Skill einreichen

🔒

Security

2492 skills in Testing & Security > Security

graphql-reviewer

WHEN: GraphQL schema review, resolver patterns, N+1 detection, query complexity, API securityWHAT: Schema design + N+1 detection + Query complexity + Input validation + Error handling + DataLoader patternsWHEN NOT: REST API → api-documenter, Database schema → schema-reviewer, ORM → orm-reviewer

majiayu000/claude-skill-registry

Aktualisiert 1w ago

configuring-better-auth

Implement OAuth 2.1 / OIDC authentication using Better Auth with MCP assistance. Use when settingup a centralized auth server (SSO provider), implementing SSO clients in Next.js apps, configuringPKCE flows, or managing tokens with JWKS verification. Uses Better Auth MCP for guided setup.NOT when using simple session-only auth without OAuth/OIDC requirements.

majiayu000/claude-skill-registry

Aktualisiert 1w ago

file-upload-handling

Implement secure file uploads with validation, size limits, type checking, virus scanning, and UUID naming. Use when handling file uploads like profile photos, documents, or resources.

majiayu000/claude-skill-registry

Aktualisiert 1w ago

azure-ad-sso

Azure AD OAuth2/OIDC SSO integration for Kubernetes applications. Use when implementing Single Sign-On, configuring Azure AD App Registrations, restricting access by groups, or integrating tools (DefectDojo, Grafana, ArgoCD, Harbor, SonarQube) with Azure AD authentication.

julianobarbosa/claude-code-skills

Aktualisiert 1w ago

defectdojo

Guide for implementing DefectDojo - an open-source DevSecOps, ASPM, and vulnerability management platform. Use when querying vulnerabilities, managing findings, configuring CI/CD pipeline imports, or working with security scan data. Includes MCP tools for direct API interaction.

julianobarbosa/claude-code-skills

Aktualisiert 1w ago

code-review-assistant

Comprehensive code review assistant that analyzes code for security vulnerabilities, performance issues, and code quality. Use when reviewing pull requests, conducting code audits, or analyzing code changes. Supports Python, JavaScript/TypeScript, and general code patterns. Includes automated analysis scripts and structured checklists.

kaelen-hou/skills-mvp

Aktualisiert 1w ago

third-party-action-risk-assessment

Structured framework for evaluating GitHub Actions security before adoption. Trust tiers, risk assessment checklist, and decision tree for action evaluation.

adaptive-enforcement-lab/claude-skills

Aktualisiert 1w ago

analyze-code

Intelligence-first code analysis for bugs, architecture, performance, and security. Use proactively when investigating code issues, tracing dependencies, or understanding system behavior. MUST query project-intel.mjs before reading files.

majiayu000/claude-skill-registry

Aktualisiert 1w ago

control-implementation-generator

Generate detailed control implementation guidance, technical steps, and implementation plans for OSCAL security controls. Use this skill to create implementation narratives, technical procedures, and deployment plans.

euCann/OSCAL-GRC-SKILLS

Aktualisiert 1w ago

security-privacy

Security and privacy engineering

violetio/violet-ai-plugins

Aktualisiert 1w ago

dokploy-traefik-routing

Configure Traefik labels for routing, SSL/TLS with LetsEncrypt, and advanced routing patterns including Cloudflare DNS challenge. Use when adding web access to Dokploy services.

majiayu000/claude-skill-registry

Aktualisiert 1w ago

authenticating-with-claude

Unified login wizard combining Claude API authentication with CIPS identity setup. Use when /login invoked, first-run detected, or identity reset requested. Follows @asking-users PARAMOUNT patterns.

CodeTonight-SA/cips

Aktualisiert 1w ago

security

Review implementation for security vulnerabilities and best practices. Checks input validation, injection prevention, auth/authz, secrets handling. Use after implementation before merge.

matthew-plusprogramming/monorepo

Aktualisiert 1w ago

expo-modules

Use when working with Expo SDK modules for camera, location, notifications, file system, secure storage, and other device APIs. Covers permissions, configurations, and best practices.

jeffmichaeljohnson-tech/prayermap

Aktualisiert 1w ago

backend-queries

Write secure, optimized database queries using parameterized statements, proper indexing, and efficient data fetching patterns. Use this skill when writing database queries, ORM query methods, SQL statements, or data access layer code. When working on files containing Prisma queries, TypeORM query builders, raw SQL statements, database transaction logic, eager loading and joins, query optimization code, files implementing data pagination or filtering, cache strategies for expensive queries, or files handling database connection pooling and query timeouts.

SpacePlushy/portfolio

Aktualisiert 1w ago

openwebf-security

DEPRECATED umbrella Skill (backward compatibility). Use only for cross-cutting security reviews spanning remote content + XSS/sanitization + store compliance. Prefer focused openwebf-security-* Skills.

archview-ai/webf-plugin

Aktualisiert 1w ago

health-check

Validate PM environment and authentication status. Use when (1) new PM onboarding, (2) checking required tools (gh CLI, Git, GitHub Projects access), (3) verifying GitHub auth and project permissions, (4) orchestrator auto-runs at work start.

semicolon-devteam/semo-pm

Aktualisiert 1w ago

planning

Use when you need to plan technical solutions that are scalable, secure, and maintainable.

untangledfinance/untangled-web

Aktualisiert 1w ago

maven-dependency-research

Research Maven dependency updates with breaking changes, release notes, and security information

macintorsten/reflection

Aktualisiert 1w ago

project-context

Provides architecture knowledge for the dealflow-network project including tRPC router patterns, Drizzle ORM conventions, authentication flow, file organization, and collaborative contact system. Use when working on this codebase, adding features, or understanding existing patterns.

majiayu000/claude-skill-registry

Aktualisiert 1w ago