
qa-security-scan
Security scanning templates and checklists for OWASP Top 10, authentication, authorization, data protection. Use when conducting security testing or vulnerability assessment.
This skill provides comprehensive security testing:
- OWASP Top 10 checklist with remediation
- Authentication and authorization testing
- Data protection verification
- Security report generation
- Integration with Codex CLI MCP for automated scanning
Triggers: "security scan", "vulnerability check", "OWASP", "security test", "セキュリティスキャン", "脆弱性チェック", "セキュリティテスト"
majiayu000/claude-skill-registry 163
-
x-cmd-security
This skill provides comprehensive security assessment and vulnerability management tools through x-cmd CLI, including network reconnaissance with Shodan, vulnerability scanning with OSV, and known exploited vulnerability tracking with KEV. This skill should be used when users need to perform security assessments, vulnerability research, network reconnaissance, or security monitoring from command line interfaces.
majiayu000/claude-skill-registry 163
-
vulnerability-scan-agent
Scans codebases and dependencies for known vulnerabilities and security issues
majiayu000/claude-skill-registry 163
-
environment-configuration
Environment variables, setup procedures, API configurations, and security for the omer-akben portfolio. Use when setting up the project, configuring services, or troubleshooting environment issues.
majiayu000/claude-skill-registry 163
-
fix-security-audit
Fix security vulnerabilities from pip-audit, npm audit, Snyk, and other security scanners. Use when security audit checks fail with CVE warnings.
majiayu000/claude-skill-registry 163
-
discover-security
Automatically discover security skills when working with authentication, authorization, input validation, security headers, vulnerability assessment, or secrets management. Activates for application security, OWASP, and security hardening tasks.
majiayu000/claude-skill-registry 163
-
github-security-review
Analyze GitHub repository security alerts and generate remediation plans. Use when the user asks to review security alerts, fix vulnerabilities, check dependabot alerts, review code scanning issues, or address secret scanning findings for a GitHub repository. Triggers on requests mentioning GitHub security, repo security review, vulnerability remediation, or security audit.
majiayu000/claude-skill-registry 163
-
passport
Implements Passport.js authentication middleware with local, OAuth, and JWT strategies for Express/Node.js. Use when building Node.js APIs, implementing custom auth flows, or needing flexible authentication strategies.
majiayu000/claude-skill-registry 163
-
web-resource-checker
Validates essential web resource files (sitemap.xml, robots.txt, llms.txt, security.txt) for compliance with their specifications. Use when user asks about "sitemap validation", "robots.txt check", "llms.txt", "security.txt", "RFC 9116", "RFC 9309", "web resource audit", "サイトマップ", "セキュリティ", or wants to verify crawler/LLM accessibility files.
majiayu000/claude-skill-registry 163
-
webhooks
majiayu000/claude-skill-registry 163
-
security-testing-patterns
Security testing patterns including SAST, DAST, penetration testing, and vulnerability assessment techniques. Use when implementing security testing pipelines, conducting security audits, or validating application security controls.
majiayu000/claude-skill-registry 163