Top Rated
The most starred skills loved by the community. Quality guaranteed!
plan-writing
by vudovn
Structured task planning with clear breakdowns, dependencies, and verification criteria. Use when implementing features, refactoring, or any multi-step work.
red-team-tactics
by vudovn
Red team tactics principles based on MITRE ATT&CK. Attack phases, detection evasion, reporting.
systematic-debugging
by vudovn
4-phase systematic debugging methodology with root cause analysis and evidence-based verification. Use when debugging complex issues.
vulnerability-scanner
by vudovn
Advanced vulnerability analysis principles. OWASP 2025, Supply Chain Security, attack surface mapping, risk prioritization.
tailwind-patterns
by vudovn
Tailwind CSS v4 principles. CSS-first configuration, container queries, modern patterns, design token architecture.
server-management
by vudovn
Server management principles and decision-making. Process management, monitoring strategy, and scaling decisions. Teaches thinking, not commands.
testing-patterns
by vudovn
Testing patterns and principles. Unit, integration, mocking strategies.
pdf-processing
by MervinPraison
Process and extract information from PDF documents. Use this skill when the user asks to read, analyze, or extract data from PDF files.
display-ai-glasses-with-jetpack-compose-glimmer
by android
Provides guidelines for developing projected applications for Android
edge-to-edge
by android
Use this skill to migrate your Jetpack Compose app to add adaptive edge-to-edge
play-billing-library-version-upgrade
by android
Use this skill when upgrading or migrating an Android project from any
agp-9-upgrade
by android
Upgrades, or migrates, an Android project to use Android Gradle Plugin
backlog-technical-project-manager
by MrLesk
Technical project management for Backlog.md workstreams using coordinated sub-agents. Use only when the user explicitly asks Codex to take over one or more existing Backlog.md tasks (for example: "act as TPM", "coordinate these tasks", "delegate to sub-agents"). Orchestrate planning, implementation, and finalization; manage dependencies and overlapping code areas; review and approve sub-agent plans before implementation.
py
by crazyguitar
Comprehensive Python programming reference covering syntax, concurrency, networking, databases, ML/LLM development, and HPC. Use for: Python questions, Python interview preparation, debugging, performance optimization, async patterns, library examples, code review, best practices, MLOps workflows, distributed computing, security implementations, and any Python development tasks.
build-tui-view
by hatchet-dev
Provides instructions for building Hatchet TUI views in the Hatchet CLI.
sink
by miantiao-me
Sink short link API operations via OpenAPI. Use when managing short links: creating, querying, updating, deleting, listing, importing, or exporting links. Also covers AI-powered slug generation and link analytics. Triggers: "create short link", "shorten URL", "delete link", "edit link", "list links", "export links", "import links", "link analytics", "AI slug".
ljg-think
by lijigang
追本之箭——纵向深钻思维工具。给一个观点、现象或问题,像箭一样一路向下钻到不可再分的本质。Use when user says '想透', '追本', '本质是什么', '为什么会这样', '深挖', '钻到底', 'think deep', 'drill down', or wants to trace any idea/phenomenon vertically to its irreducible root. Also trigger when user provides a statement and wants depth analysis, not breadth survey.
ljg-relationship
by lijigang
Relationship analyst combining structural diagnostics (5-layer framework) with psychoanalytic depth (transference, unconscious patterns, resistance). Guides users through dialogue to "see" the real structure of their relationship issues. Use when user says "关系分析", "分析关系", "relationship", "人际关系", or describes a specific relationship problem they want to understand.
algorand-vulnerability-scanner
by trailofbits
Scans Algorand smart contracts for 11 common vulnerabilities including rekeying attacks, unchecked transaction fees, missing field validations, and access control issues. Use when auditing Algorand projects (TEAL/PyTeal).
sharp-edges
by trailofbits
"Identifies error-prone APIs, dangerous configurations, and footgun designs that enable security mistakes. Use when reviewing API designs, configuration schemas, cryptographic library ergonomics, or evaluating whether code follows 'secure by default' and 'pit of success' principles. Triggers: footgun, misuse-resistant, secure defaults, API usability, dangerous configuration."
address-sanitizer
by trailofbits
AddressSanitizer detects memory errors during fuzzing. Use when fuzzing C/C++ code to find buffer overflows and use-after-free bugs.
gh-cli
by trailofbits
Enforces authenticated gh CLI workflows over unauthenticated curl/WebFetch patterns. Use when working with GitHub URLs, API access, pull requests, or issues.
second-opinion
by trailofbits
"Runs external LLM code reviews (OpenAI Codex or Google Gemini CLI) on uncommitted changes, branch diffs, or specific commits. Use when the user asks for a second opinion, external review, codex review, gemini review, or mentions /second-opinion."
ton-vulnerability-scanner
by trailofbits
Scans TON (The Open Network) smart contracts for 3 critical vulnerabilities including integer-as-boolean misuse, fake Jetton contracts, and forward TON without gas checks. Use when auditing FunC contracts.