SKILL 排行榜 | Agent Skills Leaderboard

███████╗██╗  ██╗██╗██╗     ██╗         ██████╗  █████╗ ███╗   ██╗██╗  ██╗
██╔════╝██║ ██╔╝██║██║     ██║         ██╔══██╗██╔══██╗████╗  ██║██║ ██╔╝
███████╗█████╔╝ ██║██║     ██║         ██████╔╝███████║██╔██╗ ██║█████╔╝
╚════██║██╔═██╗ ██║██║     ██║         ██╔══██╗██╔══██║██║╚██╗██║██╔═██╗
███████║██║  ██╗██║███████╗███████╗    ██║  ██║██║  ██║██║ ╚████║██║  ██╗
╚══════╝╚═╝  ╚═╝╚═╝╚══════╝╚══════╝    ╚═╝  ╚═╝╚═╝  ╚═╝╚═╝  ╚═══╝╚═╝  ╚═╝

Agent Skills 排行榜 · 关键词 + 语义搜索

按 / 聚焦搜索框

正在使用 AI 进行语义搜索...

23,097

总 Skills

59.4M

总安装量

2,536

贡献者

#	Skill	仓库	描述	安装量
6151	opencode-bridge	different-ai/openwork	OpenWork communicates with OpenCode via three mechanisms: - CLI invocation: Spawn `opencode` with prompts and get JSON responses. - Database access: Read OpenCode's SQLite database for sessions and messages. - MCP bridge: Real-time bidirectional communication for streaming and permissions. CLI Invocation Non-interactive mode ``` opencode -p "your prompt" -f json -q ``` Returns JSON with the response content. Flags \| `-p` \| Prompt to execute \| `-f` \| Output format (`text`, `json`...	588
6152	viral-hook-creator	ognjengt/founder-skills	Viral Hook Creator Purpose Generate 3-5 viral hook options using proven psychological patterns that create curiosity, provide value, and drive engagement. Hooks are optimized for social platforms (X/Twitter, LinkedIn, Instagram, TikTok). Execution Logic Check $ARGUMENTS first to determine execution mode: If $ARGUMENTS is empty or not provided: Respond with: "viral-hook-creator loaded, proceed with additional instructions" Then wait for the user to provide their requirements in the next message. ...	588
6153	education-program	kostja94/marketing-skills	Channels: Education Program Guides student and education discount programs as an acquisition channel. Targets students and educators; common for SaaS, dev tools, and productivity apps. ~65% of students who use professional tools in school continue using them in their first jobs—education discounts are long-term customer acquisition, not just revenue loss. When invoking : On first use , if helpful, open with 1–2 sentences on what this skill covers and why it matters, then provide the main output....	588
6154	go-concurrency	cxuu/golang-skills	Go Concurrency This skill covers concurrency patterns and best practices from Google's Go Style Guide and Uber's Go Style Guide, including goroutine management, channel usage, mutex handling, and synchronization. Goroutine Lifetimes Normative: When you spawn goroutines, make it clear when or whether they exit. Why Goroutine Lifetimes Matter Goroutines can leak by blocking on channel sends or receives. The garbage collector will not terminate a goroutine blocked on a channel even if no other...	588
6155	database-architect	sickn33/antigravity-awesome-skills	You are a database architect specializing in designing scalable, performant, and maintainable data layers from the ground up. Use this skill when Selecting database technologies or storage patterns Designing schemas, partitions, or replication strategies Planning migrations or re-architecting data layers Do not use this skill when You only need query tuning You need application-level feature design only You cannot modify the data model or infrastructure Instructions Capture data domain, access p...	588
6156	frontend-dev-guidelines	davila7/claude-code-templates	Frontend Development Guidelines (React · TypeScript · Suspense-First · Production-Grade) You are a senior frontend engineer operating under strict architectural and performance standards. Your goal is to build scalable, predictable, and maintainable React applications using: Suspense-first data fetching Feature-based code organization Strict TypeScript discipline Performance-safe defaults This skill defines how frontend code must be written , not merely how it can be written. 1. Frontend Feasibi...	588
6157	code-refactoring	skillcreatorai/ai-agent-skills	Code Refactoring When to use this skill Code review : Discovering complex or duplicated code Before adding new features : Cleaning up existing code After bug fixes : Removing root causes Resolving technical debt : Regular refactoring Instructions Step 1: Extract Method Before (long function) : function processOrder ( order : Order ) { // Validation if ( ! order . items \|\| order . items . length === 0 ) { throw new Error ( 'Order must have items' ) ; } if ( ! order . customerId ) { throw new Erro...	587
6158	rust-router	zhanghandong/rust-skills	Rust Question Router Version: 2.0.0 \| Last Updated: 2025-01-22 v2.0: Context optimized - detailed examples moved to sub-files Meta-Cognition Framework Core Principle Don't answer directly. Trace through the cognitive layers first. Layer 3: Domain Constraints (WHY) ├── Business rules, regulatory requirements ├── domain-fintech, domain-web, domain-cli, etc. └── "Why is it designed this way?" Layer 2: Design Choices (WHAT) ├── Architecture patterns, DDD concepts ├── m09-m15 skills └── "What p...	587
6159	trading-quant	lanyasheng/trading-quant	量化交易数据分析通过腾讯/新浪/东财/同花顺多数据源获取实时行情，提供5维评分体系。工具列表所有工具统一入口: python3.12 { baseDir } /scripts/quant.py < tool > [ args .. . ] A股分析 python3.12 { baseDir } /scripts/quant.py stock_analysis [ codes ] python3.12 { baseDir } /scripts/quant.py intraday_snapshot 全球市场 python3.12 { baseDir } /scripts/quant.py us_stock [ symbols ] python3.12 { baseDir } /scripts/quant.py hk_stock [ codes ] python3.12 { baseDir } /scripts/quant.py commodity [ codes ] python3.12 { baseDir } /scripts/quant.py global_overview 市场...	587
6160	video-analyzer	zrong/skills	Video Analyzer 通过视觉/视频大模型分析视频内容，支持本地视频文件和互联网视频。使用场景用户要求分析、理解或描述一段视频用户提供视频文件路径或 URL，希望了解视频内容用户需要对视频进行问答配置环境变量根据使用的模型设置对应的 API Key 环境变量：火山引擎（豆包） export ARK_API_KEY = "your-api-key" OpenAI export OPENAI_API_KEY = "your-api-key" 模型配置编辑 scripts/models.json 添加或修改模型配置。每个模型需要： base_url — API 地址 api_key_env — 读取 API Key 的环境变量名 model — 模型 ID api_type — responses 或 chat_completions supports_video — 是否支持原生视频输入工作流程确认视频来源：获取用户提供的视频路径或 URL。确认分析需求：明确用户想了解什么（如概括内容、回答问题、描述场景等）。如果 $ARGUMENTS 非空，将其作...	587
6161	web-haptics	lochie/web-haptics	Install web-haptics ( npm i web-haptics ) and add haptic feedback to the app following these rules: Package: web-haptics Repository: https://github.com/lochie/web-haptics \| License: MIT \| Zero dependencies Uses the Web Vibration API. Silently no-ops on unsupported platforms (desktop). No error handling or feature detection needed. Trigger Types trigger() accepts one of these strings (empty value defaults to a sensible "medium" impact): Notification (task outcomes): "success" -- form saved, payme...	586
6162	flowstudio-power-automate-monitoring	github/awesome-copilot	Power Automate Monitoring with FlowStudio MCP Monitor flow health, track failure rates, and inventory tenant assets through the FlowStudio MCP cached store — fast reads, no PA API rate limits, and enriched with governance metadata and remediation hints. Requires: A FlowStudio for Teams or MCP Pro+ subscription. Start every session with tools/list to confirm tool names and parameters. This skill covers response shapes, behavioral notes, and workflow patterns — things tools/list cannot tell you. I...	586
6163	opentui	anomalyco/opentui	OpenTUI Platform Skill Consolidated skill for building terminal user interfaces with OpenTUI. Use decision trees below to find the right framework and components, then load detailed references. Critical Rules Follow these rules in all OpenTUI code: Use create-tui for new projects. See framework README.md quick starts. create-tui options must come before arguments. bunx create-tui -t react my-app works, bunx create-tui my-app -t react does NOT. Never call process.exit() directly. Use renderer...	586
6164	react-audit-grep-patterns	github/awesome-copilot	React Audit Grep Patterns Complete scan command library for React 18.3.1 and React 19 migration audits. Usage Read the relevant section for your target: references/react18-scans.md - all scans for React 16/17 → 18.3.1 audit references/react19-scans.md - all scans for React 18 → 19 audit references/test-scans.md - test file specific scans (used by both auditors) references/dep-scans.md - dependency and peer conflict scans Base Patterns Used Across All Scans Standard flags used throughout: -r = ...	586
6165	clawd-code-python-port	aradotso/trending-skills	clawd-code Python Port Skill by ara.so — Daily 2026 Skills collection. What This Project Does clawd-code is an independent Python rewrite of the Claude Code agent harness, built from scratch for educational purposes. It captures the architectural patterns of Claude Code — tool wiring, command dispatch, task orchestration, and agent runtime context — in clean Python, without copying any proprietary TypeScript source. The project is orchestrated end-to-end using oh-my-codex (OmX) , a workflow laye...	586
6166	cloudflare-tunnel	vm0-ai/vm0-skills	Cloudflare Tunnel / Access Authentication Authenticate HTTP requests to services protected by Cloudflare Access using Service Token headers. When to Use Access internal services exposed via Cloudflare Tunnel Authenticate to Cloudflare Zero Trust protected applications Make API calls to services behind Cloudflare Access Bypass Cloudflare Access login page for automated requests Prerequisites export CF_ACCESS_CLIENT_ID=xxxxxxxxxxxxxxxxxxxxxxxxxxxxx.access export CF_ACCESS_CLIENT_SECRET=xxxxxxxxx...	586
6167	tailwind-v4	existential-birds/beagle	Tailwind CSS v4 Best Practices Quick Reference Vite Plugin Setup: // vite.config.ts import tailwindcss from '@tailwindcss/vite'; import { defineConfig } from 'vite'; export default defineConfig({ plugins: [tailwindcss()], }); CSS Entry Point: /* src/index.css */ @import 'tailwindcss'; @theme Inline Directive: @theme inline { --color-primary: oklch(60% 0.24 262); --color-surface: oklch(98% 0.002 247); } Key Differences from v3 Feature v3 v4 Configuration tailwind.config.js @theme ...	586
6168	ssrf-server-side-request-forgery	yaklang/hack-skills	SKILL: Server-Side Request Forgery (SSRF) — Expert Attack Playbook AI LOAD INSTRUCTION : Expert SSRF techniques. Covers URL filter bypass, cloud metadata endpoints, protocol exploitation, blind SSRF detection, and chaining to RCE. Base models know basic 169.254.169.254 — this file covers what they miss. For real-world CVE chains, DNS Rebinding deep dives, K8s SSRF, and SSRF → Redis → RCE full exploitation, load the companion SCENARIOS.md . 0. QUICK START Extended Scenarios Also load SCENARIOS.md...	586
6169	401-403-bypass-techniques	yaklang/hack-skills	SKILL: 401/403 Bypass Techniques — Expert Attack Playbook AI LOAD INSTRUCTION : Comprehensive 401/403 forbidden bypass techniques. Covers path normalization tricks, HTTP method override, header-based bypasses (X-Original-URL, X-Forwarded-For), protocol version tricks, and combination attacks. Base models typically know 2-3 header bypasses but miss the full matrix of path manipulation variants and verb+path combos. 0. RELATED ROUTING authbypass-authentication-flaws — broader auth bypass (login fl...	586
6170	swap-planner	uniswap/uniswap-ai	Swap Planning Plan and generate deep links for token swaps on Uniswap across all supported chains. Runtime Compatibility: This skill uses AskUserQuestion for interactive prompts. If AskUserQuestion is not available in your runtime, collect the same parameters through natural language conversation instead. Overview Plan token swaps by: Gathering swap intent (tokens, amounts, chain) Verifying token contracts on-chain Researching tokens via web search when needed Generating a deep link that opens i...	586
6171	browser-to-api	browserbase/skills	Browser to API Replay-driven API discovery. Consume a browser-trace capture, pair its CDP request / response events, templatize observed URLs, infer JSON schemas from samples, and emit an OpenAPI 3.1 document plus a human-readable coverage report. This skill does not capture traffic . It is purely offline post-processing on top of browser-trace 's cdp/network/*.jsonl buckets. The two skills compose: browser-trace → .o11y/<run>/cdp/network/{requests,responses}.jsonl browser-to-api → .o11y/...	585
6172	recover	boshu2/agentops	/recover — Context Recovery After Compaction Purpose: Help you get back up to speed after Claude Code context compaction. Automatically detects in-progress work (RPI runs, evolve cycles), loads relevant knowledge, and summarizes what you were doing and what's next. YOU MUST EXECUTE THIS WORKFLOW. Do not just describe it. CLI dependencies: gt, ao, bd — all optional. Shows what's available, skips what isn't. Quick Start /recover Full recovery dashboard /recover --json Machine-readable JSON outpu...	585
6173	flash	runpod/skills	Runpod Flash Write code locally, test with flash run (dev server at localhost:8888), and flash automatically provisions and deploys to remote GPUs/CPUs in the cloud. Endpoint handles everything. Setup pip install runpod-flash requires Python >=3.10 auth option 1: browser-based login (saves token locally) flash login auth option 2: API key via environment variable export RUNPOD_API_KEY = your_key flash init my-project scaffold a new project in ./my-project CLI flash run start local dev serve...	585
6174	feishu-cli-doc-guide	riba2534/feishu-cli	飞书文档创建规范指南 1. 概述本技能是其他飞书文档技能的参考规范，不可直接调用。整合了以下来源的验证经验： feishu-cli 项目代码实现（ converter/ 、 client/board.go 、 cmd/import_markdown.go ） feishu-cli-write 、 feishu-cli-import 、 feishu-cli-plantuml 技能的实测数据大规模导入测试：10,000+ 行 / 127 个图表 / 170+ 个表格的验证结果适用场景：生成将要导入飞书的 Markdown 文档时，参考本规范确保兼容性。 2. Markdown 语法全量参考支持的语法与 Block 类型映射 Markdown 语法 Block Type 飞书块名称说明标题 ~ 标题 3-8 Heading1-6 最多 6 级（7-9 级导出降级为粗体段落）普通段落 2 Text 纯文本 - 无序列表 12 Bullet 支持无限深度嵌套 1. 有序列表 13 Ordered 支持无限深度嵌套 - [x] / - [ ] 17 Todo 任务列表 `...	584
6175	http-parameter-pollution	yaklang/hack-skills	SKILL: HTTP Parameter Pollution (HPP) AI LOAD INSTRUCTION : Model the full request path : browser → CDN/WAF → reverse proxy → app framework → business code. Duplicate keys ( a=1&a=2 ) are not an error at HTTP level; each hop may pick first, last, join, or array-ify. Test HPP when WAF and app disagree, or when internal HTTP clients rebuild query strings. Routing note: when the same parameter appears multiple times, or WAF/backend stacks differ, use the Section 1 matrix to test first/last/merge as...	584
6176	html	mindrally/skills	HTML Development Guidelines Core Principles Write semantic HTML to improve accessibility and SEO Use appropriate elements for their intended purpose Ensure proper document structure and hierarchy Prioritize accessibility by using ARIA roles and attributes when needed Semantic Elements Document Structure Use <header> for introductory content and navigation Use <main> for the primary content (one per page) Use <footer> for footer content Use <nav> for navigation sections Use <aside> for tangential...	584
6177	exploring-data-catalog	aws/agent-toolkit-for-aws	Structured inventory and cataloging across your AWS data landscape: Glue Data Catalog with S3 Tables, Redshift-federated, and remote Iceberg catalogs. Overview Maps data in an AWS account. Starts with catalog landscape (Glue, S3 Tables, federated), then drills into databases and tables. Read-only — no query execution. Constraints for parameter acquisition: You MUST ask for the target AWS region upfront if not provided You MUST support a single optional argument: search term, catalog name, databa...	584
6178	go-performance	cxuu/golang-skills	Go Performance Patterns Source: Uber Go Style Guide Performance-specific guidelines apply only to the hot path. Don't prematurely optimize—focus these patterns where they matter most. Prefer strconv over fmt When converting primitives to/from strings, strconv is faster than fmt. Source: Uber Go Style Guide Bad: for i := 0; i < b.N; i++ { s := fmt.Sprint(rand.Int()) } Good: for i := 0; i < b.N; i++ { s := strconv.Itoa(rand.Int()) } Benchmark comparison: Approach Speed Allocat...	584
6179	valtio-define	hairyf/skills	Based on valtio-define v1.0.1. A Valtio-based state management library with Pinia-like API for React applications. Overview valtio-define provides a factory function for creating reactive stores with state, actions, and getters. Built on top of Valtio, it offers a familiar API similar to Pinia with full TypeScript support. Core References \| defineStore \| Core API for creating reactive stores \| [core-define-store](https://github.com/hairyf/skills/blob/main/skills/valtio-define/references/...	583
6180	flowstudio-power-automate-governance	github/awesome-copilot	Power Automate Governance with FlowStudio MCP Classify, tag, and govern Power Automate flows at scale through the FlowStudio MCP cached store — without Dataverse, without the CoE Starter Kit, and without the Power Automate portal. This skill uses update_store_flow to write governance metadata and the monitoring tools ( list_store_flows , get_store_flow , list_store_makers , etc.) to read tenant state. For monitoring and health-check workflows, see the flowstudio-power-automate-monitoring skill. ...	583
6181	cisco-ios-patterns	affaan-m/everything-claude-code	Cisco IOS Patterns Use this skill when reviewing Cisco IOS or IOS-XE snippets, building a change-window checklist, or explaining how to collect evidence from a router or switch without making the incident worse. When to Use Reviewing IOS or IOS-XE configuration before a planned change. Choosing read-only show commands for troubleshooting. Checking ACL wildcard masks and interface direction. Explaining global, interface, routing process, and line configuration modes. Verifying that a change lande...	583
6182	complexity	boshu2/agentops	Complexity Skill YOU MUST EXECUTE THIS WORKFLOW. Do not just describe it. Analyze code complexity to identify refactoring targets. Execution Steps Given /complexity [path] : Step 1: Determine Target If path provided: Use it directly. If no path: Use current directory or recent changes: git diff --name-only HEAD~5 2 > /dev/null \| grep -E '\.(py\|go)$' \| head -10 Step 2: Detect Language Check for Python files ls .py /.py 2 > /dev/null \| head -1 && echo "Python detected" Check for Go files ls *....	583
6183	aws-amplify	aws/agent-toolkit-for-aws	AWS Amplify Gen2 Build and deploy full-stack applications using AWS Amplify Gen2's TypeScript code-first approach. This skill covers backend resource creation, frontend integration across 8 frameworks, and deployment workflows. Prerequisites Node.js ^18.19.0 \|\| ^20.6.0 \|\| >=22 and npm AWS credentials configured ( aws sts get-caller-identity succeeds) For sandbox: npx ampx --version returns a valid version For mobile: Platform-specific tooling (Xcode, Android Studio, Flutter SDK) Defaults & Assum...	583
6184	freecad-scripts	github/awesome-copilot	FreeCAD Scripts Expert skill for generating production-quality Python scripts for the FreeCAD CAD application. Interprets shorthand, quasi-code, and natural language descriptions of 3D modeling tasks and translates them into correct FreeCAD Python API calls. When to Use This Skill Writing Python scripts for FreeCAD's built-in console or macro system Creating or manipulating 3D geometry (Part, Mesh, Sketcher, Path, FEM) Building parametric FeaturePython objects with custom properties Developing G...	583
6185	mvp	slavingia/skills	You are a business advisor channeling the philosophy of The Minimalist Entrepreneur by Sahil Lavingia. Help the user build their MVP with maximum constraints and minimum effort. Core Principle Build as little as possible. The goal is to start delivering value to your community as quickly as possible. Not to build something beautiful, polished, or complete. The Three Stages Stage 1: Manual (Do it yourself) Solve the problem by hand for each customer You are the product. You are customer service, ...	583
6186	excalidraw	davila7/claude-code-templates	Excalidraw Subagent Delegation Overview Core principle: Main agents NEVER read Excalidraw files directly. Always delegate to subagents to isolate context consumption. Excalidraw files are JSON with high token cost but low information density. Single files range from 4k-22k tokens (largest can exceed read tool limits). Reading multiple diagrams quickly exhausts context budget (7 files = 67k tokens = 33% of budget). The Problem Excalidraw JSON structure: Each shape has 20+ properties (x, y, w...	583
6187	hono-routing	jezweb/claude-skills	Hono Routing & Middleware Status: Production Ready ✅ Last Updated: 2026-01-20 Dependencies: None (framework-agnostic) Latest Versions: hono@4.11.4, zod@4.3.5, valibot@1.2.0, @hono/zod-validator@0.7.6, @hono/valibot-validator@0.6.1 Quick Start (15 Minutes) 1. Install Hono npm install hono@4.11.4 Why Hono: Fast: Built on Web Standards, runs on any JavaScript runtime Lightweight: ~10KB, no dependencies Type-safe: Full TypeScript support with type inference Flexible: Works on Cloudflare Workers...	582
6188	gws-alertcenter	googleworkspace/cli	alertcenter (v1beta1) PREREQUISITE: Read ../gws-shared/SKILL.md for auth, global flags, and security rules. If missing, run gws generate-skills to create it. gws alertcenter < resource > < method > [ flags ] API Resources alerts batchDelete — Performs batch delete operation on alerts. batchUndelete — Performs batch undelete operation on alerts. delete — Marks the specified alert for deletion. An alert that has been marked for deletion is removed from Alert Center after 30 days. Marking an alert ...	582
6189	ai-daily-digest	vigorx777/ai-daily-digest	AI Daily Digest 从 Karpathy 推荐的 90 个热门技术博客中抓取最新文章，通过 AI 评分筛选，生成每日精选摘要。命令 /digest 运行每日摘要生成器。使用方式 : 输入 /digest ，Agent 通过交互式引导收集参数后执行。脚本目录重要 : 所有脚本位于此 skill 的 scripts/ 子目录。 Agent 执行说明 : 确定此 SKILL.md 文件的目录路径为 SKILL_DIR 脚本路径 = ${SKILL_DIR}/scripts/<script-name>.ts 脚本用途 scripts/digest.ts 主脚本 - RSS 抓取、AI 评分、生成摘要配置持久化配置文件路径: ~/.hn-daily-digest/config.json Agent 在执行前必须检查此文件是否存在：如果存在，读取并解析 JSON 询问用户是否使用已保存配置执行完成后保存当前配置到此文件配置文件结构 : { "geminiApiKey" : "" , "timeRange" : 48 , "topN" : 15 , "langua...	582
6190	distill-memory	nowledge-co/community	Distill Memory Capture breakthrough moments and valuable insights as searchable memories in your knowledge base. When to Suggest Breakthrough moments: Extended debugging finally resolves User relief signals ("Finally!", "Aha!", "That was it!") Root cause discovered after investigation Important decisions: Compared multiple options Chose with clear rationale Trade-off resolved with reasoning Research conclusions: Investigated multiple approaches Reached definitive conclusion Optimal path determin...	582
6191	network-interface-health	affaan-m/everything-claude-code	Network Interface Health Use this skill when a network symptom might be caused by a physical link, switch port, cable, transceiver, duplex setting, or congested interface. When to Use A host or VLAN has packet loss, latency spikes, or intermittent reachability. A switch or router interface shows CRCs, runts, giants, drops, resets, or flaps. You need to compare both ends of a link before replacing hardware. A change window needs before/after interface counter evidence. Monitoring reports rising i...	582
6192	vibe	boshu2/agentops	Vibe Skill Purpose: Is this code ready to ship? Three steps: Complexity analysis — Find hotspots (radon, gocyclo) Bug hunt audit — Systematic sweep for concrete bugs Council validation — Multi-model judgment Quick Start /vibe validates recent changes /vibe recent same as above /vibe src/auth/ validates specific path /vibe --quick recent fast inline check, no agent spawning /vibe --deep recent 3 judges instead of 2 /vibe --sweep recent deep audit: per-file explorers + council /vibe --mixed ...	582
6193	trace	boshu2/agentops	Trace Skill Quick Ref: Trace design decisions through CASS sessions, handoffs, git, and artifacts. Output: .agents/research/YYYY-MM-DD-trace-*.md YOU MUST EXECUTE THIS WORKFLOW. Do not just describe it. When to Use Trace HOW architectural decisions evolved Find WHEN a concept was introduced Understand WHY something was designed a certain way Build provenance chain for design decisions For knowledge artifact lineage (learnings, patterns, tiers), use /provenance instead. CLI dependencies: cass (se...	582
6194	adr-drafting	giuseppe-trisciuoglio/developer-kit	ADR Drafting Creates new Architecture Decision Record (ADR) documents for major architectural choices so teams can keep a clear history of why important technical decisions were made. Overview This skill helps create a new ADR from discovery to final markdown file. It confirms the decision details, inspects the repository for any existing ADR conventions, and drafts a new ADR with the standard sections Title , Status , Context , Decision , and Consequences . When the repository does not already ...	582
6195	mongodb-natural-language-querying	mongodb/agent-skills	MongoDB Natural Language Querying You are an expert MongoDB read-only query generator. When a user requests a MongoDB query or aggregation pipeline, follow these guidelines based on the Compass query generation patterns. Query Generation Process 1. Gather Context Using MCP Tools Required Information: Database name and collection name (use mcp__mongodb__list-databases and mcp__mongodb__list-collections if not provided) User's natural language description of the query Current date context: ${curre...	582
6196	business-logic-vuln	yaklang/hack-skills	Business Logic Router This is the routing entry point for business-logic and state-machine issues. When to Use The target involves coupons, inventory, payment, approvals, quotas, invites, trials, or state transitions The issue is not parser-level; it is about when checks happen and which business conditions are checked You suspect race conditions, workflow bypass, price tampering, negative values, stacked discounts, or multi-step flaws Skill Map Business Logic Vulnerabilities Recommended Flow Fi...	582
6197	xxe-xml-external-entity	yaklang/hack-skills	SKILL: XML External Entity Injection (XXE) — Expert Attack Playbook AI LOAD INSTRUCTION : Expert XXE techniques. Covers all injection contexts (SOAP, REST JSON→XML parsers, Office files, SVG), OOB exfiltration (critical when direct read fails), blind XXE detection, and XXE-to-SSRF chain. Base models often miss OOB and non-XML context XXE. For real-world CVE chains, Office docx XXE step-by-step, PHP expect:// RCE, and Solr XXE+RCE, load the companion SCENARIOS.md . 0. RELATED ROUTING Also load: u...	582
6198	graphql-and-hidden-parameters	yaklang/hack-skills	SKILL: GraphQL and Hidden Parameters — Introspection, Batching, and Undocumented Fields AI LOAD INSTRUCTION : Use this skill when GraphQL exists or when REST documentation suggests optional, deprecated, or undocumented fields. Focus on schema discovery, hidden parameter abuse, and batching as a force multiplier. 1. GRAPHQL FIRST PASS query { __typename } query { __schema { types { name } } } If introspection is restricted, continue with: field suggestions and error-based discovery known type pro...	582
6199	posthog-analytics	alinaqi/claude-bootstrap	PostHog Analytics Skill Load with: base.md + [framework].md For implementing product analytics with PostHog - event tracking, user identification, feature flags, and project-specific dashboards. Sources: PostHog Docs \| Product Analytics \| Feature Flags Philosophy Measure what matters, not everything. Analytics should answer specific questions: Are users getting value? (activation, retention) Where do users struggle? (funnels, drop-offs) What features drive engagement? (feature usage) Is t...	582
6200	cypress-author	cypress-io/ai-toolkit	Cypress Author Use this skill when: The user wants to create, add, or write tests (including component tests or tests for a file); fix or update tests; or change test code. Use this skill even if they only say "tests" and do not mention Cypress, or if they mention cy.* (the word "cy", a period, and a suffix indicating a Cypress command). Do NOT use this skill when: The user states they do not want to use Cypress; when the user mentions an alternative testing tool without referencing migrating to...	582

← 1 ... 122 123 124 125 126 ... 462 → 23097 skills