Auth
Authentication and authorization
api-security-best-practices
by ncdevshiv
"Implement secure API design patterns including authentication, authorization, input validation, rate limiting, and protection against common API vulnerabilities"
cliproxyapi-statusline
by TinycellCorp
Display cliproxyapi proxy multi-account quota usage in Claude Code statusline. cliproxyapi 프록시 서버의 다중 계정 쿼터 사용량을 Claude Code 상태라인에 표시하는 스킬.
ziptax
by ZipTax
Look up US and Canadian sales tax rates using the ZipTax MCP server. Use this skill whenever the user asks about sales tax rates, tax lookups, tax jurisdictions, use tax, sales tax compliance, tax rate by ZIP code, tax rate by address, tax rate by coordinates, Canadian sales tax, product taxability, tax codes (TIC), Tennessee Single Article Tax, historical tax rates, unincorporated area adjustments, or account usage metrics for ZipTax. Also use when the user mentions ZipTax, zip-tax, or zip.tax. This skill teaches Claude how to use the lookup_tax_rate and get_account_metrics MCP tools effectively.
tailscale-runpod
by koshimazaki
Setup Tailscale for SSH access to RunPod, Vast.ai, or any cloud GPU instance. Use when user asks to "setup Tailscale", "SSH to RunPod", "connect to cloud GPU", or needs VPN/mesh networking.
tunnel
by sztwiorok
This skill should be used when the user asks to "expose localhost", "create tunnel", "share local server", "test webhooks locally", "tunnel to localhost", "make local dev accessible", "public URL for localhost", or mentions exposing local services, testing webhooks, or sharing development servers.
vibe-ship
by Chloezhu010
Takes a vibe-coded AI-generated frontend (Next.js or Vite + React) to a live deployed SaaS — covering database, auth, email, and deployment end to end. Use when a user has a frontend built with v0, Lovable, Bolt, or similar tools and needs to ship it with Supabase, Resend, and Vercel.
commit
by ZhuMon
Smart commit creation with conventional commits. Use when user says "commit" or requests committing changes. Handles staged file detection, suggests splits for multi-concern changes, and applies proper commit format without emoji prefixes.
page-cro
by Jackiexiao
(中文)When the user wants to optimize, improve, or increase conversions on any marketing page — including homepage, landing pages, pricing pages, feature pages, or blog posts. Also use when the user says "CRO," "conversion rate optimization," "this page isn't converting," "improve conversions," or "why isn't this page working." For signup/registration flows, see signup-flow-cro. For post-signup activation, see onboarding-cro. For forms outside of signup, see form-cro. For popups/modals, see popup-cro.
gog
by GianniPiovesan22
Google Workspace CLI for Gmail, Calendar, Drive, Contacts, Sheets, and Docs.
plan-harder
by yuanxiao0115
Use when user specfically says 'plan harder'.
voluum-setup-install
by markab21
Install and configure voluum-cli on Linux/macOS, with Windows support via WSL.
oracle
by Overlord-Z
Project memory and learning system that tracks interactions, learns from corrections, maintains knowledge across sessions, and generates token-efficient context. Use when you need to remember project-specific patterns, avoid repeating mistakes, track what works and what doesn't, or maintain institutional knowledge across multiple sessions. Integrates with guardian, wizard, summoner, and style-master.
reflect
by ddaanet
Diagnose agent deviations and rule violations via root cause analysis. Triggers on "reflect", "diagnose deviation", "root cause", "why did you do X", "what went wrong", or "RCA". Must run in the session where the deviation occurred.
ce
by commercengine
Commerce Engine router. Use when user asks about building a storefront, setting up the SDK, authentication, products, cart, checkout, orders, webhooks, or Next.js e-commerce patterns. Automatically routes to the specific skill based on their task.
youtube-search
by AIsa-team
'YouTube Search API via AIsa unified endpoint. Search YouTube videos, channels, and playlists with a single AIsa API key — no Google API key or OAuth required. Use this skill when users want to search YouTube content. For other AIsa capabilities (LLM, financial data, Twitter, web search), see the aisa-core skill. Use when: the user needs YouTube search, trend discovery, channel research, or SERP analysis.'
oauth-config-generator
by ehtbanton
Generate OAuth 2.0 configuration for social login providers (Google, GitHub, etc.). Triggers on "create oauth config", "generate oauth setup", "social login config", "oauth2 integration".
aeo-spec-validator
by ivzc07
Validate that tasks are sufficiently defined before execution. Returns score 0-100.
unbrowse
by getfoundry
Reverse-engineer any website into reusable API skills. Capture network traffic, discover endpoints, learn API patterns, execute learned skills, and manage auth for gated sites. Use when someone wants to scrape structured data from a website, discover hidden APIs, automate web interactions, or bypass the need for official API documentation.
gapi
by amoscicki
Run local Node CLIs for Google Tag Manager and Google Analytics Admin APIs (OAuth2). Use for GTM containers/tags/triggers or GA properties/data-streams.
servanda
by servanda-ai
Settle disputes, resolve conflicts, mediate fights, negotiate agreements, run debates, and arbitrate disagreements between any parties — humans, AI agents, teams, roommates, co-founders, colleagues, or organizations. Use this skill whenever the user has a complaint, grievance, argument, or disagreement with ANYONE or ANYTHING — including with you (the AI agent), with another person, with a company, with a coworker, with a roommate, with a partner, or with another AI. Also use this when the user wants to debate a topic, argue for or against a position, do a mock trial, play devil's advocate, have a structured argument, or roleplay an opposing side. Also use this when parties need to establish shared rules, contracts, household agreements, team norms, community guidelines, or any kind of binding or non-binding consensus. Covers: conflict resolution, dispute resolution, arbitration, mediation, negotiation, litigation alternative, fair division, binding rulings, relationship conflicts, workplace disputes, collaborative agreement-making, structured debates, mock trials, devil's advocate exercises, and adversarial discussions.
next-data-fetching
by BartdBont
Next.js App Router data fetching decision tree focused on TTFB-first and honest UX. Use when adding or changing data fetching logic (RSC fetch, caching, SSG/ISR, streaming Suspense), when metadata or generateMetadata depends on remote data, when dealing with user-specific auth/session data, when implementing hybrid server prefetch plus client hydration (TanStack Query), or when reviewing TTFB/LCP regressions.
exocortex
by totto2727-dotfiles
Use when storing development insights, recalling past decisions, building knowledge graphs, or managing AI agent memory with Exocortex MCP server.
nano-supabase
by filipecabaco
Skill for working with the nano-supabase codebase: a lightweight TypeScript library that emulates Supabase entirely in-browser/edge using PGlite (Postgres via WASM). Covers architecture, fetch adapter routing, auth/storage/data flows, PostgREST WASM parser, connection pooling, cross-runtime compatibility, build system, and testing conventions. Use when implementing features, fixing bugs, writing tests, or reviewing code in this project.
gh-address-comments
by aleister1102
Help address review/issue comments on the open GitHub PR for the current branch using gh CLI; verify gh auth first and prompt the user to authenticate if not logged in.