Auth
Authentication and authorization
clean-commits
by troykelly
Use when committing code - ensures atomic, descriptive commits that leave the codebase in a merge-ready state at every point
auth-implementation-patterns
by xfstudio
Master authentication and authorization patterns including JWT, OAuth2, session management, and RBAC to build secure, scalable access control systems. Use when implementing auth systems, securing APIs, or debugging security issues.
ios-app-composition
by derKlinke
Use when structuring app entry points, managing authentication flows, switching root views, handling scene lifecycle, or asking 'how do I structure my @main', 'where does auth state live', 'how do I prevent screen flicker on launch', 'when should I modularize' - app-level composition patterns for iOS 26+
ios-camera-capture-ref
by derKlinke
Reference — AVCaptureSession, AVCapturePhotoSettings, AVCapturePhotoOutput, RotationCoordinator, photoQualityPrioritization, deferred processing, AVCaptureMovieFileOutput, session presets, capture device APIs
supabase-auth
by Nice-Wolf-Studio
Manage authentication and user operations in Supabase. Use for sign up, sign in, sign out, password resets, and user management.
Security-First-Design Skill
by ilude
Apply this framework when security is a primary design concern. Work through phases sequentially, documenting findings and mitigations at each stage.
ceo-companion
by AvivK5498
"Collaborative CEO co-pilot for SaaS strategy sessions. Researches markets, validates ideas, designs UI inspiration boards, and produces a .strategy/ folder that Beads Orchestration consumes for autonomous building. Use as Session 1 before a Beads build session."
anti-reversing-techniques
by ngxtm
"Understand anti-reversing, obfuscation, and protection techniques encountered during software analysis. Use when analyzing protected binaries, bypassing anti-debugging for authorized analysis, or u..."
codereview-security
by xinbenlv
Zero-trust security analysis like Cursor BugBot. Focuses exclusively on finding exploitable vulnerabilities with high confidence (>95%). Use when reviewing files that handle input parsing, database queries, authentication, or external API calls.
fastapi-workflow
by ilude
FastAPI framework workflow guidelines. Activate when working with FastAPI projects, uvicorn, or FastAPI-specific patterns.
search-past-chats
by mlshv
Search past Claude Code conversation history when user asks about previous sessions, mentions "history", "past chats", "did we discuss", "what did we talk about", "show me more from that session", or wants to recall something from earlier conversations.
writing-plans
by hxk622
"当有多步骤任务的规格或需求时使用,在动代码之前。编写全面的实施计划,假设工程师对代码库零上下文。Use when you have a spec or requirements for a multi-step task, before touching code. Write comprehensive implementation plans."
bach-exploratory-testing
by copyleftdev
Test software in the style of James Bach, pioneer of exploratory testing and context-driven testing. Emphasizes skilled human investigation, heuristics-based test design, and adapting to context rather than following rigid scripts. Use when designing test strategies, performing exploratory testing, or building thinking testers.
kotlin-ktor
by pluginagentmarketplace
Ktor framework - routing, authentication, WebSockets
charles-proxy-extract
by wannabehero
Extracts HTTP/HTTPS request and response data from Charles Proxy session files (.chlsj format), including URLs, methods, status codes, headers, request bodies, and response bodies. Use when analyzing captured network traffic from Charles Proxy debug sessions, inspecting API calls, debugging HTTP requests, or examining proxy logs.
castari-deploy
by castari
This skill should be used when the user asks to "deploy to castari", "deploy my agent", "deploy agent to production", "castari deploy", "push agent to castari", "ship my agent", "set up castari", or needs help with Castari CLI installation, authentication, agent scaffolding, or deployment to cloud sandboxes.
video-summary
by ZachZeng99
This skill should be used when the user asks to "总结视频" (summarize video), "分析视频" (analyze video), "视频讲了什么" (what does video say), "summarize this video", or when they share YouTube/Bilibili links. Extracts subtitles and provides comprehensive summaries with segmented analysis and macro review.
flask-workflow
by ilude
Flask framework workflow guidelines. Activate when working with Flask projects, flask run, or Flask-specific patterns.
session-context-management
by ilude
Maintain "just enough" context across work sessions using CURRENT.md, STATUS.md, and LESSONS.md files. Activate when tasks take >15 minutes, touch 3+ files, interruptions likely, or scope uncertain. Includes /snapshot and /pickup commands for saving and resuming work. ADHD-friendly, token-efficient approach.
api-security-best-practices
by ngxtm
"Implement secure API design patterns including authentication, authorization, input validation, rate limiting, and protection against common API vulnerabilities"
Master Architect
by scaleto
Central Super-Skill that orchestrates all Skill Cells of the Conglomerate. Acts as a single entry point and intelligent router to specialized groups.
mail-security
by aashari
Find security-related emails — login alerts, 2FA changes, password resets, new device notifications, suspicious activity, and account security events across all accounts. Use when user asks about security alerts in their email, account access notifications, or wants to review security events. Arguments: optional time range or account/service filter.
security-antipatterns-python
by subhashdasyam
Use when generating Python code for web applications, APIs, or handling user input - prevents OWASP Top 10 vulnerabilities in Django, Flask, FastAPI
web-security
by academind
Enforce web security and avoid security vulnerabilities