Auth
Authentication and authorization
building-multi-tenant-saas
by sumik5
Multi-tenant SaaS architecture covering deployment models, tenant isolation, and data partitioning. Use when designing SaaS platforms or evaluating silo vs pool strategies. Covers identity, onboarding, tiering, and operations. For Next.js single-tenant SaaS (auth, payments), use building-nextjs-saas instead.
load
by laststance
Load project context from Serena MCP memory for session initialization. Discovers memories, reads project overview and critical rules, and validates context sufficiency. Portable across all Serena-enabled agents (Claude Code, Cursor, Windsurf, etc.). Use when: starting a session, resuming work, or needing project context. Keywords: session, load, initialize, context, memory, restore, resume
@tank/tank-package-publisher
by tankpkg
Package lifecycle specialist for Tank directory publishing. Use when users ask to publish a skill to Tank, run tank publish, fix publish failures, validate skills.json, bump versions, or verify releases. Handles dry-run-first workflow, manifest validation, and publish error remediation.
writing-plans
by rakaadi
Use when you have a spec or requirements for a multi-step task, before touching code
backlink-pilot
by Genzo2327
Automated backlink submission toolkit. Use when user wants to submit a product to directory sites, awesome-lists, or search engines. Handles stealth browser automation, form filling, CAPTCHA solving, and submission tracking.
teach-oh
by open-horizon-labs
Project setup. Explore the codebase, ask about strategy and aims, write persistent context to AGENTS.md. Run when starting or when aims shift.
render-output
by Ven0m0
Renders structured data to terminal with optimal formatting. Use when presenting agent results, displaying data to users, formatting command output, or showing validation reports. Transforms raw data into clear, scannable terminal output.
dig-controllers
by Idate96
"Start Moleworks dig controllers (dig_3d, dig_newton, dig_ee, etc.) in a split tmux window: one pane runs the controller launch, the other pane runs lifecycle helpers and shows the ros2 action send_goal command. Use when you want to start/activate a dig controller and manually trigger its action."
review
by open-horizon-labs
Check work and detect drift before committing. A second opinion that catches misalignment early. Use at natural pause points, before PRs, or when something feels off.
building-nextjs-saas
by sumik5
Builds full-stack AI SaaS applications with Next.js App Router. Use when implementing SaaS features like authentication, payment integration, credit-based billing, or AI API integration. For Next.js fundamentals, use developing-nextjs; for enterprise multi-tenancy, use building-multi-tenant-saas instead.
@tank/gmail
by tankpkg
"Send, read, search, label, and manage email through the Gmail API. Covers composing (plain text, HTML, attachments), thread-aware replies, Gmail search query syntax (from:, to:, has:attachment, after:), label management, filter automation, and draft workflows. Triggers: gmail, email, send email, read email, search email, attachment, label, filter, thread, draft, Gmail API, compose, reply, forward, inbox, MIME."
@tank/notion
by tankpkg
"Query, create, and update Notion pages, databases, and blocks through the Notion API. Covers database CRUD with typed properties (select, relation, rollup, formula), compound filters, page content as block trees, search across workspaces, and pagination patterns. Triggers: notion, database, page, block, query, filter, property, relation, rollup, block tree, Notion API, workspace, toggle, callout, create page, update page."
review-flow
by HikaruEgashira
PR作成後に自律的に実行する必要があるフロースキルです。 Trigger: review, pr created, pr open
dissent
by open-horizon-labs
Devil's advocate. Seek contrary evidence before locking in. Use when about to make a significant decision, when confidence is high but stakes are higher, or when the team is converging too quickly.
engram
by qwexs
Etalon memory architecture with Knowledge Graph (PARA), session isolation, memory decay, and QMD hybrid search
zscaler
by dvmrry
Answer questions about the Zscaler portfolio — full operational depth (Tier 1, with SDK / TF / OneAPI exposure) on ZIA, ZPA (including AppProtection inline WAF/IPS and Browser Access), ZCC (Client Connector), ZDX (Digital Experience), ZBI (Zero Trust Browser / Cloud Browser Isolation), ZIdentity (unified identity + OneAPI authentication + step-up auth), Cloud & Branch Connector (ZTW/ZTC — VM-based traffic forwarding for cloud workloads and branch offices), and ZWA (Workflow Automation — DLP incident lifecycle); plus extended awareness with reasoning docs (Tier 2a, portal-only / no SDK) on Deception (decoys/honeypots for post-perimeter detection), Risk360 (cyber risk quantification / Monte Carlo / CISO board reporting), the AI Security family (AI Guard runtime guardrails for LLM prompt-injection / jailbreak / sensitive-data / toxicity / refusal detection plus AI Red Teaming / AI Guardrails / four-pillar governance), and ZMS (workload microsegmentation east-west, host-agent + WFP/nftables enforcement); plus paragraph-level awareness (Tier 2b) of ZINS (shadow-IT NSS Collector), EASM, Federal Cloud variants, ITDR, DSPM, Posture Control, and others. Covers URL category coverage, URL filtering rule precedence, wildcard matching semantics, SSL inspection ordering, cloud app control interaction with URL filtering, DLP three-layer model, sandbox / malware / ATP, firewall filtering, ZPA app-segment matching and policy evaluation order, AppProtection profiles / paranoia levels, Browser Access wildcard certificate rules, ZCC forwarding-profile / trusted-network decisions (which decide whether traffic reaches ZIA or ZPA in the first place), ZDX score / probe / diagnostic-session questions about user experience, browser isolation (Isolate action, Smart Browser Isolation, isolation profiles), Cloud Connector provisioning and activation, and Zscaler portfolio breadth ("what is X?", "does Zscaler do Y?"). Use whenever the user mentions Zscaler, ZIA, ZPA, ZCC, ZDX, ZBI, ZWA, ZTW, ZTC, CBC, Zero Trust Browser, Cloud Browser Isolation, Client Connector, AppProtection, Browser Access, Deception, Risk360, AI Guard, AI Guardrails, AI Red Teaming, AI Security, ZMS, microsegmentation, east-west traffic, ZINS, EASM, URL categories, URL filtering, cloud app control, SSL inspection, DLP, sandbox, app segments, forwarding profiles, trusted networks, ZDX score, probes, diagnostic sessions / deeptraces, isolation profiles, prompt injection, jailbreak detection, LLM guardrails, or asks "is $URL covered / blocked / allowed". Also use for "why does this rule win", "what happens when these policies overlap", "why is this user's app slow", "what happens when traffic gets isolated", "what is $product", or "does Zscaler have something for $use-case" questions, even if the user does not explicitly name Zscaler.
fix-todos
by manastalukdar
Intelligent TODO resolution with context-aware implementation
@tank/web-analytics-consent
by tankpkg
"Privacy-compliant web analytics and cookie consent. Covers tool selection
recall
by anortham
Restore context from Goldfish developer memory at session start or after context loss
cli-agents
by SVS696
Claude Code skill: direct CLI wrappers for Gemini/Codex/Qwen/Claude + multi-agent council (panel/debate) and code-review tools
save
by laststance
Save session context to Serena MCP memory for cross-session persistence. Analyzes accomplishments, persists learnings as structured memories, creates checkpoint for future session restoration. Portable across all Serena-enabled agents (Claude Code, Cursor, Windsurf, etc.). Use when: ending a session, pausing work, saving progress, or preserving learnings. Keywords: session, save, persist, checkpoint, memory, store, context, end
agent-notion
by shhac
Notion CLI for humans and LLMs. Use when: - Searching Notion pages or databases by title - Querying database rows with filters and sorts - Reading page properties and content (as markdown or structured blocks) - Creating, updating, or archiving pages - Reading or appending block content (markdown or JSON blocks) - Listing or adding comments on pages (page-level or inline on specific text) - Exporting pages or entire workspaces as markdown/HTML - Finding backlinks (pages that link to a given page) - Viewing version history snapshots of a page - Checking recent workspace or page activity - Chatting with Notion AI (send messages, list threads, stream responses) - Listing available Notion AI models - Managing Notion OAuth, integration token, or desktop session auth Triggers: "notion page", "notion database", "notion search", "query notion", "notion block", "notion comment", "notion auth", "notion content", "search notion", "create notion page", "notion workspace", "notion export", "notion backlinks", "notion history", "notion activity", "inline comment", "version history", "page activity", "notion ai", "ai chat", "notion chat", "ai model"
depot-general
by depot
Handles Depot CLI installation, authentication, login, project setup, organization management, and API access. Use when installing the Depot CLI, logging in with depot login, creating or managing Depot projects, configuring API tokens or OIDC trust relationships, setting up depot.json, managing organizations, resetting build caches, or using the Depot API/SDKs. Also use when the user asks about Depot authentication methods, token types, environment variables, or general Depot platform setup that isn't specific to container builds, GitHub Actions runners, or Depot CI.
ask-vue-architect
by NavanithanS
Vue 3 scaffolding for Laravel Inertia, Nuxt, or Vite. Composition API + TypeScript.