Code Review
Automated code review and analysis
buffer-overflow
by tangjunyi23
Buffer overflow vulnerability hunting in IoT embedded binaries. Use when reverse-engineering ARM/MIPS/x86 binaries for stack-based or heap-based overflow vulnerabilities, analyzing unsafe memory operations (strcpy, sprintf, gets, memcpy), checking binary protections (NX, ASLR, canary), or building overflow PoCs for embedded targets.
enforce-contract
by knowlet
單元測試與代碼提交前觸發。掃描並驗證方法的 pre-conditions、post-conditions 與 invariants,透過契約式設計減少 AI 幻覺。
solid-principles
by pluginagentmarketplace
Apply and validate SOLID principles in object-oriented design
code-review-ai-ai-review
by liuchiawei
"You are an expert AI-powered code review specialist combining automated static analysis, intelligent pattern recognition, and modern DevOps practices. Leverage AI tools (GitHub Copilot, Qodo, GPT-5, C"
research-patterns
by mindmorass
Knowledge retrieval and research patterns using Qdrant for stored knowledge
agent-native-reviewer
by carmandale
Reviews code to ensure agent-native parity — any action a user can take, an agent can also take. Use after adding UI features, agent tools, or system prompts.
mermaid
by cuozg
Create Mermaid diagrams — flowcharts, sequence diagrams, state machines, class diagrams, architecture diagrams. Triggers — 'diagram', 'mermaid', 'flowchart', 'sequence diagram', 'state diagram', 'architecture diagram', 'visualize'.
feature-video
by carmandale
Record a video walkthrough of a feature and add it to the PR description
health-data-analysis
by sidetoolco
Specialized skill for analyzing personal health data, medical records, lab results, and supplement protocols. Use when working with health records, clinical data, lab values, or health optimization planning.
mobile-ux
by pluginagentmarketplace
Master mobile UX - iOS HIG, Material Design, gestures, responsive design, platform optimization
libby-book-monitor
by alexpolonsky
Track book availability on Libby/OverDrive libraries. Search library catalogues, manage a watchlist, and get notified when books are added. Use for "libby", "check libby", "libby watchlist", "is book on libby", "book available", "overdrive", "library catalogue", "ספרייה", "ספרים".
web-ui-ux
by ssdeanx
Web UI/UX specialist guidance for designing, reviewing, and polishing web product UI (layout, usability, microcopy, accessibility, responsive behavior, forms, navigation). Use when asked to improve UI/UX, audit a page, design a screen, create a component spec, or generate HTML head/manifest/icon guidance for a web app; optionally applicable to Unreal UI (UMG) for UX heuristics.
architecture-doc-auditor
by Agentient
Systematic completeness audit of Architecture Documentation using 188-item viewpoint-based checklist, severity-classified gap detection, technical debt indicators, and architecture anti-pattern scanning. Supports TOGAF, C4, arc42, and IEEE 42010 frameworks. PROACTIVELY activate for: (1) Architecture review gates, (2) ADR validation before implementation, (3) C4 diagram completeness check, (4) Technical debt assessment, (5) Pre-implementation validation, (6) Governance compliance audit, (7) Design doc handoff review. Triggers: "audit architecture", "review ADR", "check architecture doc", "validate design doc", "architecture review", "audit C4 diagrams", "check system context", "technical debt assessment", "architecture health check", "governance review", "architecture completeness"
dhh-rails-reviewer
by carmandale
Brutally honest Rails code review from DHH's perspective. Use when reviewing Rails code for anti-patterns, JS framework contamination, or violations of Rails conventions.
expert-panel-deliberation
by Agentient
Multi-expert evaluation pattern for structured analysis and decision-making. PROACTIVELY activate for: (1) Analyze with expert perspectives, (2) Get multiple viewpoints on a topic, (3) Evaluate options with diverse expertise, (4) Build consensus from different angles, (5) Structured deliberation on complex topics. Triggers: "analyze with expert panel", "get expert perspectives", "what would experts say", "evaluate from different angles", "run expert deliberation", "multi-perspective analysis"
license-compliance-auditor
by jorgealves
Scans project dependencies and verifies licenses against a whitelist of approved open-source licenses. Use to ensure legal compliance in software projects and prevent the introduction of restricted licenses.
ux-writing
by pluginagentmarketplace
Master UX writing - microcopy, voice and tone, error messages, CTAs, content strategy
canvas-course-audit
by vishalsachdev
Audit an entire Canvas LMS course against the Four Learning Design Pillars (Clear Structure, Active Content, Continuous Practice, Intuitive UX). Use when users want to evaluate course quality, identify improvement areas, or prepare for course redesign. Requires canvas-mcp server for course data access. Triggers on "audit course", "course review", "evaluate my course", or Canvas course IDs/codes.
pm2-server-control
by viteinfinite
Start and stop a server with pm2 using pm2 start ./my-server --name <name> --no-autorestart, plus common supporting commands for status, logs, restart, and cleanup.
zig
by plutowang
Auto-apply when working with Zig. Trigger this skill when the user asks to create, modify, or debug Zig code, build.zig scripts, or Zig tests.
security
by pluginagentmarketplace
Production-grade security testing skill with OWASP Top 10, vulnerability scanning, penetration testing guidance, and compliance validation
go-error-handling
by jovermier
Go error handling patterns including wrapping, custom error types, errors.Is/As, and error conventions. Use when handling, creating, or checking errors in Go.
auth-bypass
by tangjunyi23
Authentication bypass vulnerability hunting in IoT firmware. Use when analyzing login mechanisms, session management, access control, or authentication logic in web interfaces, APIs, or network services of embedded devices. Triggers on auth bypass, login bypass, session hijacking, or access control analysis tasks.
Analysis-Only-Mode
by rookiefishs
Focus on analyzing problems, understanding requirements, and providing solution recommendations without generating code. Used for requirement confirmation and problem diagnosis phases.