ReddRadar
Agent skills
Skills you can use with AI coding agents, indexed from public GitHub repositories.
-
telnetshell
Use telnet to interact with IoT device shells for pentesting operations including device enumeration, vulnerability discovery, credential testing, and post-exploitation. Use when the user needs to interact with network-accessible shells, IoT devices, or telnet services.
majiayu000/claude-skill-registry 163
-
security-assessment
Vulnerability review, OWASP patterns, secure coding practices, and threat modeling approaches. Use when reviewing code security, designing secure systems, performing threat analysis, or validating security implementations.
majiayu000/claude-skill-registry 163
-
research-finding
Expert Security Analyst for deep research and exploitability analysis of security findings. Use when you have a specific finding from semgrep, trufflehog, or manual code review that needs thorough investigation to determine if it represents an exploitable vulnerability with real-world impact.
majiayu000/claude-skill-registry 163
-
gdpr-compliance-scanner
Gdpr Compliance Scanner - Auto-activating skill for Security Advanced.
Triggers on: gdpr compliance scanner, gdpr compliance scanner
Part of the Security Advanced skill category.
majiayu000/claude-skill-registry 163
-
dokploy-security-hardening
Security best practices for Dokploy templates: secrets management, network isolation, least privilege, image security, and hardening recommendations.
majiayu000/claude-skill-registry 163
-
vulnerability-scanning
Automated vulnerability detection using OWASP tools, CVE databases, and security scanners. Use when performing security audits, compliance checks, or continuous security monitoring.
majiayu000/claude-skill-registry 163
-
violetconnect-woocommerce
WooCommerce REST API authentication and credential-based onboarding patterns for VioletConnect
majiayu000/claude-skill-registry 163
-
Dependency Health
Security-first dependency management methodology with batch remediation, policy-driven compliance, and automated enforcement. Use when security vulnerabilities exist in dependencies, dependency freshness low (outdated packages), license compliance needed, or systematic dependency management lacking. Provides security-first prioritization (critical vulnerabilities immediately, high within week, medium within month), batch remediation strategy (group compatible updates, test together, single PR), policy-driven compliance framework (security policies, freshness policies, license policies), and automation tools for vulnerability scanning, update detection, and compliance checking. Validated in meta-cc with 6x speedup (9 hours manual to 1.5 hours systematic), 3 iterations, 88% transferability across package managers (concepts universal, tools vary by ecosystem).
majiayu000/claude-skill-registry 163
-
sr-cardoso-backend
Backend Cloud Run/Express/Firestore do Sr Cardoso. Use quando criar ou alterar endpoints, auth JWT, regras de agenda, financeiro, branding, WhatsApp, cron jobs, ou modelagem Firestore.
majiayu000/claude-skill-registry 163
-
security-specialist
Implement authentication, authorization, data protection, vulnerability checks, and security best practices. Use when adding authentication, protecting API endpoints, handling user data, or implementing security features.
majiayu000/claude-skill-registry 163
-
pal-codereview
Systematic code review covering quality, security, performance, and architecture using PAL MCP. Use for pull request reviews, code audits, or pre-commit validation. Triggers on review requests, PR reviews, or code quality checks.
majiayu000/claude-skill-registry 163
-
legacy-codebase-analyzer
Comprehensive legacy codebase analysis skill for technical debt assessment, security vulnerability scanning, performance bottleneck detection, and modernization roadmap generation. Includes 7 Python tools for automated codebase inventory, architecture health analysis, and strategic modernization planning.
majiayu000/claude-skill-registry 163
-
audit-agent
Comprehensive security and code quality audit. Use for thorough security, vulnerability, and code quality analysis. Related: project-health-checker for quick diagnostic checks.
majiayu000/claude-skill-registry 163
-
grey-haven-authentication-patterns
Grey Haven's authentication patterns using better-auth - magic links, passkeys, OAuth providers, session management with Redis, JWT claims with tenant_id, and Doppler for auth secrets. Use when implementing authentication features.
majiayu000/claude-skill-registry 163
-
smart-contract-security
Master smart contract security with auditing, vulnerability detection, and incident response
majiayu000/claude-skill-registry 163
-
api-best-practices
REST API design patterns, OpenAPI specifications, versioning strategies, authentication, error handling, and security best practices. Use when designing APIs, creating endpoints, documenting APIs, or implementing backend services that expose HTTP APIs.
majiayu000/claude-skill-registry 163
-
secrets-scanner
Scan codebase for secrets, API keys, credentials, and PII. Detect hardcoded sensitive data. Use when auditing for secrets, checking for exposed keys, reviewing security, or scanning for PII.
majiayu000/claude-skill-registry 163
-
comfort-safety
Use when creating animations that reassure users, reduce anxiety, or communicate protection and security.
majiayu000/claude-skill-registry 163
-
seo-optimizer
Audit and optimize WordPress SEO (Yoast/Rank Math) - checks focus keywords, meta descriptions, featured images. Uses Unsplash API for missing images. Run on all pages/posts to identify and fix SEO issues.
majiayu000/claude-skill-registry 163
-
session-security-checker
Session Security Checker - Auto-activating skill for Security Fundamentals.
Triggers on: session security checker, session security checker
Part of the Security Fundamentals skill category.
majiayu000/claude-skill-registry 163
-
Reviewing Authentication and Authorization Security
Use when reviewing authentication or authorization code. Provides comprehensive security guidance on JWT validation, token exchange, OAuth 2.0/2.1 compliance, PKCE, Resource Indicators, MCP authorization, session management, and API authentication. Covers critical vulnerabilities including token forwarding, audience validation, algorithm confusion, confused deputy attacks, and authentication bypass. Invoke when analyzing any authentication, authorization, or access control code changes.
majiayu000/claude-skill-registry 163
-
security-expert
OWASPの基本を前提に、デフォルト安全(入力検証/認可/秘密情報/監査ログ/SSR/CSRF等)を落とさずに設計・実装・レビューする。脅威と攻撃面を洗い出し、最小権限と安全な失敗で守るために使う。
majiayu000/claude-skill-registry 163
-
input-sanitization
Эксперт по санитизации ввода. Используй для XSS prevention, encoding, validation и security headers.
majiayu000/claude-skill-registry 163
-
@delon/auth Authentication & Authorization
Implement authentication and authorization using @delon/auth. Use this skill when adding login/logout flows, JWT token management, role-based access control (RBAC), route guards, HTTP interceptors, and session management. Integrates with Firebase Auth and custom permission systems. Ensures secure token storage, automatic token refresh, and consistent authorization checks across components and services.
majiayu000/claude-skill-registry 163