Marketplace
Find the right skill for the job.
Browse the full catalog through outcome-first channels, technical facets, rating filters, and server-side pagination built for a large public marketplace.
git-workflow
This skill manages Git operations for spec-driven development workflows. It creates branches with naming conventions, generates conventional commits, and creates pull requests with spec-based templates. It integrates with specification and implementation phases, handles uncommitted changes gracefully, and provides clear user prompts for workflow decisions.
auth-implementation-patterns
Master authentication and authorization patterns including JWT, OAuth2, session management, and RBAC to build secure, scalable access control systems. Use when implementing auth systems, securing APIs, or debugging security issues.
constant-time-testing
Constant-time testing detects timing side channels in cryptographic code. Use when auditing crypto implementations for timing vulnerabilities.
Reviewing Code
A structured code review tool that evaluates changes across security, correctness, spec alignment, performance, and maintainability using a 100-point scoring system. It supports both sequential and parallel review strategies, provides clear issue prioritization (critical/important/nice-to-have), and generates detailed reports with fix recommendations. The tool references specific documentation files for context and includes templates for findings and fixes.
contract-testing
This skill provides consumer-driven contract testing for microservices using Pact. It defines clear workflows for consumer expectations, provider verification, and CI/CD integration to prevent breaking changes. Includes code examples for Pact contracts, breaking change detection with semver recommendations, and pipeline integration.
cicd-pipeline-qe-orchestrator
A comprehensive CI/CD quality orchestration skill with excellent phase-based structure, clear quality gates, and adaptive strategies for different risk levels and application types.
performance-analysis
Detects performance bottlenecks in Claude Flow swarms across communication, processing, memory, and network layers. Provides actionable recommendations and auto-fix options. Generates detailed reports in multiple formats for analysis and comparison.
n8n-workflow-testing-fundamentals
Provides structured testing methods for n8n workflows, including validation, execution testing, and error handling. Offers code examples for common testing scenarios and coordination patterns for multi-agent testing.
.claude
A zero-config preset that enforces code quality standards through automated formatting and linting using Oxlint+Oxfmt. Provides clear guidelines for modern JavaScript/TypeScript, React, async patterns, and security. Focuses on fixing common issues automatically while highlighting areas requiring manual review.
testability-scoring
Automates testability scoring for web apps using 10 principles with Playwright. Generates JSON and HTML reports with radar charts, integrates with CI/CD, and optionally uses Vibium for stability metrics. Provides actionable improvement priorities based on weighted scores.
algorand-vulnerability-scanner
Scans Algorand smart contracts for 11 common vulnerabilities including rekeying attacks, unchecked transaction fees, missing field validations, and access control issues. Use when auditing Algorand projects (TEAL/PyTeal). (project, gitignored)
semgrep
Run Semgrep static analysis for fast security scanning and pattern matching. Use when asked to scan code with Semgrep, write custom YAML rules, find vulnerabilities quickly, use taint mode, or set up Semgrep in CI/CD pipelines.
release
Provides a step-by-step checklist for releasing Claude Code plugins, focusing on version bumping, marketplace.json updates, and git tagging. Includes troubleshooting for common mistakes like forgetting to update marketplace catalog.
AgentDB Performance Optimization
Optimize AgentDB performance with quantization (4-32x memory reduction), HNSW indexing (150x faster search), caching, and batch operations. Use when optimizing memory usage, improving search speed, or scaling to millions of vectors.
things-mac
This Skill provides CLI access to Things 3 on macOS for reading tasks from the local database and adding/updating via URL scheme. It covers common operations like listing inbox/today items, searching, and managing projects. The setup requires granting Full Disk Access and installing a Go binary. Write operations need an auth token, and deletion isn't directly supported.
ci
A specialized skill for diagnosing and fixing CI/CD pipeline failures in GitHub Actions and GitLab CI. It analyzes build/test logs, distinguishes between implementation vs. test errors, and provides concrete fixes while preventing test tampering. Includes sub-agent escalation for complex cases.
quality-gates
A comprehensive framework for implementing quality gates and approval workflows in multi-agent systems, providing battle-tested patterns for iterative refinement and user validation.
spring-boot-security-jwt
A comprehensive, production-ready Spring Boot JWT security implementation covering modern Spring Security 6.x patterns with excellent documentation and practical examples.
django-developer
This skill provides a systematic workflow for Django 4+ development, covering architecture, ORM optimization, REST API creation, async views, and security. It includes checklists for testing, performance, and integrates with tools like pytest, Celery, and Docker for full-stack project guidance.
sveltia-cms
Set up Sveltia CMS - lightweight Git-backed CMS successor to Decap/Netlify CMS (300KB bundle, 270+ fixes). Framework-agnostic for Hugo, Jekyll, 11ty, Astro. Prevents 10 documented errors. Use when adding CMS to static sites, migrating from Decap CMS, or fixing OAuth, YAML parse, datetime timezone, GDPR font loading, or CORS/COOP errors.
az
This skill provides detailed guidance for using Azure CLI commands across multiple services including VMs, storage, networking, AKS, and Azure DevOps. It covers authentication, output formats, query filtering, and includes troubleshooting sections for common errors.
cosmos-vulnerability-scanner
Scans Cosmos SDK blockchains for 9 consensus-critical vulnerabilities including non-determinism, incorrect signers, ABCI panics, and rounding errors. Use when auditing Cosmos chains or CosmWasm contracts. (project, gitignored)
auditing-pre-release-security
Audits security and supply-chain risk between two git refs, 预发布安全审计
wheels-refactoring
This skill provides concrete refactoring patterns for Wheels (ColdFusion) applications, focusing on fixing N+1 queries, implementing eager loading, adding parameter verification, and extracting methods. It shows before/after code examples for common performance and security issues.