Auth
Authentication and authorization
pattern-finder
by lis186
Find implementation examples and design patterns in the codebase. Use when user asks "how to implement X", "how does this project do X", "show me examples of X", "where is X implemented", or needs to follow existing code conventions.
openclaw-setup
by Aznatkoiny
Set up, install, configure, and deploy OpenClaw (formerly ClawdBot/MoltBot) — a personal AI assistant that runs on your own devices and connects to messaging channels. Use when users ask to "set up OpenClaw," "install ClawdBot," "install MoltBot," "deploy a personal AI assistant," "configure OpenClaw on Mac," "deploy OpenClaw to VPS," "set up OpenClaw on Hostinger," "connect OpenClaw to Telegram," "configure iMessage with OpenClaw," or any variation involving OpenClaw installation, gateway configuration, channel setup, Anthropic auth, or security hardening. Also triggers on "openclaw onboard," "openclaw doctor," "openclaw security audit," troubleshooting OpenClaw deployments, OpenClaw security, OpenClaw cost control, or ClawHub skills safety.
filament-pro
by marcelorodrigo
Build Laravel admin panels with Filament v5. Use for creating resources, forms, tables, widgets, and testing admin interfaces with Livewire v4.
ableton-lom
by mikecfisher
Comprehensive Ableton Live Object Model (LOM) API reference for developing Remote Scripts in Python. Use this skill when working with Ableton Live Remote Scripts, control surfaces, or any Python code that interfaces with Ableton Live's internal API. Covers Live 12.3 API including: Song, Track, Clip, Device, DeviceParameter, Scene, ClipSlot, MixerDevice, Chain, RackDevice, Browser, and all specialized device classes (Simpler, Wavetable, Drift, etc.). Provides property types, access modes (read-only/read-write), observable status, method signatures, and canonical paths. Essential for: (1) Building or extending Remote Scripts, (2) Creating MCP servers for Ableton, (3) Developing control surface integrations, (4) Automating Live via Python.
clerk-auth
by phrazzld
"Clerk authentication integration patterns for Next.js and Convex. Invoke for: user authentication, session management, JWT templates, webhook handling, middleware configuration, protected routes, Convex auth integration."
ads-cli
by phrazzld
Unified ad platform CLI + Python clients for Google Ads, Meta, and TikTok. Use when building or running commands for auth, campaign creation, budget changes, reporting, or pausing campaigns, or when wiring platform env vars and extending ad platform wrappers.
study-habits
by jackjin1997
Build effective study habits with spaced repetition, active recall, and session tracking
bonfire
by vieko
Session context persistence for AI coding. Start/end sessions, create outcome specs and docs, review work. Use for session management, "start session", "end session", outcome specs, documentation, code review, or questions about previous work, decisions, blockers, "last time", "what we decided".
specsmith
by ngvoicu
Structured spec management for AI coding workflows. Converts ephemeral plans into persistent, resumable specs with phases, tasks, and progress tracking that survive across sessions. Use this skill whenever the user: exits plan mode (automatically offer to save the plan as a spec), says "resume" or "what was I working on", wants to switch between projects, mentions specs/phases/tasks, says "spec new/list/resume/status/pause/activate", says "forge", "research", "create a spec for X", "plan X", says "generate openapi", "update api spec", "create api docs", "openapi", or any workflow involving structured planning that should persist. Also trigger when the user starts a new session in a project that has a .specs/ directory — check for an active spec and offer to resume.
cucumber-gherkin
by el-feo
Comprehensive BDD testing with Cucumber and Gherkin syntax. Use when writing feature files (.feature), step definitions, hooks, or implementing Behaviour-Driven Development. Covers Gherkin keywords (Feature, Scenario, Given/When/Then, Background, Scenario Outline, Rule), step definition patterns for Ruby/JavaScript/Java/Python, hooks (Before/After/BeforeAll/AfterAll), tags, data tables, doc strings, and best practices. Triggers on cucumber, gherkin, BDD, feature files, step definitions, acceptance testing, executable specifications.
analytics-tracking
by phrazzld
When the user wants to set up, improve, or audit analytics tracking and measurement. Also use when the user mentions "set up tracking," "GA4," "Google Analytics," "conversion tracking," "event tracking," "UTM parameters," "tag manager," "GTM," "analytics implementation," or "tracking plan." For A/B test measurement, see ab-test-setup.
check-docs
by phrazzld
Audit documentation: README, architecture, API docs, .env.example. Outputs structured findings. Use log-doc-issues to create issues. Invoke for: documentation audit, gap analysis, staleness check.
security
by Tyler-R-Kendrick
Use when addressing cross-cutting security concerns that apply to all languages, frameworks, and platforms. Covers OWASP standards, threat modeling, authentication, cryptography, supply chain security, and AI security. USE FOR: application security strategy, security architecture, choosing security controls, OWASP compliance, security tool selection, secure development lifecycle DO NOT USE FOR: specific language security implementations (use language-specific skills), infrastructure hardening (use iac skills), network security appliance configuration
tailscale
by el-feo
Comprehensive Tailscale VPN setup, configuration, and management for mesh networking, secure access, and zero-trust infrastructure. Covers installation, CLI commands, subnet routers, exit nodes, Tailscale SSH, ACL/grants configuration, MagicDNS, Tailscale Serve/Funnel, API automation, and production deployment best practices.
business-model-preferences
by phrazzld
Pricing philosophy and business model constraints. Auto-invoke when: evaluating pricing, checkout flows, subscription logic, tier structures.
backend-engineer
by siviter-xyz
Build robust backend systems with modern technologies (Node.js, Python, Go, Rust), frameworks (NestJS, FastAPI, Django), databases (PostgreSQL, MongoDB, Redis), APIs (REST, GraphQL, gRPC), authentication (OAuth 2.1, JWT), testing strategies, security best practices (OWASP Top 10), performance optimization, scalability patterns (microservices, caching, sharding), DevOps practices (Docker, Kubernetes, CI/CD), and monitoring. Use when designing APIs, implementing authentication, optimizing database queries, setting up CI/CD pipelines, handling security vulnerabilities, building microservices, or developing production-ready backend systems.
sentry-ios-swift-setup
by getsentry
Setup Sentry in iOS/Swift apps. Use when asked to add Sentry to iOS, install sentry-cocoa SDK, or configure error monitoring for iOS applications using Swift and SwiftUI.
managing-git-workflows
by ancoleman
Manage Git branching strategies, commit conventions, and collaboration workflows. Use when choosing between trunk-based development, GitHub Flow, or GitFlow, implementing conventional commits for automated versioning, setting up Git hooks for quality gates, or organizing monorepos with clear ownership.
page-cro
by almeidamarcell
When the user wants to optimize, improve, or increase conversions on any marketing page — including homepage, landing pages, pricing pages, feature pages, or blog posts. Also use when the user says "CRO," "conversion rate optimization," "this page isn't converting," "improve conversions," or "why isn't this page working." For signup/registration flows, see signup-flow-cro. For post-signup activation, see onboarding-cro. For forms outside of signup, see form-cro. For popups/modals, see popup-cro.
controller-patterns
by RoleModel
Review and update existing Rails controllers and generate new controllers following professional patterns and best practices. Covers RESTful conventions, authorization patterns, proper error handling, and maintainable code organization.
onboarding-cro
by almeidamarcell
When the user wants to optimize post-signup onboarding, user activation, first-run experience, or time-to-value. Also use when the user mentions "onboarding flow," "activation rate," "user activation," "first-run experience," "empty states," "onboarding checklist," "aha moment," or "new user experience." For signup/registration optimization, see signup-flow-cro. For ongoing email sequences, see email-sequence.
pubnub-security
by pubnub
Secure PubNub applications with Access Manager, encryption, and TLS
playwright
by joabgonzalez
"Cross-browser E2E testing with Playwright. Trigger: When writing or running end-to-end tests with Playwright."
sidecar-pattern
by joabgonzalez
"Auxiliary service sharing lifecycle with main service. Trigger: When adding logging, monitoring, or auth proxy to microservices without code changes."