SKILL.md packages that extend Claude Code, Cursor, Copilot, and other AI agents.
Tags

claude-code-blueprint
Run a comprehensive, multi-agent code review that covers quality, security, and database concerns and synthesises a severity-ranked findings table.

claude-skill-registry
Security review and best-practice guidance for web apps and agentic AI systems covering OWASP Top 10:2025, ASVS 5.0, and agent security patterns.

claude-skills
Provides concrete guidance and code examples to implement authentication, authorization, input validation, and other defenses against OWASP Top 10 vulnerabiliti

Anthropic Cybersecurity Skills
Use OWASP Threat Dragon to create data-flow diagrams, apply STRIDE/LINDDUN threat classifications, and generate threat-model reports to guide secure design revi

grapefruit
Automated, checklist-driven mobile security audit aligned to OWASP MASTG v2 for iOS and Android; exports structured markdown findings and remediation guidance.

skillsemgrep
Run Semgrep-based security scans to detect vulnerabilities, secrets, and OWASP Top 10 issues, and produce a categorized report with remediation suggestions.

skillshub
Auto-activating skill that generates and validates security HTTP headers and provides guidance for implementing secure header configurations.

skillshub
Automated guidance and code patterns for implementing robust input validation and secure-coding practices (OWASP-aligned).

OStack SaaS
Comprehensive security audit agent that performs OWASP Top 10 analysis, STRIDE threat modeling, and attack surface mapping.

Python Refactoring Skills
Detect and fix security vulnerabilities in Python code, including SQL injection, hardcoded secrets, and weak cryptography using Bandit and Ruff.

Keygraph Shannon
Autonomous AI-driven pentesting tool for web apps and APIs. Performs real exploits to prove vulnerabilities with high success rates.

saas-security
Comprehensive SaaS security audit skill: run domain-based audits, generate checklists, classify risks, and produce prioritized remediation reports.

codex_skill
Perform security-focused code reviews aligned to OWASP Top 10 and CWE patterns; produces grouped findings, risk summary, and remediation guidance.

Anthropic Cybersecurity Skills
Guided workflow to identify, validate, and document reflected, stored, and DOM-based XSS using Burp Suite (scanner, repeater, intruder, DOM Invader).

antigravity-awesome-skills
Checklist-driven security review for web apps: secrets, input validation, auth, XSS/CSRF, rate limiting, dependency management.

marketplace
Comprehensive guide and practical snippets to design and harden APIs: authentication, input validation, rate limiting, data protection, and testing patterns to

anthropic-cybersecurity-skills
Structured workflow to test REST and GraphQL APIs for Broken Object Level Authorization (BOLA/IDOR), with techniques for discovery, exploitation checks, and rem

claude-code
Run on-demand security, dependency and code-quality audits to find vulnerabilities, exposed secrets, and maintainability issues.