Agent skills
Skills you can use with AI coding agents, indexed from public GitHub repositories.
-
graceful-degradation
Build tiered fallback systems that degrade performance, not availability. Cache layers, API resilience, and automatic failover patterns for platform reliability.
adaptive-enforcement-lab/claude-skills 1
-
separation-of-concerns-pattern-overview
Single-responsibility components with clear boundaries. Orchestration separate from execution. Build maintainable systems through component isolation.
adaptive-enforcement-lab/claude-skills 1
-
error-handling
Handle token failures, API rate limits, and permission errors in GitHub Actions workflows with retry logic, validation checks, and actionable error messages.
adaptive-enforcement-lab/claude-skills 1
-
oauth-user-authentication
OAuth flows for user-context operations. Web application patterns, device flow for CLI tools, and token refresh strategies for GitHub Apps.
adaptive-enforcement-lab/claude-skills 1
-
argo-workflows-patterns
Production Argo Workflows patterns: reusable templates, error handling, concurrency control, composition, and scheduled automation for Kubernetes operators.
adaptive-enforcement-lab/claude-skills 1
-
idempotency
Build automation that survives reruns. Idempotent operations let you rerun workflows without fear of duplicates, corruption, or cascading failures in CI/CD.
adaptive-enforcement-lab/claude-skills 1
-
matrix-filtering-and-deduplication
Reduce matrix builds from 47 jobs to 3 with path filtering, deduplication, and dynamic generation. Run only what changed and eliminate redundant combinations.
adaptive-enforcement-lab/claude-skills 1
-
workflow-composition
Build complex pipelines from reusable workflow components. Compose parent-child workflows, orchestrate multi-stage automation, and eliminate copy-paste YAML.
adaptive-enforcement-lab/claude-skills 1
-
work-avoidance-techniques
Layer work avoidance checks from existence to content to semantic comparison. Each technique catches different skip scenarios for maximum automation efficiency.
adaptive-enforcement-lab/claude-skills 1
-
efficiency-patterns
Optimize automation with idempotency and work avoidance. Safe retries plus skipping unnecessary operations maximize efficiency in CI/CD and platform engineering.
adaptive-enforcement-lab/claude-skills 1
-
argo-events-setup-guide
Deploy event-driven automation with EventSource, EventBus, and Sensor configuration. Complete setup guide for production Argo Events on Kubernetes clusters.
adaptive-enforcement-lab/claude-skills 1
-
installation-token-generation
Generate short-lived installation tokens from GitHub App credentials with actions/create-github-app-token. Organization-scoped and repository-scoped patterns for automated cross-repo workflows.
adaptive-enforcement-lab/claude-skills 1
-
chaos-experiment-design
Chaos experiment design methodology. Hypothesis formation, success criteria definition, blast radius control, validation patterns, and SLI monitoring for effective chaos engineering.
adaptive-enforcement-lab/claude-skills 1
-
kyverno-basics
Install Kyverno, create validation policies, and understand audit vs enforce modes for Kubernetes admission control.
adaptive-enforcement-lab/claude-skills 1
-
policy-as-code-end-to-end-enforcement
Enforce security and compliance policies across local dev, CI pipelines, and runtime admission. Three-layer Kyverno enforcement eliminates policy gaps entirely.
adaptive-enforcement-lab/claude-skills 1
-
opa-rbac-templates
OPA RBAC policies preventing cluster-admin privilege escalation, restricting privileged verbs, and blocking wildcard permissions.
adaptive-enforcement-lab/claude-skills 1
-
kyverno-image-validation-templates
Kyverno image validation: registry allowlists, digests, signatures, and CVE scanning gates for K8s supply chain security.
adaptive-enforcement-lab/claude-skills 1
-
policy-packaging
Build policy-platform containers that aggregate Kyverno policies from multiple OCI sources. Multi-stage Docker builds for local dev and CI validation.
adaptive-enforcement-lab/claude-skills 1
-
phase-3-runtime-weeks-9-12
Runtime enforcement phase overview. Policy-as-code with Kyverno, resource limits, image source verification, security context enforcement, and policy observability for production Kubernetes hardening.
adaptive-enforcement-lab/claude-skills 1
-
jmespath-for-kyverno
Master JMESPath for Kyverno policies. Query nested resources, build complex conditions, and validate Kubernetes workloads with production-tested patterns.
adaptive-enforcement-lab/claude-skills 1
-
branch-protection-enforcement-patterns
Comprehensive branch protection configuration patterns with enforcement automation. Security tiers, IaC at scale, GitHub App enforcement, audit reporting, and bypass controls.
adaptive-enforcement-lab/claude-skills 1
-
phase-2-automation-weeks-5-8
Automation phase SDLC hardening overview. CI/CD gates, SBOM generation, vulnerability scanning, SLSA provenance, and automated evidence collection for secure software supply chain enforcement.
adaptive-enforcement-lab/claude-skills 1
-
implementation-roadmap
Phased rollout plan for SDLC hardening. Foundation to runtime enforcement in 90 days. Prioritized by risk and audit importance.
adaptive-enforcement-lab/claude-skills 1
-
opa-pod-security-templates
OPA pod security policies preventing privileged containers, restricting Linux capabilities, and enforcing security contexts in Kubernetes.
adaptive-enforcement-lab/claude-skills 1