Code Review
Automated code review and analysis
nehemiah-security
by christopheraaronhogg
Provides expert security analysis, vulnerability assessment, and threat modeling. Use for security reviews, OWASP analysis, auth/authorization assessment, compliance posture, or attack surface analysis. Produces consultant-style reports with prioritized remediation recommendations — does NOT write implementation code.
bestbuy
by CodeDraig
Enables Claude to browse Best Buy products, manage lists, and track orders
verification
by BaxterCooper
This skill MUST be invoked before any completion claim, success report, or task transition. Mandates 5-step evidence protocol. Use when about to claim "done", "complete", "working", "fixed", or any success state.
aliexpress
by CodeDraig
Enables Claude to browse AliExpress products, manage wishlist, and track orders
coding-agent
by spoonbobo
'Delegate coding tasks to Codex, Claude Code, or Pi agents via background process. Use when: (1) building/creating new features or apps, (2) reviewing PRs (spawn in temp dir), (3) refactoring large codebases, (4) iterative coding that needs file exploration. NOT for: simple one-liner fixes (just edit), reading code (use read tool), thread-bound ACP harness requests in chat (for example spawn/run Codex or Claude Code in a Discord thread; use sessions_spawn with runtime:"acp"), or any work in ~/clawd workspace (never spawn agents here). Requires a bash tool that supports pty:true.'
waste-identification
by arielperez82
Waste Snake practice for making process waste visible through continuous observation. Use when any agent or human encounters frustration, tedium, delays, or low-value work during development. Provides the observation format, Lean waste taxonomy reference, and review process for aggregating observations into actionable patterns.
shadcn-setup
by wiztral
Initialize Shadcn UI in an EXISTING Next.js or React (Vite) project.
release-publish
by metyatech
Use when preparing a release, publishing a package, bumping a version, or configuring public repository metadata. Also use when verifying a published package. Do not use for general development or non-release tasks.
code-review
by TriNgo0108
Automated code review checklist. Use when reviewing PRs or code changes.
react-useeffect-audit
by mpoc
Identify and fix unnecessary useEffect usage in React code. Use when reviewing React code that uses Effects, when asked to optimize React components, when seeing patterns like "useEffect + setState", when users ask about Effect best practices, or when refactoring React code. Helps eliminate redundant renders and simplify component logic.
commit-message
by junoh-moon
AUTOMATICALLY invoke this skill whenever git commit is needed - no user request required. Direct git commit will FAIL validation. This skill contains required pre-commit setup. Triggers: "커밋해", "커밋 ㄱㄱ", "커밋 만들어줘", "커밋 찍어줘", or ANY situation requiring git commit.
rewrite
by jimrand
This skill should be used when the user asks to "rewrite my resume", "fix my resume", "humanize my resume", "make my resume sound human", "clean up my resume bullets", "reword my resume", or wants AI-sounding text in their resume rewritten with annotations explaining each change. Works for all resume and CV types: standard US, federal, academic, legal, medical, consulting, tech, executive, military transition, education, nonprofit, trades, creative, investment banking, and EU/Europass formats. Entry-level through executive.
finalize-work-item
by squirrel289
"Complete and archive a finished work item, moving it from /backlog/ to /backlog/archive/. Use when work is tested, reviewed, merged, and ready to close. Supports: (1) Verify completion (all acceptance criteria met), (2) Record final metrics (actual_hours, completed_date, test_results), (3) Clean up feature branch, (4) Archive to history, (5) Link successor work items if needed"
Network 101
by jcastillotx
This skill should be used when the user asks to "set up a web server", "configure HTTP or HTTPS", "perform SNMP enumeration", "configure SMB shares", "test network services", or needs guidance on configuring and testing network services for penetration testing labs.
learn
by Nomik94
Use when: 문제 해결 후, 디버깅 성공, 패턴 발견, 기억해둘 것, 나중에 또 나올 수 있는, 해결했다, 찾았다, root cause 발견. NOT for: 일반 지식, 공식 문서에 있는 내용, 단순 오타.
autonomous-orchestrator
by metyatech
"Autonomous meta-orchestrator that continuously discovers work, dispatches agents, reviews results, and manages the full lifecycle across the user's workspace. Use when the user wants hands-off autonomous operation. Triggers on: 'autonomous', 'auto-pilot', 'run continuously', 'take over', 'autopilot'."
oblique-strategy
by smithclay
Use when the user is stuck, needs creative inspiration, asks for an oblique strategy, wants to break through a block, or says things like "I'm stuck", "give me a random idea", "oblique strategy", "help me think differently", or "I need inspiration".
audit-website
by kunhai-88
"使用 squirrelscan CLI(squirrel)对网站进行审计,覆盖 SEO、技术、内容、性能、安全等 140+ 规则。当需要分析网站健康、排查技术 SEO、检查死链、校验 meta 与结构化数据、生成站点审计报告、对比改版前后,或提到「网站审计」「audit website」「squirrel」「站点健康检查」时使用。"
verification-loop
by pure-maple
验证闭环提醒。当代码修改完成、Story完成、准备PR时自动激活。确保每次变更都经过验证,效率提升2-3倍。
auditing-backlog
by squirrel289
"Run an end-to-end backlog audit by composing dependency graph validation with evidence-backed checklist validation. Use when asked to audit backlog quality before release, verify closure readiness, clean up stale completion status, or produce one cohesive backlog health report from dependency and checkbox findings."
seo-audit
by Jackiexiao
(中文)When the user wants to audit, review, or diagnose SEO issues on their site. Also use when the user mentions "SEO audit," "technical SEO," "why am I not ranking," "SEO issues," "on-page SEO," "meta tags review," or "SEO health check." For building pages at scale to target keywords, see programmatic-seo. For adding structured data, see schema-markup.
github
by MichaelFisher1997
GitHub workflow best practices using gh CLI and git. Use when working with GitHub repositories, pull requests, issues, or GitHub interactions.
fastapi
by Nomik94
FastAPI 프로젝트 고유 설정 및 패턴 레퍼런스. Use when: 프로젝트 구조 잡기, 폴더 구조, 디렉토리 구조, 초기 세팅, 새 프로젝트 시작, 파일 분리, 파일이 너무 커, 폴더로 변환, 파일 비대, 모듈 분리, 패키지 분리, DI 패턴 선택, 의존성 주입, Depends vs Container vs Dishka, Ruff 설정, mypy 설정, 린터 세팅, 포맷터 세팅, pre-commit 설정, import-linter, App Factory, create_app, lifespan, pydantic-settings, 환경변수 설정, config 구조, 레이어 분리, controllers/service/repository 구조, 도메인 레이어 도입 기준. NOT for: 단순 FastAPI 문법 질문 (Claude가 이미 앎), 일반적인 Ruff/mypy 사용법.
seo-audit-pro
by ferdiboxman
Professional SEO audit with real data. Powered by x402 micropayments. When the user wants to audit, review, or diagnose SEO issues on their site with REAL DATA — not just a checklist. Also use when the user mentions "SEO audit," "technical SEO," "why am I not ranking," "SEO issues," "on-page SEO," "meta tags review," or "SEO health check." Unlike basic SEO audit skills, this one calls APIs to get actual performance scores, crawl data, and broken links.