SKILL.md packages that extend Claude Code, Cursor, Copilot, and other AI agents.
Tags

arifos
Legacy copy of the arifOS autonomous controller skill describing constitutional governance and automated remediation flows.

reins
Deterministic runtime security hooks for agents: block dangerous shell and file actions, warn on risky ops, and log audits to Watchtower.

awesome-skills
Manage Gerrit repository and branch permissions at scale: templates, group mapping, manifest-based multi-repo permission sync, and drift detection for secure ac

aaas-vault
Continuous security monitoring for agent deployments: detects intrusions, suspicious API usage, credential misuse, port scans, and file changes.

skillshub
Automated guidance and code patterns for implementing robust input validation and secure-coding practices (OWASP-aligned).

claude-skill-registry
Perform focused, automated code reviews for a PR: detect bugs, security issues, performance problems and test gaps, then post a structured GitHub review and com

claude-skill-registry
Run a zero-assumption audit of project dependencies: CVEs, maintenance, license risk, bundle cost, bus factor, and recommendations to remove or replace risky pa

skills
Static security assessment for OpenClaw: configuration audit plus skill static analysis to find high-risk behaviors before install.

awesome-claude-notes
A checklist and practical snippets for securing Spring Boot services: authentication, authorization, input validation, CSRF, secrets management, headers, rate l

kali-docker-pentesting
Provides a Kali Linux Docker container with 200+ penetration-testing tools and guidance for running scans, exploitation, and forensics via direct docker exec co

skills
Build unsigned trade transactions from natural-language prompts across 24 chains using Tator's x402 API; review, sign, and broadcast securely.

claude-skills
Provides risk-based security strategy and compliance roadmaps (SOC 2, ISO 27001, HIPAA, GDPR), incident response playbooks, and vendor risk assessments for grow

secure-claude-skills
Automated and manual security tests for web apps: CSRF, rate limiting, input validation, security headers and pre-deployment checklist.

ai-toolkit
Project-specific Kotlin coding standards covering naming, null-safety, coroutines, testing, frameworks (Ktor, Spring), and security best practices.

ai-safe2-framework
A governance and security copilot that applies the AI SAFE2 v3.0 framework to design, review, and govern agentic AI systems — mapping controls, scoring risk, an

galyarder-framework
Compatibility skill that maps legacy `remotion-engineer` references to current runtime practices and enforces the framework's operational protocols for agentic

shiroattack2
Command-line toolkit to detect, brute-force keys, and exploit Apache Shiro rememberMe deserialization vulnerabilities (CVE-2016-4437) for authorized security te

claude-code-templates
Guidance and patterns for creating event-driven hooks (PreToolUse, PostToolUse, Stop, SessionStart, etc.) for Claude Code plugins and projects.

aws-agent-skills
面向代理的 AWS S3 使用指南:创建/配置桶、对象操作、生命周期策略、权限与预签名 URL 等常见运维与开发模式的操作模板。

guardian-cli
An AI-driven, production-ready CLI that automates authorized penetration testing workflows, orchestrating planner, tool, analyst and reporter agents to produce

openclaw-master-skills
Pre-execution safety protocol that detects and blocks dangerous shell commands and sensitive file reads, and guides the agent through safe alternatives.

openclaw-backup
Create, download, upload, and restore full OpenClaw instance backups (workspace, credentials, skills, agent history) with an optional local HTTP UI. Requires ca

vigolium
Prove OS command injection by generating OAST callbacks and a single safe follow-on data retrieval (file read or env dump) — non-destructive RCE proofing for se

copilot-prompts
Perform structured C# code reviews covering naming, performance, security, readability, and .NET best practices.

antigravity-awesome-skills
Checklist-driven security review for web apps: secrets, input validation, auth, XSS/CSRF, rate limiting, dependency management.

skills
Configure and optimize mewt/muton mutation-testing campaigns: scope targets, tune timeouts, and prepare long-running runs for reliable results.

clawvault
Send high-risk ClawVault security events and daily security reports through an OpenClaw agent for automated alerting and reporting.

tech-debt-skill
Run a deliberate, file-cited technical debt and architecture audit that outputs a TECH_DEBT_AUDIT.md with prioritized findings and remediation recommendations.

claude-code-plugins-plus-skills
Practical security best-practices for integrating with the Apollo.io API: safe key storage, PII redaction, minimal permissions, rotation, and automated audit ch

marketplace
Comprehensive guide and practical snippets to design and harden APIs: authentication, input validation, rate limiting, data protection, and testing patterns to