Sponsored by

Find leads on Reddit on auto pilot

Agent skills

Skills you can use with AI coding agents, indexed from public GitHub repositories.

Latest Most Popular

openwebf-security-remote-content Review security risks and mitigations for remote WebF content (untrusted bundles, URL allowlists, HTTPS, trust boundaries, clickjacking). Use when the user mentions untrusted remote bundles, bundle URL validation/allowlists, or remote updates risk.
majiayu000/claude-skill-registry 163
review-security 보안 관점에서 코드를 검토합니다. OWASP Top 10, credential 노출, injection 공격 등을 체크합니다.
majiayu000/claude-skill-registry 163
github-oauth-nango-integration Use when implementing GitHub OAuth + GitHub App authentication with Nango - provides two-connection pattern for user login and repo access with webhook handling
majiayu000/claude-skill-registry 163
Security Scanner OWASP compliance
majiayu000/claude-skill-registry 163
certificate-lifecycle-manager Certificate Lifecycle Manager - Auto-activating skill for Security Advanced. Triggers on: certificate lifecycle manager, certificate lifecycle manager Part of the Security Advanced skill category.
majiayu000/claude-skill-registry 163
lindy-data-handling Best practices for handling data with Lindy AI. Use when managing sensitive data, implementing data privacy, or ensuring data compliance. Trigger with phrases like "lindy data", "lindy privacy", "lindy PII", "lindy data handling", "lindy GDPR".
majiayu000/claude-skill-registry 163
performing-security-testing Test automate security vulnerability testing covering OWASP Top 10, SQL injection, XSS, CSRF, and authentication issues. Use when performing security assessments, penetration tests, or vulnerability scans. Trigger with phrases like "scan for vulnerabilities", "test security", or "run penetration test".
majiayu000/claude-skill-registry 163
pal-secaudit Comprehensive security audit with OWASP Top 10 analysis, compliance evaluation, and threat modeling using PAL MCP. Use for security reviews, vulnerability assessment, or compliance checks. Triggers on security audit requests, vulnerability scanning, or compliance reviews.
majiayu000/claude-skill-registry 163
.claude/skills/nextauth-patterns/SKILL.md NextAuth.js v5の設定とカスタマイズパターン。プロバイダー設定、アダプター統合、セッション戦略、コールバックカスタマイズ、型安全性の確保を提供。 📖 参照書籍: - 『Web Application Security』（Andrew Hoffman）: 脅威モデリング 📚 リソース参照: - `resources/Level1_basics.md`: レベル1の基礎ガイド - `resources/Level2_intermediate.md`: レベル2の実務ガイド - `resources/Level3_advanced.md`: レベル3の応用ガイド - `resources/Level4_expert.md`: レベル4の専門ガイド - `resources/legacy-skill.md`: 旧SKILL.mdの全文 - `resources/provider-configurations.md`: NextAuth.js Provider Configurations - `resources/session-callbacks-guide.md`: NextAuth.js Session Callbacks Guide - `scripts/log_usage.mjs`: 使用記録・自動評価スクリプト - `scripts/validate-nextauth-config.mjs`: NextAuth.js設定ファイルの妥当性検証とプロバイダー設定・コールバック実装の検査スクリプト - `scripts/validate-skill.mjs`: スキル構造検証スクリプト - `templates/nextauth-config-template.ts`: Google/GitHub OAuth統合・Drizzleアダプター・JWT/Databaseセッション戦略を含むauth.ts設定テンプレート Use proactively when handling nextauth patterns tasks.
majiayu000/claude-skill-registry 163
pop-assessment-security Validates PopKit security posture using concrete vulnerability patterns, automated secret scanning, and OWASP-aligned checklists
majiayu000/claude-skill-registry 163
aqe-v2-v3-migration Migrate Agentic QE projects from v2 to v3 with zero data loss
majiayu000/claude-skill-registry 163
add-authorization-methods Add authorization methods for a new entity to AuthorizationService. Use after creating a resource service. Triggers on "add permissions", "authorization methods", "entity permissions", "add auth methods".
majiayu000/claude-skill-registry 163
threat-model-generator Creates comprehensive threat models using STRIDE methodology with asset identification, threat enumeration, mitigation strategies, and residual risk assessment. Use for "threat modeling", "security analysis", "STRIDE", or "risk assessment".
majiayu000/claude-skill-registry 163
pop-assessment-security Validates PopKit security posture using concrete vulnerability patterns, automated secret scanning, and OWASP-aligned checklists
majiayu000/claude-skill-registry 163
security-review セキュリティ脆弱性を自動検出する。認証情報のハードコード、コマンドインジェクション、危険なシェル構文などをチェック。
majiayu000/claude-skill-registry 163
pal-secaudit Comprehensive security audit with OWASP Top 10 analysis, compliance evaluation, and threat modeling using PAL MCP. Use for security reviews, vulnerability assessment, or compliance checks. Triggers on security audit requests, vulnerability scanning, or compliance reviews.
majiayu000/claude-skill-registry 163
insecure-deserialization-checker Insecure Deserialization Checker - Auto-activating skill for Security Fundamentals. Triggers on: insecure deserialization checker, insecure deserialization checker Part of the Security Fundamentals skill category.
majiayu000/claude-skill-registry 163
white-label Complete WordPress white-labeling using FREE plugins only - ASE, Branda, White Label CMS, Admin Menu Editor. Covers login page branding, admin cleanup, security hardening, and client handoff preparation.
majiayu000/claude-skill-registry 163
image_generation AI图像生成与编辑能力，基于 Nano Banana (Gemini Image) 实现文生图、图生图、图像编辑。适用于创意设计、营销素材、社交媒体内容、演示文稿配图等场景。支持多种风格、高分辨率输出（最高4K）、文字渲染、角色一致性保持。
majiayu000/claude-skill-registry 163
aqe-v2-v3-migration Migrate Agentic QE projects from v2 to v3 with zero data loss
majiayu000/claude-skill-registry 163
audit-security-dependencies Use when adding packages, bumping versions, or responding to security alerts. Enforces supply chain security and vulnerability remediation.
majiayu000/claude-skill-registry 163
outline-cli Allow droids to interact with Outline Wiki via the outlinectl CLI (auth, collections, docs) with automation-friendly JSON output.
majiayu000/claude-skill-registry 163
nextauth-patterns NextAuth.js v5の設定とカスタマイズパターンを専門とするスキル。 OAuth 2.0プロバイダー統合、データベースアダプター、セッション戦略、コールバック実装、型安全なセッション管理を提供する。 Anchors: • Web Application Security (Andrew Hoffman) / 適用: OAuth脅威モデリングとセッションセキュリティ / 目的: 安全な認証フロー設計 • NextAuth.js v5 Official Docs / 適用: プロバイダー設定とコールバック / 目的: 標準準拠の実装 Trigger: Use when implementing NextAuth.js authentication, configuring OAuth providers (Google, GitHub), integrating database adapters (Drizzle), designing session strategies (JWT or database-backed), customizing authentication callbacks, or adding role-based data to sessions. Keywords: nextauth, oauth, authentication, session, jwt, drizzle adapter, google oauth, github oauth
majiayu000/claude-skill-registry 163
auditing-wallet-security Audit wallet security by analyzing token approvals, permissions, and transaction patterns. Use when checking wallet security, reviewing approvals, or assessing risk exposure. Trigger with phrases like "audit wallet", "check approvals", "security scan", or "revoke tokens".
majiayu000/claude-skill-registry 163