Git & VCS
Git operations, commit helpers, branch management
pr
by johnie
Create, update, and review GitHub PRs. Use for creating new PRs with structured templates, updating existing PRs after new commits, or reviewing PRs for quality. Requires gh CLI authenticated.
gh-aw-helper
by swannysec
GitHub Agentic Workflows (gh-aw) — write AI-powered automation workflows in natural-language markdown that compile to secure GitHub Actions. Supports Copilot, Claude, and Codex engines with safe-output guardrails, MCP tool integration, and sandboxed execution. Use this skill when users need to: (1) Install or set up gh-aw in a repository (2) Create, edit, or compile agentic workflow markdown files (3) Configure triggers, schedules, safe outputs, tools, or MCP servers (4) Switch AI engines (Copilot, Claude, Codex) or configure engine options (5) Troubleshoot workflow failures, compilation errors, or permission issues (6) Understand gh-aw patterns (ChatOps, DailyOps, IssueOps, etc.) (7) Configure security: permissions, network rules, sandbox, threat detection (8) Use advanced features: memory, imports, orchestration, cross-repo ops
git-operator
by masanao-ohba
Manages Git operations including commits with appropriate conventions, combining related changes logically and following project-specific policies
lambda-workflow
by lambdamechanic
"One lifecycle for Lambda repos: choose a bd task, start work, land the PR, and watch GitHub via Dumbwaiter MCP until it merges."
interview-master
by chaorenex1
This skill should be used when the user asks to "generate interview questions", "prepare for interview", "optimize resume", "conduct mock interview", "analyze git commits for resume", "generate resume from code", "review my resume", or mentions interview preparation, career assistance, or extracting project experience from git history. Provides comprehensive interview and career development guidance for both job seekers and interviewers.
sk
by lambdamechanic
"How to use the repo-scoped sk CLI to manage Claude Skills in this codebase."
plugin-qa
by swannysec
Validates plugin manifest consistency, README cross-references, SKILL.md frontmatter, and version sync across the robot-tools monorepo. Has two modes: - Validate mode: checks and reports pass/warn/fail (default) - Release prep mode: validates, walks through version bumping, re-validates, summarizes for commit Claude should proactively suggest release-prep mode when a development session that added or modified plugin content appears to be wrapping up.
update-docs
by montagao
Update README.md, architecture documentation (ARCHITECTURE.md, docs/), and plan files (plan/, task_plan.md, progress.md) to reflect current codebase state. Use when the user explicitly asks to "update docs", "update documentation", "update the readme", "update architecture docs", "update plan", "sync docs with code", or similar requests. Discovers project structure, analyzes code changes, and updates documentation with concise technical descriptions and ASCII diagrams.
browser-automation
by femto
Control Chrome browser with AI using MCP protocol. Use when users want to automate browser tasks, take screenshots, fill forms, click elements, navigate pages, search browsing history, manage bookmarks, or perform any browser-based automation. Works with your existing Chrome browser and login sessions.
create-claude-reviewer
by jclfocused
Create a Claude Code Review GitHub Action workflow for PRs. Use when the user asks to "set up claude review", "add PR review", "create code review action", "claude reviewer", "set up automated review", or wants automated PR reviews with Linear or GitHub comments.
xhs-writer
by daqi
小红书爆款文案助手。将技术或职场经历转化为情感共鸣强、极具传播力的故事。遵循S.L.R.A.模型。
git-code-review
by chaorenex1
Get git records for specified users and days, perform code review for each commit, and generate detailed code review reports
agent-factory
by Art-of-Technology
"Spawn a full autonomous software development team from a single prompt. Creates 12 specialized AI agents (PO, PM, Architect, Senior Dev, UI, DB, QA, Security, API, CI/CD, Code Review, Infrastructure) that collaborate via GitHub Issues/Projects board with label-based workflow automation. Use when: (1) setting up a new project with full agent team, (2) adding agent ecosystem to existing repo, (3) creating autonomous development pipeline. NOT for: simple one-off coding tasks, single-agent work, or non-GitHub workflows."
safe-skill-install
by swannysec
Safe skill installation with supply chain security scanning. Wraps Cisco skill-scanner to vet skills before installation. Supports GitHub repos, skills.sh (npx), Claude marketplace plugins, and local paths. Configurable scan depth with static and behavioral analysis by default. Uses GitHub archive downloads to avoid git execution risks, with hardened git clone fallback. Security decisions are made by a deterministic wrapper script, not the LLM agent.
tls-scan-testssl
by vchirrav
Run testssl.sh to analyze TLS/SSL configurations. Checks cipher suites, protocols, certificate validity, known vulnerabilities (Heartbleed, POODLE, ROBOT), and compliance.
commit
by johnie
Create semantically correct, granular git commits by analyzing staged and unstaged changes
setup-meta-repo
by jclfocused
Set up or update a meta-repo workspace containing multiple sub-repos. Creates CLAUDE.md files, .mcp.json, .claude/settings.local.json, and initializes git. Use when the user asks to "set up a meta repo", "init workspace", "setup workspace", "create workspace config", "set up meta-repo", or references setting up a multi-repo workspace.
gha-hardening
by swannysec
GitHub Actions security hardening, configuration best practices, and vulnerability detection. Covers workflow syntax, trigger security, permission management, secrets handling, OIDC federation, supply chain protection, self-hosted runner hardening, attack pattern recognition, and security scanning tool rules. 60% security/hardening content, 40% implementation/configuration guidance. Use this skill when users need to: (1) Harden GitHub Actions workflows against injection, supply chain, or privilege escalation attacks (2) Configure workflow permissions, secrets, OIDC, or environment protection rules securely (3) Understand dangerous workflow patterns (pull_request_target + checkout, workflow_run artifact poisoning, script injection via ${{ }}) (4) Choose or configure security scanning tools (zizmor, scorecard, actionlint, poutine, harden-runner, Raven) (5) Respond to supply chain incidents (tj-actions, reviewdog, compromised action tags) (6) Audit workflows for OWASP CI/CD risks, CIS benchmark compliance, or OpenSSF Scorecard checks (7) Write or review workflow YAML (triggers, matrix, reusable workflows, composite actions, caching, artifacts, environments) (8) Secure self-hosted runners (ephemeral patterns, network egress, persistence detection, runner groups)
conventional-commits
by tigrisdata
Use when creating git commits, writing commit messages, or following version control workflows
commerce-blueprint
by gravito-framework
Deep expertise in E-commerce domain logic (Cart, Checkout, SKU). Trigger this when building shopping features on top of MVC or ADR.
paddle-pull-request
by PFCCLab
自动创建或更新 GitHub Pull Request。 当需要为 Paddle 相关仓库创建 PR 时,优先使用本 skill。
pr
by jacehwang
Creates or updates a GitHub pull request for the current branch. Use when ready to submit code changes for review.
worldbook
by femto
AI's Knowledge Base CLI - Query and manage world knowledge for AI agents. Use when users want to search knowledge, add knowledge sources, or interact with the worldbook knowledge base. This is a CLI-first approach that treats AI agents as first-class citizens.
paddle-debug
by PFCCLab
专注于在 Paddle 代码库中定位问题并输出高质量调试报告的调试流程与技巧;代码修复是在结论充分后的后续步骤。遇到 Paddle 框架、算子、训练脚本或分布式训练相关问题时,优先使用本 skill 规划调试与报告输出。