swannysec
@swannysec
Public Skills
security-vuln-analyzer
by swannysec
Multi-agent security vulnerability analysis and remediation skill. Orchestrates parallel security agents to analyze vulnerability reports, validate findings, assess risk, and provide comprehensive fix recommendations. Use when receiving vulnerability reports, security disclosures, bug bounty submissions, or when needing to assess and remediate security issues. Triggers on keywords like "vulnerability report", "security issue", "CVE", "clickjacking", "XSS", "CSRF", "injection", "security disclosure", or requests to analyze/fix security problems.
anti-laziness-guard
by swannysec
Three-layer Stop hook that detects and blocks work-skipping rationalizations by Claude Code agents. Prevents agents from unilaterally deciding to skip assigned work, bypass mandatory processes, or cite unverified context constraints as justification for shortcuts. Layer 1: Deterministic regex detection of known laziness phrases (Tiers 1-2) Layer 2: Haiku-evaluated intent detection for premature victory and silent omission (Tier 4) Layer 3: Optional agent-based deep verification against task lists and plan files This is a passive hook — it activates automatically when the plugin is enabled. No slash command needed. The hook fires on every Stop event and only blocks when laziness patterns are detected.
gha-hardening
by swannysec
GitHub Actions security hardening, configuration best practices, and vulnerability detection. Covers workflow syntax, trigger security, permission management, secrets handling, OIDC federation, supply chain protection, self-hosted runner hardening, attack pattern recognition, and security scanning tool rules. 60% security/hardening content, 40% implementation/configuration guidance. Use this skill when users need to: (1) Harden GitHub Actions workflows against injection, supply chain, or privilege escalation attacks (2) Configure workflow permissions, secrets, OIDC, or environment protection rules securely (3) Understand dangerous workflow patterns (pull_request_target + checkout, workflow_run artifact poisoning, script injection via ${{ }}) (4) Choose or configure security scanning tools (zizmor, scorecard, actionlint, poutine, harden-runner, Raven) (5) Respond to supply chain incidents (tj-actions, reviewdog, compromised action tags) (6) Audit workflows for OWASP CI/CD risks, CIS benchmark compliance, or OpenSSF Scorecard checks (7) Write or review workflow YAML (triggers, matrix, reusable workflows, composite actions, caching, artifacts, environments) (8) Secure self-hosted runners (ephemeral patterns, network egress, persistence detection, runner groups)
kcap
by swannysec
Capture and distill knowledge from URLs into structured markdown notes. Supports web articles, YouTube videos, and Twitter/X posts. Extracts content using the best available tool, synthesizes key insights via a sandboxed sub-agent, generates YAML frontmatter with auto-suggested tags, and saves to a configured directory. Optionally integrates with Obsidian for direct vault linking. Use this skill when users want to: (1) Save/capture/distill a URL to a structured note (2) Create knowledge base entries from web content (3) Capture YouTube video transcripts as notes (4) Save Twitter threads as structured summaries (5) Build an Obsidian vault or markdown knowledge base from web sources For saving/distilling a specific URL to a note, use kcap. For browsing, discovering, or searching AI tweets, use ai-twitter-radar instead.
gh-aw-helper
by swannysec
GitHub Agentic Workflows (gh-aw) — write AI-powered automation workflows in natural-language markdown that compile to secure GitHub Actions. Supports Copilot, Claude, and Codex engines with safe-output guardrails, MCP tool integration, and sandboxed execution. Use this skill when users need to: (1) Install or set up gh-aw in a repository (2) Create, edit, or compile agentic workflow markdown files (3) Configure triggers, schedules, safe outputs, tools, or MCP servers (4) Switch AI engines (Copilot, Claude, Codex) or configure engine options (5) Troubleshoot workflow failures, compilation errors, or permission issues (6) Understand gh-aw patterns (ChatOps, DailyOps, IssueOps, etc.) (7) Configure security: permissions, network rules, sandbox, threat detection (8) Use advanced features: memory, imports, orchestration, cross-repo ops
starduster
by swannysec
Catalog GitHub starred repositories into a structured Obsidian vault with AI-synthesized summaries, normalized topic taxonomy, graph-optimized wikilinks, and Obsidian Bases (.base) index files for filtered views. Fetches repo metadata and READMEs via gh CLI, classifies repos into categories and normalized topics, generates individual repo notes with frontmatter, and creates hub notes for categories/topics/authors that serve as graph-view connection points. Use this skill when users want to: (1) Catalog or index their GitHub stars into Obsidian (2) Create a searchable knowledge base from starred repos (3) Organize and discover patterns in their GitHub stars (4) Export GitHub stars as structured markdown notes (5) Build a graph of starred repos by topic, language, or author For saving/distilling a specific URL to a note, use kcap instead. For browsing AI tweets, use ai-twitter-radar instead.
plugin-qa
by swannysec
Validates plugin manifest consistency, README cross-references, SKILL.md frontmatter, and version sync across the robot-tools monorepo. Has two modes: - Validate mode: checks and reports pass/warn/fail (default) - Release prep mode: validates, walks through version bumping, re-validates, summarizes for commit Claude should proactively suggest release-prep mode when a development session that added or modified plugin content appears to be wrapping up.
safe-skill-install
by swannysec
Safe skill installation with supply chain security scanning. Wraps Cisco skill-scanner to vet skills before installation. Supports GitHub repos, skills.sh (npx), Claude marketplace plugins, and local paths. Configurable scan depth with static and behavioral analysis by default. Uses GitHub archive downloads to avoid git execution risks, with hardened git clone fallback. Security decisions are made by a deterministic wrapper script, not the LLM agent.
secret-scanning-investigator
by swannysec
Investigate GitHub secret scanning alerts to trace provenance, gather context, assess risk, and produce a structured report for security professionals. Handles one or more alerts in a single investigation using only open-source tools.
phased-review
by swannysec
Multi-stage implementation review with parallel sub-agents, severity-based autonomous fixes, and gated test verification. Runs code quality, architecture, simplicity, documentation, and security reviews in sequence with test gates between each fix stage. Security review is blocked until all other fixes are complete. Use after completing a feature, implementation phase, or release candidate. Supports scope modes: full, code-only, security, simplicity, docs.
open-sourceror
by swannysec
Prepare Claude Code skills, agents, or collections for open-source sharing on GitHub. Supports two modes: (1) Standalone repo creation, or (2) Marketplace integration into existing plugin repos. Use when: - "prepare for open source", "open source this skill" - "upload skill to github", "share this agent" - "add to marketplace", "add to robot-tools" - "create repo for skill", "package for sharing" - User has a skill directory, agent file, or collection to share
ai-twitter-radar
by swannysec
Discover trending AI tools, news, and insights from influential developers and AI advocates on Twitter/X using Bird CLI. Use PROACTIVELY when users need: (1) AI-related tweets, tools, or discussions from Twitter (2) What influential AI developers are currently talking about (3) AI news and trends from social media (4) Developer sentiment on AI tools and frameworks (5) New AI projects being shared on Twitter This is a READ-ONLY skill - no posting, liking, or account modifications. Triggers: "AI Twitter", "trending AI tools", "AI news Twitter", "what are AI developers saying", "AI tweets", "Twitter AI trends", "developer sentiment AI", "AI influencers"
session-retrospective
by swannysec
Iterative reflection, research, and improvement skill for extracting actionable learnings from any Claude Code session. Use after longer sessions to capture process improvements, project improvements, or both. Produces agent-ready context documents for future implementation.
research-verification
by swannysec
Pre-flight verification checklist for research tasks. Use DURING research when gathering information about external systems, APIs, registries, or configurations. Prevents assumptions from becoming errors. Apply before finalizing plans or documentation.
impact-flow
by swannysec
Codebase flow analysis for dependency visualization, impact assessment, and health scoring. Use PROACTIVELY when users need: (1) Dependency/import analysis ("what imports this?", "dependency graph", "module relationships") (2) Blast radius/impact analysis ("if I change X", "what's affected", "impact of modifying") (3) Code health scoring ("codebase health", "health grade", "technical debt score") (4) Execution flow tracing ("trace through", "call path", "how does data flow") (5) Dead code detection ("unused exports", "safe to delete", "orphan code") (6) Comprehensive analysis ("full analysis", "analyze this codebase") Triggers: "impact-flow", "impact flow", "dependency graph", "blast radius", "impact analysis", "health score", "what depends on", "call graph", "trace execution", "dead code", "module dependencies" NOTE: For security scanning, defer to security-sentinel. For design patterns, defer to pattern-recognition-specialist. For architecture compliance, defer to architecture-strategist.
ai-dev-research
by swannysec
World-expert deep technical research agent for AI-enabled software development. Use PROACTIVELY when users need: (1) Deep research on AI/ML development topics (RAG, agents, LLMs, embeddings, vector DBs, prompt engineering, fine-tuning) (2) Technical consultation on AI architectures, tool selection, or implementation approaches (3) Implementation guidance with production-ready patterns and best practices (4) Comparative analysis of AI frameworks, models, or services (5) Current state-of-the-art analysis with authoritative citations Triggers: "research AI", "compare LLMs", "RAG architecture", "agentic workflow", "AI coding tools", "which model should I use", "how does X work in AI", "best practices for AI development", "production AI systems", "AI implementation guidance"