Agent skills

Skills you can use with AI coding agents, indexed from public GitHub repositories.

Latest Most Popular

owasp-mobile-security-checker Analyze Flutter and mobile applications for OWASP Mobile Top 10 (2024) security compliance. Use this skill when performing security audits, vulnerability assessments, or compliance checks on mobile applications. Performs automated scans for hardcoded secrets, insecure storage, weak cryptography, network security issues, and provides detailed remediation guidance.
majiayu000/claude-skill-registry 163
api-security-testing API security testing guide covering OWASP API Security Top 10, JWT attacks, OAuth vulnerabilities, GraphQL security, and API fuzzing techniques.
majiayu000/claude-skill-registry 163
keycloak-admin Keycloak administration including realm management, client configuration, OAuth 2.0 setup, user management with custom attributes, role and group management, theme deployment, and token configuration. Activate for Keycloak Admin API operations, authentication setup, and identity provider configuration.
majiayu000/claude-skill-registry 163
naturalistic-motion Use when animation should feel organic and lifelike—creature animation, realistic characters, nature elements, or any motion that needs to breathe with authentic living quality.
majiayu000/claude-skill-registry 163
testing-web-applications Test web applications for security vulnerabilities including SQLi, XSS, command injection, JWT attacks, SSRF, file uploads, XXE, and API flaws. Use when pentesting web apps, analyzing authentication, or exploiting OWASP Top 10 vulnerabilities.
majiayu000/claude-skill-registry 163
rabbitmq-master Ultimate RabbitMQ expertise skill for production-grade message broker architecture, implementation, and operations. Top 0.01% knowledge covering: (1) Advanced messaging patterns - Dead Letter Exchanges, Delayed Messages, Priority Queues, Consistent Hash Exchange, Sharding, (2) High Availability - Clustering, Quorum Queues, Stream Queues, Federation, Shovel, (3) Performance Engineering - prefetch tuning, connection pooling, batch publishing, memory optimization, flow control, (4) Security - TLS/mTLS, OAuth2, LDAP, certificate rotation, (5) Monitoring - Prometheus metrics, custom health checks, anomaly detection, (6) Troubleshooting - memory alarms, network partitions, queue backlogs, consumer starvation, (7) Multi-tenancy - vhost design, resource limits, isolation patterns, (8) Event-driven architectures - CQRS, Event Sourcing, Saga patterns with RabbitMQ. Use when: building messaging systems, debugging RabbitMQ issues, optimizing performance, designing HA architectures, implementing advanced patterns, production hardening, capacity planning, migration strategies.
majiayu000/claude-skill-registry 163
analysis-tshark Network protocol analyzer and packet capture tool for traffic analysis, security investigations, and forensic examination using Wireshark's command-line interface. Use when: (1) Analyzing network traffic for security incidents and malware detection, (2) Capturing and filtering packets for forensic analysis, (3) Extracting credentials and sensitive data from network captures, (4) Investigating network anomalies and attack patterns, (5) Validating encryption and security controls, (6) Performing protocol analysis for vulnerability research.
majiayu000/claude-skill-registry 163
authentication-docs API認証ドキュメント（OAuth 2.0/PKCE、API Key、JWT、トークン管理）の作成と図解を支援するスキル。認証フローの説明、トークン取得手順、セキュリティ注意点をわかりやすく整理します。 Anchors: • OAuth 2.0 Simplified / 適用: フロー図解 / 目的: 正確な説明と用語整理 • Web Application Security / 適用: セキュリティ注意点 / 目的: 安全な認証ドキュメント • API Documentation Best Practices / 適用: ドキュメント構成 / 目的: 読みやすさの担保 Trigger: Use when writing authentication docs, creating OAuth flow diagrams, documenting token management, or preparing quickstart guides for API auth.
majiayu000/claude-skill-registry 163
xss-prevention Prevent Cross-Site Scripting (XSS) attacks through input sanitization, output encoding, and Content Security Policy. Use when handling user-generated content in web applications.
majiayu000/claude-skill-registry 163
GitHub CLI Expert help with GitHub CLI (gh) for managing pull requests, issues, repositories, workflows, and releases. Use this when working with GitHub operations from the command line.
majiayu000/claude-skill-registry 163
helm-charts-audit Audits Helm charts for anti-patterns, security issues, and best practice violations. Use when asked to audit, review, or check Helm chart quality. Generates a comprehensive report under reports/YYYY-MM-DD/helm-charts-audit.md. (project)
majiayu000/claude-skill-registry 163
security-lens Apply security awareness during code review and implementation. Catches common vulnerabilities without requiring full security audit.
majiayu000/claude-skill-registry 163
hashing-passwords CRITICAL security skill teaching proper credential and password handling. NEVER store passwords, use bcrypt/argon2, NEVER accept third-party credentials. Use when handling authentication, passwords, API keys, or any sensitive credentials.
majiayu000/claude-skill-registry 163
security-scan-trivy Trivyで依存関係/コンテナの脆弱性をスキャンし、重大度順に潰す。リリース前チェックで使う。
majiayu000/claude-skill-registry 163
slack-auth-security OAuth flows, token management, and security best practices for Slack apps. Use when implementing app distribution, multi-workspace installations, token storage and rotation, managing scopes and permissions, or securing production Slack applications.
majiayu000/claude-skill-registry 163
agentuity-cli-cloud-eval-run-list List eval runs. Requires authentication. Use for Agentuity cloud platform operations
majiayu000/claude-skill-registry 163
network-security-groups Configure network security groups and firewall rules to control inbound/outbound traffic and implement network segmentation.
majiayu000/claude-skill-registry 163
graphql-security Secure GraphQL APIs - authentication, authorization, rate limiting, and validation
majiayu000/claude-skill-registry 163
nestjs-authentication Use this skill whenever the user wants to design, implement, or refactor authentication and authorization in a NestJS TypeScript backend, including JWT, sessions, refresh tokens, guards, roles/permissions, and integration with modules/services/controllers.
majiayu000/claude-skill-registry 163
security-headers-generator Security Headers Generator - Auto-activating skill for Security Fundamentals. Triggers on: security headers generator, security headers generator Part of the Security Fundamentals skill category.
majiayu000/claude-skill-registry 163
telnetshell Use telnet to interact with IoT device shells for pentesting operations including device enumeration, vulnerability discovery, credential testing, and post-exploitation. Use when the user needs to interact with network-accessible shells, IoT devices, or telnet services.
majiayu000/claude-skill-registry 163
tacosdedatos-writer Use this skill when helping write content for tacosdedatos newsletter/blog. Provides complete voice analysis, structural patterns, engagement mechanics, and writing principles for the distinctive bilingual tech-writer voice. Use for brainstorming post ideas, structuring drafts, writing posts, editing for voice authenticity, creating headlines, quality checking drafts, and generating quick outlines. Essential for maintaining the unique tacosdedatos voice that blends Spanish/English, technical depth with accessibility, vulnerability with expertise, and Mexican cultural identity with Bay Area tech culture.
majiayu000/claude-skill-registry 163
secure-code-guardian
majiayu000/claude-skill-registry 163
vulnerability-report-generator Vulnerability Report Generator - Auto-activating skill for Security Advanced. Triggers on: vulnerability report generator, vulnerability report generator Part of the Security Advanced skill category.
majiayu000/claude-skill-registry 163