Code Review
Automated code review and analysis
auth-route-protection-checker
by hopeoverture
This skill should be used when the user requests to audit, check, or generate authentication and authorization protection for Next.js routes, server components, API routes, and server actions. It analyzes existing routes for missing auth checks and generates protection logic based on user roles and permissions. Trigger terms include auth check, route protection, protect routes, secure endpoints, auth middleware, role-based routes, authorization check, api security, server action security, protect pages.
ghe-transition
by Emasoft
CHANGE phases in the GitHub Elements workflow. Closes current thread and opens next phase thread. This is a PHASE CHANGE operation, not just saving progress. USE THIS SKILL WHEN: - User says "transition to TEST" or "move to REVIEW" - User says "I'm done with DEV, start TEST" or "DEV complete" - User says "advance to next phase" or "close this phase" - User says "demote to DEV" (from TEST or REVIEW) - User says "tests pass, ready for review" - User says "merge this" (after REVIEW PASS) - User explicitly wants to END current phase and BEGIN next DO NOT USE THIS SKILL WHEN: - User just wants to SEE status (use ghe-status) - User wants to START work on new issue (use ghe-claim) - User wants to SAVE progress but CONTINUE working (use ghe-checkpoint) - User wants reports (use ghe-report) - User is not ready to END current phase IMPORTANT: This CLOSES current thread and OPENS next thread. Use ghe-checkpoint if you just want to save progress without changing phases. EXAMPLES: <example> Context: DEV work complete, ready for testing user: "I'm done with DEV, transition to TEST" assistant: "I'll use ghe-transition to close DEV and open TEST thread" </example> <example> Context: All tests pass, ready for review user: "Tests pass, move to REVIEW" assistant: "I'll use ghe-transition to close TEST and open REVIEW thread" </example> <example> Context: Structural issues found in TEST user: "This needs structural changes, demote to DEV" assistant: "I'll use ghe-transition to demote from TEST back to DEV" </example> <example> Context: REVIEW passed, ready to merge user: "REVIEW passed, merge it" assistant: "I'll use ghe-transition to complete the workflow and merge" </example>
pr-review
by 101mare
Orchestrates pull request reviews using specialized agents in parallel. Reads PR diff, selects relevant reviewers, aggregates findings. Does NOT handle: plan review (use plan-review), implementation (use tdd), debugging (use systematic-debugging), session verify (use session-verify). Use when reviewing PRs, before merging, or when user asks "review this PR". Recognizes: "pr-review", "review PR", "review pull request", "check this PR", "PR review", "code review", "merge review", "review before merge"
backend-nestjs
by kieutrongthien
Build, maintain, and debug NestJS backends (TypeScript, REST/GraphQL).
reviewing-plugin-marketplace
by taisukeoe
Review Claude Code plugin marketplace configurations against official best practices. Use when analyzing marketplace.json and plugin.json files for structural issues, common errors, path validation, and consistency with Anthropic's official format. Detects repository URL mismatches, incorrect source paths, and missing required fields.
microsim-utils
by vishalsachdev
Utility tools for MicroSim management including quality validation, screenshot capture, icon management, and index page generation. Routes to the appropriate utility based on the task needed.
backend-golang
by kieutrongthien
Build, maintain, and debug Go backends (Gin and Echo).
plan-agile-development
by kieutrongthien
Guide coding execution, track story progress, and keep work flowing.
claude-agent-agent-sdk-dev-agent-sdk-verifier-ts
by monkey1sai
Converted from Claude plugin agent "agent-sdk-verifier-ts" (agent-sdk-dev).
competitive-analysis
by pluginagentmarketplace
Competitive intelligence, market analysis, and strategic positioning for product differentiation.
founder-prenup
by Coowoolf
Use before starting a company with co-founders, when bringing on a new co-founder, or annually as a relationship health check to prevent the 65% of startup failures caused by co-founder conflict
spreadsheet
by cuozg
"Use when tasks involve creating, editing, analyzing, or formatting spreadsheets (.xlsx, .csv, .tsv) with formula-aware workflows, cached recalculation, and visual review."
Oracle Confidentiality Guardian
by oci-ai-architects
Version: 1.0 Created: 2026-02-09
firmware-extraction
by tangjunyi23
Firmware extraction and filesystem analysis for IoT devices. Use when analyzing firmware binaries, extracting filesystems with binwalk, identifying firmware format/structure, locating key files after extraction, or performing initial reconnaissance on router/camera/IoT firmware images. Triggers on tasks involving .bin/.img/.trx/.chk firmware files.
learning-design-review
by vishalsachdev
Review educational content against the Four Learning Design Pillars framework. Use when users want to evaluate course materials, lessons, tutorials, e-learning modules, or any instructional content for alignment with evidence-based learning design principles. Provides structured feedback with specific principle references (e.g., 1.1.1, 2.3.4) and actionable recommendations.
atlassian-capture-tasks-from-meeting-notes
by monkey1sai
'Analyze meeting notes to find action items and create Jira tasks for
typescript-performance-best-practices
by mcart13
TypeScript performance optimization guidelines for build times, type-checking, declaration emit, and editor responsiveness. This skill should be used when writing, reviewing, or optimizing TypeScript code and tsconfig settings. Triggers on tasks involving slow builds, slow type-checking, CI timeouts, editor lag, tsserver memory issues, monorepo configuration, project references, incremental builds, declaration emit, isolatedDeclarations, --noCheck flag, TypeScript 5.6+ features, TypeScript 7 migration, or any TypeScript performance investigation.
security-sentinel
by carmandale
Performs security audits for vulnerabilities, input validation, auth/authz, hardcoded secrets, and OWASP compliance. Use when reviewing code for security issues or before deployment.
monitoring
by mrsknetwork
Sets up production observability — error tracking with Sentry, structured logging with structlog, application metrics with Prometheus, and uptime monitoring. Use when preparing an app for production, debugging production issues, or when the user has no visibility into what's failing in their live app. Trigger when user mentions "Sentry", "error tracking", "monitoring", "logging", "metrics", "alerts", "production issues", "how do I know when something breaks", or "observability".
unity-review-asset
by cuozg
PR asset review — shaders, textures, animations, import settings. Triggers — 'review assets', 'asset review', 'check assets', 'shader review', 'texture review'.
performance-oracle
by carmandale
Analyzes code for performance bottlenecks, algorithmic complexity, database queries, memory usage, and scalability. Use after implementing features or when performance concerns arise.
session-verify
by 101mare
End-of-session verification skill that validates all changes made during a coding session. Checks for bugs, security vulnerabilities, dead code, efficiency issues, and documentation gaps. Does NOT handle: plan review (use plan-review), PR review (use pr-review), debugging (use systematic-debugging), implementation (use tdd). Use when: finishing a task, before committing, user says "verify", "check my changes", "review session", "are we done?", "everything correct?", or at end of coding sessions. Orchestrates specialized review agents and ensures documentation is updated.
framework-docs-researcher
by carmandale
Gathers comprehensive documentation and best practices for frameworks, libraries, or dependencies. Use when you need official docs, version-specific constraints, or implementation patterns.
frontend-vue3
by kieutrongthien
Build, maintain, and debug Vue 3 frontends (Vite + TypeScript).