SKILL.md packages that extend Claude Code, Cursor, Copilot, and other AI agents.
Tags
ai-helpers
Run a six-specialist reviewer panel on an Architectural Decision Record (ADR) and produce a consolidated PDF report and PPTX slide deck to surface risks, recomm
orchestkit
Deep pull-request code review using parallel specialized agents (quality, security, tests, architecture, performance) and synthesized review reports for approve
agent-skills-standard
Opinionated REST API design conventions: HTTP verbs, status codes, URL patterns, versioning, pagination, and OpenAPI requirements for reliable, versioned APIs.
xianzhi-research
A structured vulnerability research framework distilled from 5600+ security docs, covering web injection, deserialization, binary exploitation, domain pentest,
EloPhanto (React agent)
Opinionated Solana dApp and program development skill: wallet UX, Anchor/Pinocchio programs, testing (LiteSVM/Surfpool), and migration/security checklists for p
claude-code-workflows
Opinionated, language-agnostic principles for writing maintainable, readable, and secure code — use when implementing features, refactoring, or reviewing code q
skillshub
Guidelines and CLI recipes for safely adding, upgrading, auditing and managing Go dependencies, including govulncheck, go.mod practices, vendoring, and automate
claude-code-templates
Guides creating Hookify rule files (.claude/hookify.*.local.md) to detect patterns (dangerous commands, secrets, debug logs) and show warnings or block actions.
scv-scan
Audit Solidity smart contract codebases for security vulnerabilities using a structured cheatsheet-driven sweep and selective deep validation, producing severit
CTF Skills Collection
Generate a concise, reproducible submission-style CTF writeup with a one-path solution script, metadata, and a short checklist for fast verification.
crucible
Adversarial review skill: iteratively attack artifacts (designs, plans, code, docs) and surface fatal/significant issues until clean or escalation.
skills
Returns docs-grounded guidance and exact GitHub docs links for writing, explaining, migrating, securing, or troubleshooting GitHub Actions workflows.
ethskills
Practical guide and patterns for smart contract tests using Foundry: unit tests, fuzzing, fork tests, and invariants to catch economic and integration bugs.
opentelemetry-skill
Expert OpenTelemetry observability skill for designing collectors, pipelines, sampling, cardinality management, security, and production-ready deployment patter
springboot-skills-marketplace
Run focused, evidence-based code reviews for Java 25 and Spring Boot 4 projects — migration risks, architecture boundaries, null-safety (JSpecify), security, an
code-audit
Perform professional code security audits across 9 languages with configurable quick/standard/deep modes and Docker-backed verification.
CTF Skills Collection
Reference of cryptographic attack techniques and tools for CTF challenges (RSA, AES, ECC, lattices, PRNGs, padding oracles, and more).
code-mode-skill
Add a sandboxed code mode tool to an MCP server so LLMs run small processing scripts against large API responses and only the script output enters the model con
agent-skills
Infrastructure provisioning agent: designs Terraform/OpenTofu/Pulumi IaC, local dev stacks (Docker Compose), state strategy, and security/cost best practices fo
claude-code-handbook
Guidelines and patterns for building robust REST APIs: correct HTTP status codes, RFC 7807 error responses, validation, sanitization, rate limiting, and central
skills
Perform structured, prioritized code reviews that find correctness, security, performance, reliability, and testing issues and provide concrete fix suggestions.
mcp-security
Expert, tool-aware guidance for proactive threat hunting: formulate SIEM/UDM queries, iterate searches, enrich findings, and produce case or report outputs.
gsd-skill-creator
Autonomously triage GitHub issues, submit fixes as PRs, and perform adversarial PR reviews to find security and quality problems.
agentic-commerce-skills-plugins
Guides implementation of Medusa v2 payment module and provider integrations (Stripe, PayPal): sessions, authorization/capture/refund lifecycle, webhooks, and be
claude-plugins
Provides expert guidance for modern Rust systems programming: cargo workflows, ownership, async/concurrency (Tokio), testing, profiling, and tooling best practi
frappe_claude_skill_package
Guides correct implementation of Frappe/ERPNext permissions — roles, user permissions, perm levels, hooks and data masking to avoid common access-control mistak
gsd-skill-creator
Security hygiene guidelines for self-modifying agent systems: path sanitization, safe YAML handling, data poisoning checks, and staging/quarantine practices to
inertia-rails-skills
Practical guide for adding authentication and authorization to Inertia + Rails apps — covers Devise, has_secure_password, session sharing, permission props, and
arc-kit
Generates French public procurement (Dossier de Consultation des Entreprises) drafts aligned with the Code de la Commande Publique, UGAP frameworks, and DINUM d
auditware
Multi-framework AST generator and static analysis tool for smart contracts (Rust/Anchor/Stylus and Solidity/Foundry) with a template DSL for writing detection r
