Blockchain

認証・認可の設計とセキュリティ検証（OAuth 2.0、JWT、セッション管理、アクセス制御）の実務指針を提供するスキル。 脅威モデリング、トークン管理、権限モデルの選択を整理し、安全な認証基盤の設計判断を支援します。 Anchors: • Web Application Security / 適用: 脅威モデリング / 目的: 認証・認可の脅威整理 • OAuth 2.0 Simplified / 適用: フロー選定 / 目的: OAuth実装の安全性確保 • OWASP ASVS / 適用: セキュリティ検証 / 目的: 要件基準の確認 Trigger: Use when designing or reviewing authentication/authorization flows, selecting OAuth/JWT/session strategies, or validating access control and token security.

Define package-level sentinel errors using errors.New

Best practices for writing effective AI prompts from scratch. Applied when creating new prompts, instructions, or system messages for LLMs. Focuses on clarity, specificity, and token efficiency.

Domain modeling skill for creating accurate representations of business domains through entities, value objects, aggregates, and domain services. Guides systematic analysis of business requirements and translation into robust domain models. Anchors: • Domain-Driven Design (Eric Evans) / 適用: Entity and Value Object identification / 目的: Clear domain boundaries • Implementing Domain-Driven Design (Vaughn Vernon) / 適用: Aggregate design and modeling patterns / 目的: Consistent aggregate boundaries • Domain Modeling Made Functional (Scott Wlaschin) / 適用: Type-driven design / 目的: Compile-time domain validation Trigger: Use when designing domain models, identifying entities and value objects, defining aggregate boundaries, modeling business invariants, creating ubiquitous language, or translating business requirements into domain structures. Keywords: domain model, entity, value object, aggregate, domain service, invariant, ubiquitous language, business logic

Query Langfuse traces, prompts, and LLM metrics. Use when: - Analyzing LLM generation traces (errors, latency, tokens) - Reviewing prompt performance and versions - Debugging failed generations - Comparing model outputs across runs Keywords: langfuse, traces, observability, LLM metrics, prompt management, generations

This skill enables Claude to generate Docker Compose configurations for multi-container applications. It leverages best practices for production-ready deployments, including defining services, networks, volumes, health checks, and resource limits. Claude should use this skill when the user requests a Docker Compose file, specifies application architecture involving multiple containers, or mentions needs for container orchestration, environment variables, or persistent data management in a Docker environment. Trigger terms include "docker-compose", "docker compose file", "multi-container", "container orchestration", "docker environment", "service definition", "volume management", "network configuration", "health checks", "resource limits", and ".env files".

Skill creation guidelines and protocols for high-fidelity, token-efficient specialized capabilities. Provides routing patterns, component selection criteria, and skill structure templates. Includes progressive disclosure patterns for routing vs reference separation. Scope: skill creation, skill structure, routing logic, template patterns. Excludes: agent creation, command creation (handled by component-specific skills). Triggers: skill, create a skill, edit skill, validate skill, new skill.

構造化出力の仕様書を設計するためのスキル。スキーマ定義、命名規則、互換性とバージョニング方針を整理し、長期運用に耐える出力契約を作成する。 Anchors: • JSON Schema / 適用: スキーマ設計 / 目的: フィールド仕様の形式化 • Semantic Versioning 2.0.0 / 適用: バージョニング設計 / 目的: 互換性ルールの明確化 • Postel's Law / 適用: 互換性判断 / 目的: 入出力の許容範囲を整理 Trigger: Use when defining output contracts, schema evolution rules, or compatibility plans for structured data. output contract, schema design, compatibility, versioning, JSON schema

Zodライブラリによるランタイムバリデーション、スキーマ定義、TypeScript型推論を専門とするスキル。 型安全なバリデーションロジックを設計・実装し、API・フォーム・ドメイン層での検証を網羅する。 Anchors: • Zod Official Documentation / 適用: スキーマAPI・バリデーション / 目的: 公式パターン準拠 • Effective TypeScript (Dan Vanderkam) / 適用: 型設計・型推論 / 目的: ランタイム安全性担保 • @hookform/resolvers / 適用: フォーム統合 / 目的: React Hook Form連携 Trigger: Use when implementing runtime validation with Zod, defining TypeScript schemas, integrating form validation (react-hook-form), or validating API requests/responses. Keywords: zod, schema, safeParse, refine, z.infer, zodResolver.

Rate Limitingとクォータ管理のベストプラクティスを提供するスキル。 サーバー側のAPI保護とクライアント側の429対応の両方をカバーし、 Token Bucket、Sliding Window等のアルゴリズム選定から実装までを支援。 Anchors: • 『Designing Data-Intensive Applications』（Kleppmann）/ 適用: 分散システムのRate Limiting / 目的: スケーラブルな設計 • 『API Design Patterns』（Geewax）/ 適用: API保護 / 目的: RESTful APIのベストプラクティス • RFC 6585 / 適用: 429 Too Many Requests / 目的: 標準準拠のレスポンス設計 Trigger: Use when designing API rate limiting, implementing DoS protection, handling external API rate limits, or managing quota systems. rate limiting, rate limiter, throttling, 429, token bucket, sliding window, quota, api protection

Build and render Remotion videos using React compositions. Use when defining `<Composition>` entries (often in `src/Root.tsx`), implementing deterministic frame-based animations with `useCurrentFrame()`, sequencing (`Sequence`/`Series`/`TransitionSeries`), and adding media via `OffthreadVideo`, `Img`, `Audio`, and `staticFile()`.

This skill allows Claude to conduct comprehensive security audits of code, infrastructure, and configurations. It leverages various tools within the security-pro-pack plugin, including vulnerability scanning, compliance checking, cryptography review, and infrastructure security analysis. Use this skill when a user requests a "security audit," "vulnerability assessment," "compliance review," or any task involving identifying and mitigating security risks. It helps to ensure code and systems adhere to security best practices and compliance standards.

This skill enables Claude to create intelligent alerting rules for proactive performance monitoring. It is triggered when the user requests to "create alerts", "define monitoring rules", or "set up alerting". The skill helps define thresholds, routing, and escalation policies, and offers options for multi-category alert creation, including latency, error rate, throughput, resource utilization, availability, and SLO violation alerts. It is useful for Site Reliability Engineers (SREs) and DevOps teams looking to improve system observability.

RAG-first ORCHESTRATOR startup. Minimal context (~500 tokens), queries RAG on-demand. Token-efficient alternative to startupO.

Guide for implementing a new language parser in Codanna. Use when adding language support, implementing parsers, or extending language capabilities. Covers the six-file architecture (mod.rs, definition.rs, parser.rs, behavior.rs, resolution.rs, audit.rs), trait implementation patterns, resolution scope design, and integration workflow. Triggers on requests to add language support, implement new parser, extend language capabilities, or create language implementation.

This skill enables Claude to orchestrate complex test workflows using the test-orchestrator plugin. It allows Claude to define test execution graphs with dependencies, execute tests in parallel, and intelligently select tests to run based on code changes. Use this skill when a user requests test orchestration, dependency management for tests, parallel test execution, smart test selection, or CI/CD integration for testing. Trigger terms include "orchestrate tests", "test workflow", "parallel testing", "smart test selection", "test dependencies", and "/orchestrate".

Apply token optimization when writing docs, changelogs, MCP tasks. Quality

暗号化・ハッシュ・CSPRNG・鍵管理の実装を安全に進めるためのスキル。要件整理から設計、実装、監査までの一連フローを提供する。Anchors:• Applied Cryptography / 適用: アルゴリズム選定と強度判断 / 目的: 標準準拠の基礎固め• Web Application Security / 適用: 脅威モデリング / 目的: 実装リスクの明確化• NIST SP 800-57 / 適用: 鍵管理 / 目的: ライフサイクル設計Trigger:Use when implementing cryptographic functions, selecting algorithms, generating secure random values, managing encryption keys, or auditing crypto implementations.cryptographic practices, crypto implementation, key management, csprng, algorithm selection

Compact context at natural breakpoints to free tokens and continue working. Use PROACTIVELY at phase boundaries, after commits, or when token usage >150k. Better than random auto-compact. Supports custom compaction prompts.

Define database schemas in JSON and generate migration plans. Use this skill when creating or modifying database models, defining tables with columns, constraints, and ENUM types for Vespertide-based projects.