Auth
Authentication and authorization
healing
by ktfth
Monitora e recupera degradação de contexto em sessões longas ou complexas. Detecta drift, bloat, fragmentação e scope creep. Aplica recovery proporcional (L1/L2/L3) de forma silenciosa.
committing-code
by oryanmoshe
Writes git commit messages using conventional commits format with gitmoji. Use when creating git commits, preparing commit messages, or when the user asks to commit changes. Triggers on "commit", "git commit", "save changes", or any request to record changes to version control.
playwright-page-objects
by jovermier
Playwright Page Object Model including page classes, fixtures, helpers, and test organization. Use when structuring Playwright E2E tests or organizing test code.
calendar-daemon
by fast-gateway-protocol
Fast Google Calendar operations via FGP daemon - 10x faster than MCP. Use when user needs to check schedule, create events, find free time, manage calendar, or view upcoming meetings. Triggers on "check my calendar", "schedule meeting", "when am I free", "create event", "what's on my schedule", "book meeting", "calendar today".
grabbit
by colebanman
"Control the Grabbit CLI to record browser interactions (HAR) and generate API workflows. Use this skill when the user wants to: (1) Automate browser actions, (2) Capture web traffic for API analysis, (3) Create deterministic workflows from browsing sessions, or (4) Learn how to use the Grabbit CLI commands."
module-class-session-planner
by jorgealves
Creates detailed lesson plans for teaching sessions including timing, talking points, and exercises. Use when preparing for live coding sessions or workshops for junior developers.
prism
by violetio
Prism checkout orchestration context
session-start
by lukeslp
Bootstrap development sessions with automated startup rituals - checks recommendations, git status, launches scout + planner agents in parallel.
monetization
by PayMCP
Integrate PayMCP into an MCP server to monetize tools (pay-per-request pricing or subscriptions), configure payment providers (traditional and/or X402), choose an appropriate coordination mode, and validate the integration.
clawcard
by kknd0
Manage Privacy.com virtual cards — create, list, freeze, unfreeze, close cards and check login status. Use this skill when the user asks about virtual cards, payment cards, or ClawCard operations.
mcp-oauth
by smithery-ai
"Authenticate with any OAuth 2.1 MCP server. Handles discovery, PKCE, dynamic client registration, local callback server, token exchange, and authenticated requests. Use when connecting to OAuth-protected MCP servers, testing MCP tools, or debugging auth flows. Accepts an MCP server URL as argument."
perf-audit
by Faresabdelghany
Use when asked to "test speed", "check performance", "run lighthouse", "audit performance", "speed test", or diagnose slow page loads, high LCP, layout shifts, or large bundles. Supports Next.js, React, Angular, Vue, and .NET projects.
questionably-ultrathink
by snowmead
Advanced reasoning skill integrating Atom of Thoughts (AoT) and Chain of Verification (CoVe) frameworks. Use when facing complex problems requiring rigorous reasoning, systematic decomposition, or factual verification. Activation triggers: - "be thorough", "analyze carefully", "make sure this is right" - Complex multi-part questions - Architecture or security decisions - "verify", "double-check", "are you sure" - High-stakes technical decisions - Debugging complex issues
security
by mrsknetwork
Applies OWASP Top 10 mitigations, secure authentication, authorization, secret management, and data protection practices to FastAPI backends and Next.js frontends. Use for any feature involving auth, user data, payments, file uploads, or system access. Always invoke security review before shipping any user-facing API endpoint.
signup-flow-cro
by silvainfm
When the user wants to optimize signup, registration, account creation, or trial activation flows. Also use when the user mentions "signup conversions," "registration friction," "signup form optimization," "free trial signup," "reduce signup dropoff," or "account creation flow." For post-signup onboarding, see onboarding-cro. For lead capture forms (not account creation), see form-cro.
better-auth
by wollfoo
Implement authentication and authorization with Better Auth - a framework-agnostic TypeScript authentication framework. Features include email/password authentication with verification, OAuth providers (Google, GitHub, Discord, etc.), two-factor authentication (TOTP, SMS), passkeys/WebAuthn support, session management, role-based access control (RBAC), rate limiting, and database adapters. Use when adding authentication to applications, implementing OAuth flows, setting up 2FA/MFA, managing user sessions, configuring authorization rules, or building secure authentication systems for web applications. Sử dụng khi xác thực, đăng nhập, login, auth, OAuth, session, bảo mật, phiên đăng nhập.
analytics-metrics-kpi
by pluginagentmarketplace
Master metrics definition, KPI tracking, dashboarding, A/B testing, and data-driven decision making. Use data to guide product decisions.
hardcoded-credentials
by tangjunyi23
Hardcoded credential and backdoor hunting in IoT firmware. Use when searching for default passwords, API keys, private keys, certificates, debug accounts, hidden backdoor accounts, or embedded secrets in firmware filesystems and binaries. Triggers on credential hunting, password discovery, secret scanning, or backdoor detection tasks.
onboarding-cro
by silvainfm
When the user wants to optimize post-signup onboarding, user activation, first-run experience, or time-to-value. Also use when the user mentions "onboarding flow," "activation rate," "user activation," "first-run experience," "empty states," "onboarding checklist," "aha moment," or "new user experience." For signup/registration optimization, see signup-flow-cro. For ongoing email sequences, see email-sequence.
payments
by mrsknetwork
Implements Stripe payment integration including one-time charges, subscription billing, webhook handling, and failed payment recovery. Use when adding any payment functionality — checkout flows, subscription plans, refunds, invoices, or proration. Trigger when the user mentions "Stripe", "payments", "subscriptions", "billing", "checkout", "invoice", or "credit card". This skill covers the full payment lifecycle including the security-critical webhook verification step that vibe-coders almost always skip.
davenov:cc:expert-convex-nextjs
by kaladivo
Provides expertise for building full-stack applications with Convex backend and Next.js frontend, including schema design, type-safe functions, authentication, server rendering, and real-time subscriptions. Use when building or debugging Convex + Next.js applications, implementing real-time features, or needing guidance on Convex Auth, preloadQuery patterns, or function design.
playwright-flow-recorder
by hopeoverture
Creates Playwright test scripts from natural language user flow descriptions. This skill should be used when generating E2E tests from scenarios, converting user stories to test code, recording user flows, creating test scripts from descriptions like "user signs up and creates project", or translating acceptance criteria into executable tests. Trigger terms include playwright test, e2e flow, user scenario, test from description, record flow, user journey, test script generation, acceptance test, behavior test, user story test.
dify-tool-developer
by skilzy-ai
Guide AI agents through Dify tool plugin development with mandatory documentation loading and direct CLI usage. Use when creating Dify tool plugins or extending Dify with custom tools.
session-management
by AnthemFlynn
Git-native session lifecycle management for software development. Use when starting/resuming coding sessions, creating checkpoints, tracking objectives and blockers, generating handoffs between sessions, or needing context preservation across work sessions. Provides intelligent onboarding for AI coding agents by loading comprehensive project context.