Marketplace
Find the right skill for the job.
Browse the full catalog through outcome-first channels, technical facets, rating filters, and server-side pagination built for a large public marketplace.
shopify-app-dev
Custom Shopify app development using Shopify CLI, app architecture, OAuth authentication, app extensions, admin UI, Hydrogen/Remix frameworks, and deployment. Use when creating Shopify apps, setting up Shopify CLI, building app extensions, implementing OAuth flows, creating admin UI components, working with Hydrogen or Remix, deploying to Cloudflare Workers, or integrating third-party services with Shopify stores.
auth-patterns
This skill provides detailed implementation patterns for authentication in Next.js applications, covering NextAuth.js setup, middleware protection, session management, and role-based access control. It includes complete code examples for server/client components, sign-in flows, and database schemas.
playwright-testing
Provides concrete Playwright testing patterns for web applications, covering authentication, file handling, network mocking, and CI/CD integration. Focuses on best practices like Page Object Model, resilient locators, and avoiding flaky tests. Includes specific code examples and actionable advice for common testing scenarios.
regression-testing
This skill provides a structured approach to regression testing with intelligent test selection based on code changes and risk. It offers concrete strategies for different scenarios (per-commit, nightly, pre-release) and includes practical examples for CI/CD integration and test optimization.
ffuf-web-fuzzing
Provides expert guidance for using ffuf web fuzzer in penetration testing, covering authenticated fuzzing with raw requests, auto-calibration, filtering strategies, and result analysis. Includes helper scripts for analyzing results and generating wordlists.
moai-lang-java
Provides Java 21 LTS development guidance with Spring Boot 3.3, covering virtual threads, pattern matching, REST APIs, JPA/Hibernate, and Spring Security. Includes complete code examples for controllers, services, and configuration files with Maven and Gradle setups.
error-recovery
Provides concrete patterns for handling failures in multi-agent workflows, including timeout management, API error recovery, and graceful degradation strategies. Offers specific code examples for retry logic, user notification, and fallback mechanisms.
performance-security
A comprehensive, production-ready guide covering essential performance, accessibility, and security practices for modern React applications with practical code examples.
wheels-controller-generator
A highly practical skill for generating Wheels MVC controllers with comprehensive CRUD patterns, security best practices, and clear anti-pattern guidance for ColdFusion developers.
dependency-upgrade
Provides a systematic approach for upgrading major dependency versions with compatibility analysis, staged rollout strategies, and comprehensive testing. Includes concrete commands for npm/yarn, upgrade checklists, rollback plans, and automation tools like Renovate/Dependabot configurations.
ms365-tenant-manager
Comprehensive Microsoft 365 tenant administration skill for setup, configuration, user management, security policies, and organizational structure optimization for Global Administrators
audit-prep-assistant
Prepare your codebase for security review using Trail of Bits' checklist. Helps set review goals, runs static analysis tools, increases test coverage, removes dead code, ensures accessibility, and generates comprehensive documentation (flowcharts, user stories, inline comments). (project, gitignored)
1password
This skill provides a structured workflow for using 1Password CLI within Claude, focusing on secure secret retrieval. It enforces tmux sessions to handle authentication prompts, includes guardrails against secret exposure, and references official documentation for setup.
k8s-troubleshoot
This skill provides direct access to Kubernetes pods for troubleshooting by searching pods with label selectors and executing diagnostic commands inside containers. It covers common scenarios like checking logs, processes, network connections, and resource usage. The documentation includes specific command examples for real-world issues like dubbo3 provider problems.
security-assessment
A comprehensive and well-structured security assessment skill that provides systematic frameworks (STRIDE, OWASP Top 10) for evaluating code, architecture, and infrastructure security with practical guidance and review patterns.
n8n-security-testing
A comprehensive security testing tool for n8n workflows that effectively addresses credential exposure, encryption verification, and authentication testing with practical code examples.
api-testing-patterns
This skill provides concrete patterns for testing REST and GraphQL APIs, focusing on contract validation, authentication, input handling, and concurrency. It includes practical code examples for common scenarios like idempotency and race conditions, and coordinates multiple testing agents for validation, generation, and security scanning.
ec2
AWS EC2 virtual machine management for instances, AMIs, and networking. Use when launching instances, configuring security groups, managing key pairs, troubleshooting connectivity, or automating instance lifecycle.
software-localisation
Provides a detailed decision tree and library comparison for implementing i18n/l10n in React, Vue, Angular, and Node.js projects. Covers key concepts like ICU message format, translation key patterns, and CI/CD workflows. Includes up-to-date version references and practical guidance for common tasks.
error-tracking
Provides detailed implementation patterns for integrating Sentry v8 error tracking and performance monitoring across Node.js services. Includes specific code examples for controllers, routes, workflows, cron jobs, and database operations. Enforces a strict 'no console.error without Sentry' policy and offers service-specific configurations.
github-evidence-kit
Generate, export, load, and verify forensic evidence from GitHub sources. Use when creating verifiable evidence objects from GitHub API, GH Archive, Wayback Machine, local git repositories, or security vendor reports. Handles evidence storage, querying, and re-verification against original sources.
code-review-quality
Provides structured templates and priority levels for code reviews, focusing on logic, security, and maintainability over style. Includes concrete examples for blocker, major, minor, and suggestion feedback. Integrates with quality engineering agents for automated checks.
performance-testing
A comprehensive and highly practical performance testing guide with excellent structure, clear examples, and actionable workflows for modern development teams.
substrate-vulnerability-scanner
Scans Substrate/Polkadot pallets for 7 critical vulnerabilities including arithmetic overflow, panic DoS, incorrect weights, and bad origin checks. Use when auditing Substrate runtimes or FRAME pallets. (project, gitignored)