Guided onboarding and best practices for building applications with PowerSync — Cloud and self-hosted setup, sync configuration, client SDK usage, backend integration (Supabase,…
Manage PR crises using classification, golden hour response, crisis statement templates (3C framework), and reputation recovery planning.
Use this skill to review a PR or diff for security regressions. Do not use it for full-repository audits or legal contract review.
Comprehensive pre-launch checklist for Flutter apps covering code quality, environment setup, error monitoring, analytics, force updates, security, store compliance, and…
Use when the user is trying to predict how a dominance-seeking leader will sort people in their orbit — who gets kept, who gets rehabilitated after a rift, who gets quietly…
Use this skill when working with the Pax8 product catalog - searching for cloud software, browsing vendors, checking pricing, reviewing provisioning details, and finding the right…
Use this skill when the user wants to audit a Solana or Anchor program for security vulnerabilities — account validation, PDA safety, arithmetic, CPI risks, reinit attacks, and…
Permissionless DeFi yield and credit on Solana via the Project 0 (P0) protocol. Deposit funds to earn yield across Solana's highest-yielding venues.
Complete API lifecycle management for Laravel applications — from OpenAPI design through governance and security hardening.
Use this skill when reviewing Prometheus or AlertManager configuration for cardinality, alerting correctness, scrape security, remote_write safety, or retention adequacy.
Use this skill when working with SentinelOne Purple AI - natural language cybersecurity investigation, threat hunting, behavioral anomaly analysis, MITRE ATT&CK TTP mapping, and…
Comprehensive healthcare AI toolkit for developing, testing, and deploying machine learning models with clinical data.
Use this skill when working with Checkpoint Harmony Email quarantine - listing, searching, releasing, deleting quarantined emails.
Setup, configure, debug and extend Quasarr — the bridge that connects JDownloader with Radarr, Sonarr and LazyLibrarian via a fake Newznab indexer and SABnzbd client interface.
Use this skill as the designated specialist reviewer for Zeta.Core's query planner / optimiser — join ordering, predicate pushdown, index selection, SIMD/tensor-intrinsic kernel…
Use this skill to audit RAG and AI application security, including retrieval boundaries, prompt injection, citations, memory, and data exposure.
Generates tailored giskard.checks evaluation suites for RAG (Retrieval-Augmented Generation) systems.
This skill should be used when the user is securing a React application, asking about "XSS in React", "dangerouslySetInnerHTML security", "Server Actions security", "React data…
This skill should be used when the user asks to "follow red team methodology", "perform bug bounty hunting", "automate reconnaissance", "hunt for XSS vulnerabilities", "enumerate…
Use this skill when resolving Blumira findings, choosing the correct resolution type, or understanding resolution workflows and their impact on security metrics.
Complete end-to-end evaluation of an app/codebase — measures the codebase against the dev-best-practices rules of this repo (essential/app/github/architecture).
LLM system review grounded in CMU 11-667 (Harms + Attacking LLMs), Berkeley CS294-196 (Safety/Guardrails), and OWASP LLM Top 10.
Drafts the final reviewer reply document and applies tracked-change edits to the manuscript, given a frozen plan from reviewer-reply-planning.
Orchestrates the end-to-end reviewer-reply workflow from raw reviewer comments to a submission-ready response document and tracked-changes manuscript.
Use this skill when the user says 'check RLS', 'audit RLS', 'RLS policies', 'row level security', 'Supabase security audit', or needs to verify table-level access control.
Use this skill when creating or altering database tables in Supabase or PostgreSQL projects. Triggers include: CREATE TABLE, ALTER TABLE, migration files, 'RLS', 'row level…
Security hardening and best practices for robotic systems, covering SROS2 DDS security, network segmentation, secrets management, secure boot, and the physical-cyber safety…
How to exploit buffer overflow vulnerabilities by leaking libc addresses using ROP chains. Use this skill whenever the user mentions buffer overflow, ROP, return-oriented…
Comprehensive best practices, design patterns, and common pitfalls for ROS2 (Robot Operating System 2) development.
Use this skill when reviewing exported RPA workflow definitions for resilience and security defects that cause unattended bots to fail silently in production.
Runtime security guardian for OpenClaw agents. Use this skill whenever the user mentions security, skill safety, prompt injection, malware, suspicious behavior, credential leaks,…
This skill should be used when the user asks to "safely buy a token", "safe trade", "buy with security check", "safe swap", "check before buying", or "安全买入".
Analyze codebases to generate optimal Claude Code Sandbox configurations. Use this skill when users need to set up sandbox security settings for their projects.
This skill handles SAP BTP (Business Technology Platform) development including CAP (Cloud Application Programming Model), Fiori Elements, SAP Build Apps, Integration Suite,…
This skill covers integrating Aqua Security''s Trivy scanner into CI/CD pipelines for comprehensive container
This skill should be used when the user asks to "perform vulnerability scanning", "scan networks for open ports", "assess web application security", "scan wireless networ — from…
This skill should be used when the user asks to "perform vulnerability scanning", "scan networks for open ports", "assess web application security", "scan wireless networ — from…
Special Court for Sierra Leone (SCSL, 2002-2013) and the Residual Special Court for Sierra Leone (RSCSL, 2013-) research, drafting, and analysis.
分析secret-identification-assessment相关知识产权侵权问题。 覆盖:侵权行为识别、证据收集、维权策略建议。 适用情形:用户说"secret-identification-assessment"相关问题。
Guide for configuring and managing GitHub secret scanning, push protection, custom patterns, and secret alert remediation.
This skill enables Claude to seamlessly integrate with various secrets managers like HashiCorp Vault and AWS Secrets Manager.
Define, build, review, and harden production-grade fullstack applications with strong security posture.
This skill covers hardening GitHub Actions workflows against supply chain attacks, credential theft, and privilege
This skill covers security hardening for serverless compute platforms including AWS Lambda, Azure Functions,
This skill enables Claude to conduct a security-focused code review using the security-agent plugin. It analyzes code for potential vulnerabilities like SQL injection, XSS,…
This skill enables Claude to generate comprehensive security audit reports. It is designed to provide insights into an application or system's security posture, compliance status,…
This skill conducts legal review of security audit findings to assess regulatory disclosure obligations.
This skill designs and runs the security awareness training programme for all employees. Use when asked to create security training, run phishing simulations, or track training…
Establish a security baseline for a website or web app. Use this skill when configuring HTTPS and TLS, setting security headers, planning secrets management, evaluating CSP…
This skill establishes the security baseline configuration for all systems at project inception. Use when asked to set up security defaults, harden a new environment, or configure…
个人信息保护认证顾问——指导企业通过个人信息保护认证 作为数据出境合规路径之一,或提升整体个人信息保护水平。 适用情形:用户说"个保认证怎么做"、"个人信息保护认证 有哪些"、"等保和个保认证的关系"、"认证对出境的帮助"、 "TC260认证"、"网络安全认证"。
This skill analyzes HTTP security headers of a given domain to identify potential vulnerabilities and misconfigurations.
Security hygiene for GSD's self-modifying skill and agent system. Use this skill whenever: creating, editing, or deleting skill files (.claude/skills/, .claude/commands/),…
Assists with security incident response, investigation, and remediation. This skill is triggered when the user requests help with incident response, mentions specific incident…
This skill enables Claude to identify potential security misconfigurations in various systems and configurations.
This skill allows Claude to conduct comprehensive security audits of code, infrastructure, and configurations.
This skill should be used when the user asks to "perform vulnerability scanning", "scan networks for open ports", "assess web application security", "scan wireless networ — from…
This skill automates security vulnerability testing. It is triggered when the user requests security assessments, penetration tests, or vulnerability scans.
Generate AI images using Volcengine Seedream model. Supports text-to-image (T2I), image editing (I2I), multi-image fusion, and web-search-based generation.
Generate images using the Doubao SeeDream API based on text prompts. Use this skill when users request AI-generated images, artwork, illustrations, or visual content creation.