- Home
- /
- Categories
- /
- Code Review
Code Review
Automated code review and analysis
vuln-research
by tanweai
安全研究元思考方法论 - 从先知社区5600+篇安全文档中提炼的漏洞挖掘方法论框架。 Use this skill when: - 进行漏洞挖掘和安全研究时,需要系统化的思考框架 - 分析特定类型漏洞(Web注入、反序列化、二进制、域渗透等)的攻击路径 - 需要了解绕过防护措施(WAF、EDR、沙箱)的思维模式 - 进行代码审计需要Source-Sink分析方法论 - 红队攻防需要完整攻击链规划 - CTF竞赛需要快速解题思路 - 逆向分析恶意软件需要方法论指导 Triggers: 漏洞挖掘、安全研究、渗透测试、代码审计、红队攻防、CTF、逆向分析、 WAF绕过、免杀、提权、横向移动、域渗透、反序列化、二进制安全、Fuzzing
anthropic-architect
by jamesrochabrun
Determine the best Anthropic architecture for your project by analyzing requirements and recommending the optimal combination of Skills, Agents, Prompts, and SDK primitives.
trading-plan-generator
by jamesrochabrun
Generate comprehensive trading plans with risk management, position sizing, entry/exit strategies, and performance tracking to trade with discipline and consistency.
access-review
by BagelHole
Conduct periodic access reviews and certifications. Implement access governance and recertification workflows. Use when managing access compliance.
hipaa-compliance
by BagelHole
Implement HIPAA security and privacy rules. Configure PHI protections and BAA requirements. Use when handling healthcare data.
docker-management
by BagelHole
Build, optimize, and troubleshoot Docker containers and images. Create efficient Dockerfiles, manage container lifecycle, configure networking and volumes, and debug container issues. Use when working with Docker, containerization, or container troubleshooting.
aws-cloudtrail
by BagelHole
Configure AWS CloudTrail for audit logging. Set up organization trails and event analysis. Use when auditing AWS activity.
iso27001-compliance
by BagelHole
Implement ISO 27001 Information Security Management System. Configure ISMS controls and risk management. Use when implementing enterprise security frameworks.
audit-logging
by BagelHole
Implement centralized audit logging and SIEM integration. Configure log retention and security monitoring. Use when implementing audit trail requirements.
substrate
by Roasbeef
This skill provides agent mail management via the Subtrate command center. Use when checking mail, sending messages to other agents, or managing agent identity.
product-playbook
by Kaminoikari
MUST use when user wants to plan, design, or strategize a product or feature — including "plan a feature", "add a new feature", "product planning", "I want to plan". This is the correct skill for product/feature PLANNING (not brainstorming for implementation). Integrates 22 PM frameworks (JTBD, PR-FAQ, North Star, etc.) for 0-to-1 through scale-up. ALSO trigger when: user wants to scope/define a feature, create Persona/JTBD/Journey Map, mentions "PMF"/"MVP"/"North Star"/"product strategy", requests a specific framework (OST, Working Backwards, etc.), or vaguely says "I have a product idea" / "I want to build something". Trigger by semantic intent regardless of language — e.g. "規劃新功能", "新機能を企画したい", "quiero planificar una función nueva". DO NOT trigger for: writing code, debugging, SQL/API/CSS optimization, sprint planning, DB schema design, CI/CD, or technical implementation tasks.
release-prep
by ArjenSchwarz
I want to prepare this project for the next release, which will be {input}. Please do the following:
starwave:requirements
by ArjenSchwarz
Requirement Gathering
lucy-agent
by CamiloAndresGTRUniandes
Lucy-ai's own agent ecosystem installer, updater, and verifier. Use this skill when: - Installing lucy-agent on a new OpenClaw instance - Updating lucy-agent in-place - Verifying the lucy-agent installation - Understanding the lucy-agent structure
mutation-testing
by Roasbeef
Validates test suite quality through mutation testing. Generates intelligent code mutations, runs tests to verify they catch the changes, and identifies gaps in test coverage. Use when evaluating test effectiveness, validating newly written tests, or improving test quality for mission-critical code.
code-audit
by ArjenSchwarz
Parallel code audit combining simplification and design critique analysis. Spawns two subagents (code-simplifier and design-critic) to independently review the current directory, consolidates findings into a prioritised report, and offers to create Transit tasks for actionable items. Use when you want a broad quality review of a codebase, e.g. "audit this code", "review codebase quality", "find improvements", "code audit".
code-simplifier
by ArjenSchwarz
Review and simplify code to reduce complexity and improve maintainability
design-critic
by ArjenSchwarz
Critical review of design documents, architecture proposals, and requirements
inkjun-writer
by inkjuncom
印刻君公众号长文写作 Skill。用于撰写、续写、改写和优化 AI 相关内容,默认先做写作规格对齐,再进入正文创作。
counterexample-generator
by ArabelaTso
Generate concrete counterexamples when formal verification, assertions, or specifications fail. Use this skill when debugging failed proofs, understanding why verification fails, creating minimal reproducing examples, analyzing assertion violations, investigating invariant breaks, or diagnosing specification mismatches. Produces concrete input values, execution traces, and state information that demonstrate the failure.
advanced-keigo-usage-expert
by sandraschi
Expert in Japanese honorific language covering 尊敬語・謙譲語・丁寧語 with deep understanding of situational usage, business contexts, and cultural nuances
music-production-basics
by sandraschi
Music production expert for recording, mixing, mastering, and DAW workflows
storytelling-and-narrative-coach
by sandraschi
Expert in narrative structure, character development, plot pacing, and compelling storytelling
modern-python
by runkids
Configures Python projects with modern tooling (uv, ruff, ty). Use when creating projects, writing standalone scripts, or migrating from pip/Poetry/mypy/black.