Marketplace
Find the right skill for the job.
Browse the full catalog through outcome-first channels, technical facets, rating filters, and server-side pagination built for a large public marketplace.
full-stack-optimizer
Multi-agent orchestration for comprehensive frontend + backend improvements. Use when user requests "improve the app", "optimize functionality", "make it perfect", or "enhance the system". Deploys specialized agents for parallel analysis and implementation.
security-scanner
Scans code for security vulnerabilities using Snyk, Trivy, Bandit (Python), ESLint security plugins, or CodeQL. Detects SQL injection, XSS, CSRF, hardcoded secrets (API keys, passwords), dependency vulnerabilities (CVEs), insecure configurations, and OWASP Top 10 issues. Generates security reports with severity ratings and remediation steps. Use during code review, before deployment, in CI/CD pipelines, investigating security issues, passing security audits, or enforcing security best practices.
devops
Imported from https://github.com/terraphim/opencode-skills.
docker-containerization
A specialized skill for creating optimized, secure Docker containers using multi-stage builds, layer caching, security scanning with Trivy, Docker Compose orchestration, and BuildKit features for production environments.
talos-os-expert
Elite Talos Linux expert specializing in immutable Kubernetes OS, secure cluster deployment, machine configurations, talosctl CLI operations, upgrades, and production-grade security hardening. Expert in Talos 1.6+, secure boot, disk encryption, and zero-trust infrastructure. Use when deploying Talos clusters, configuring machine configs, troubleshooting node issues, or implementing security best practices.
cicd-expert
Elite CI/CD pipeline engineer specializing in GitHub Actions, GitLab CI, Jenkins automation, secure deployment strategies, and supply chain security. Expert in building efficient, secure pipelines with proper testing gates, artifact management, and ArgoCD/GitOps patterns. Use when designing pipelines, implementing security gates, or troubleshooting CI/CD issues.
docker-ros2-development
$37
robotics-security
Security hardening and best practices for robotic systems, covering SROS2 DDS security, network segmentation, secrets management, secure boot, and the physical-cyber safety intersection. Use this skill when securing ROS2 communications, configuring DDS encryption and access control, hardening robot onboard computers, managing certificates and credentials, setting up network segmentation for robot fleets, or addressing the unique security challenges where cyber vulnerabilities become physical safety risks. Trigger whenever the user mentions SROS2, DDS security, robot security, robot hardening, ROS2 encryption, ROS2 access control, robot network security, secure robot deployment, robot certificates, keystore generation, robot firewall, e-stop security, safety controller isolation, or IEC 62443 for robotics.
kafka
Apache Kafka on Kubernetes with Strimzi (KRaft mode, no ZooKeeper). This skill should be used when users ask to deploy Kafka clusters, build producers/consumers, implement event-driven patterns, or debug Kafka issues. Includes tested manifests and Makefile for one-command deployment.
docker
Production-grade Docker containerization for Python and Node.js applications. This skill should be used when users ask to containerize applications, create Dockerfiles, dockerize projects, or set up Docker Compose. Auto-detects project structure, analyzes .env for secrets, validates security, and generates tested Dockerfiles.
kubernetes
Production-grade Kubernetes manifests and debugging for containerized applications. This skill should be used when users ask to deploy to Kubernetes, create K8s manifests, containerize for K8s, set up Deployments/Services/Jobs/StatefulSets/CronJobs, create namespaces with resource quotas, set up multi-team isolation, configure ResourceQuota/ LimitRange, secure with RBAC (ServiceAccount, Role, RoleBinding), configure init containers (model download, db wait, migrations), set up sidecars (logging, metrics), or debug pods (CrashLoopBackOff, logs, exec, describe, events). Auto-detects from Dockerfile/code, generates hardened manifests with educational comments. CKAD-aligned.
optimizing-database-connection-pooling
Use when you need to work with connection management. This skill provides connection pooling and management with comprehensive guidance and automation. Trigger with phrases like "manage connections", "configure pooling", or "optimize connection usage".
infra-planner
Preview infrastructure changes - run Terraform plan to show what resources will be created, modified, or destroyed. Generate human-readable plan summaries showing resource changes before deployment.
editorconfig-config
EditorConfig file validation and template for enforcing consistent coding styles across editors and IDEs in monorepos. Includes 4 required standards (root declaration, universal settings with UTF-8/LF/2-space defaults, language-specific sections for JS/TS/JSON/YAML/Markdown/Python/Shell/SQL/Docker/Prisma, root-only placement in monorepos). Use when creating or auditing .editorconfig files to ensure consistent code formatting.
cicd
Imported from https://github.com/tidemann/st44-home.
docker
Imported from https://github.com/alex-tgk/saasquatch.
devops-deployer
Imported from https://github.com/ajianaz/skills-collection.
test-coverage-analyzer
Analyzes test coverage reports from pytest-cov, Jest, Vitest, Istanbul (nyc), or Go test coverage to identify untested code paths, missing edge cases, and critical uncovered logic. Generates coverage metrics (line, branch, function coverage), highlights high-risk uncovered code, and creates actionable test recommendations. Integrates with CI/CD to enforce coverage thresholds. Use when checking test completeness, reviewing coverage reports before deployment, identifying gaps in test suites, enforcing minimum coverage requirements, or prioritizing which code to test next.
restart-test-containers
Restarts WitchCityRope Docker TEST containers using the CORRECT procedure. Handles shutdown, rebuild with test compose overlay (--no-cache by default), health checks, and verification. Ensures environment is ready for testing. SINGLE SOURCE OF TRUTH for test container restart process. Uses -p witchcityrope-test for isolation from dev containers.
docker
Guide for using Docker - a containerization platform for building, running, and deploying applications in isolated containers. Use when containerizing applications, creating Dockerfiles, working with Docker Compose, managing images/containers, configuring networking and storage, optimizing builds, deploying to production, or implementing CI/CD pipelines with Docker.
observability-setup
Sets up production-ready observability stack with structured logging (JSON format), metrics collection (Prometheus), distributed tracing (OpenTelemetry/Jaeger), and alerting (Grafana/PagerDuty). Implements instrumentation for Python/Node.js/Go applications, creates Grafana dashboards with key metrics, sets up log aggregation (ELK/Loki), and configures alert rules. Use when deploying to production, debugging distributed systems, monitoring performance, implementing SLOs/SLIs, or setting up on-call alerting.
py-deploy-remote
Imported from https://github.com/asnar00/miso.
pr-description-generator
Generates comprehensive GitHub/GitLab PR descriptions by analyzing git diff, commit messages, and code changes. Creates structured descriptions with summary of changes, testing plan, deployment notes, breaking changes, related issues, and reviewer checklists. Follows PR templates and includes screenshots for UI changes. Use when creating pull requests, documenting complex changes, ensuring thorough code reviews, standardizing PR format, or preparing for deployment approvals.
restart-dev-containers
Restarts WitchCityRope Docker DEVELOPMENT containers using the CORRECT procedure. Handles shutdown, rebuild with dev compose overlay, health checks, and compilation verification. Ensures environment is ready for development. SINGLE SOURCE OF TRUTH for dev container restart process. Uses -p witchcityrope-dev for isolation from test containers.