MCP App StoreMCP App Store
from sickn33
Checklist-driven security review for web apps: secrets, input validation, auth, XSS/CSRF, rate limiting, dependency management.
This skill provides a practical security-review checklist and guidance for web applications and APIs. It covers secrets management, input validation, SQL injection prevention, authentication & authorization, XSS/CSRF prevention, rate limiting, logging practices, dependency security, and optional blockchain security checks. Includes example code snippets (TypeScript) and verification steps to help engineers validate security controls before deployment.
A structured checklist and example snippets you can apply or include in CI checks and PR templates.
This skill has not been reviewed by our automated audit pipeline yet.
Reverse Engineer
Provides step-by-step guidance and best practices for binary reverse engineering: static analysis, dynamic tracing, disassembly, and documentation workflows for
Node.js Best Practices
Guidelines and decision-making for Node.js architecture, runtime, async patterns, security, validation, and testing to inform framework and system choices.
Angular Migration
Guides developers through migrating AngularJS (1.x) apps to modern Angular (2+), with hybrid ngUpgrade approaches, component/service conversions, DI strategies,
DOCX Official
Workflows and tools to create, edit, analyze, and convert .docx files safely and reproducibly, including tracked-change redlining and raw OOXML access.
Makepad Basics
Guides agents to create, structure, and bootstrap Rust Makepad applications using makepad-widgets (dev branch) with code patterns, macros, and event handling.
STRIDE Analysis Patterns
Apply the STRIDE threat-modeling methodology to systematically identify and document security threats during design, reviews, or audits.
Makepad Event & Action Handling
Guides handling of input, lifecycle, and widget actions in Makepad apps — events, hit testing, timers, and parent-child action flow.
Makepad Basics
Guides agents to generate and explain Rust Makepad apps: setup, live_design!, app_main!, widget wiring and common patterns for cross-platform GUI development.
Makepad Basics (Claude variant)
Agent skill for Makepad starter apps: generates Rust examples, explains live_design! patterns, and guides event handling and widget wiring for beginner projects
Claimable Postgres (pg.new)
Provision temporary Postgres databases (pg.new) instantly for demos, prototyping, and local development; returns a connection string and claim URL (72-hour expi
Reverse Engineer
Provides step-by-step guidance and best practices for binary reverse engineering: static analysis, dynamic tracing, disassembly, and documentation workflows for
Sandbox0 Integration
Guidance and templates for integrating Sandbox0 sandboxing into AI agents — CLI/SDK patterns, templates, volumes, network policy, and deployment choices.
FastAPI Project Templates
Creates production-ready FastAPI project scaffolds with async patterns, DI, middleware, and testing best practices for high-performance APIs.
OpenTestAI
Automated, high-confidence AI testing: bug detection, persona feedback, and prioritized test-case generation using many specialized tester profiles.
CTF Write-up Generator
Generate a concise, reproducible submission-style CTF writeup with a one-path solution script, metadata, and a short checklist for fast verification.
Minimal Run & Audit (repro reporting)
Execute a README-first smoke test and produce standardized reproducibility outputs (`repro_outputs/`) and PATCHES.md — trusted reporting for repo reproduction r
Skill Issue — Skill Auditor
Scan and audit installed agent skills to produce a health report covering inventory, usage, dependency checks, version status, and actionable recommendations.
GRC & Compliance (ServiceNow)
Guides Governance, Risk & Compliance (GRC) work in ServiceNow: policies, controls, risk records, audits and ES5 script examples for automating GRC workflows.