███████╗██╗ ██╗██╗██╗ ██╗ ██████╗ █████╗ ███╗ ██╗██╗ ██╗
██╔════╝██║ ██╔╝██║██║ ██║ ██╔══██╗██╔══██╗████╗ ██║██║ ██╔╝
███████╗█████╔╝ ██║██║ ██║ ██████╔╝███████║██╔██╗ ██║█████╔╝
╚════██║██╔═██╗ ██║██║ ██║ ██╔══██╗██╔══██║██║╚██╗██║██╔═██╗
███████║██║ ██╗██║███████╗███████╗ ██║ ██║██║ ██║██║ ╚████║██║ ██╗
╚══════╝╚═╝ ╚═╝╚═╝╚══════╝╚══════╝ ╚═╝ ╚═╝╚═╝ ╚═╝╚═╝ ╚═══╝╚═╝ ╚═╝
Agent Skills 排行榜 · 关键词 + 语义搜索
| # | Skill | 仓库 | 描述 | 安装量 |
|---|---|---|---|---|
| 4001 | db-migrate | medusajs/medusa-agent-skills |
Run Database Migrations Execute the Medusa database migration command to apply pending migrations. Use the Bash tool to execute: npx medusa db:migrate Report the migration results to the user, including: Number of migrations applied Any errors that occurred Success confirmation
|
1.9K |
| 4002 | behavioral-product-design | refoundai/lenny-skills |
Behavioral Product Design Help the user apply behavioral science principles to product design using insights from behavioral economists and product leaders. How to Help When the user asks for help with behavioral design: Understand the target behavior - Ask what action they want users to take Identify behavioral barriers - Help diagnose what's preventing the desired behavior Suggest relevant principles - Apply behavioral economics concepts like loss aversion, present bias, or status quo effect D...
|
1.9K |
| 4003 | sales-qualification | refoundai/lenny-skills |
Sales Qualification Help the user qualify sales leads effectively using frameworks from 1 product leader. How to Help When the user asks for help with sales qualification: Understand current process - Ask how they currently decide which leads to pursue Identify disqualification criteria - Help them define what makes a lead NOT worth pursuing Design discovery questions - Create questions that efficiently reveal fit Build a qualification framework - Help them systematize qualification decisions Co...
|
1.9K |
| 4004 | integrate-atlas-chat | cognitedata/builder-skills |
Integrate Atlas Agent Chat Add a streaming Atlas Agent chat UI to this Flows app. Agent external ID: $ARGUMENTS Dependencies The atlas-agent library files (copied in Step 2) require these npm packages: Package Version @sinclair/typebox ^0.33.0 ajv ^8.17.1 ajv-formats ^2.1.1 @cognite/sdk is assumed to already be present in Flows apps. Show more
|
1.9K |
| 4005 | dm-limits-and-best-practices | cognitedata/builder-skills |
CDF Data Modeling: Limits, Concurrency & Best Practices This is a reference skill. When writing or reviewing code that calls CDF Data Modeling APIs, apply the patterns below. DMS Limits Reference For the latest concurrency limits, resource limits, and property value limits, see the official documentation: https://docs.cognite.com/cdf/dm/dm_reference/dm_limits_and_restrictions Key things to be aware of: Instance apply , delete , and query operations each have their own concurrent request limits E...
|
1.9K |
| 4006 | observe-whatsapp | gokapso/agent-skills |
Use this skill for operational diagnostics: message delivery investigation, webhook delivery debugging, error triage, and WhatsApp health checks. Setup Env vars: - `KAPSO_API_BASE_URL` (host only, no `/platform/v1`) - `KAPSO_API_KEY` How to Investigate message delivery - List messages: `node scripts/messages.js --phone-number-id <id>` - Inspect message: `node scripts/message-details.js --message-id <id>` - Find conversation: `node scripts/lookup-conversation.js --phone-number <e164>`...
|
1.9K |
| 4007 | draft-content | anthropics/knowledge-work-plugins |
Draft Content If you see unfamiliar placeholders or need to check which tools are connected, see CONNECTORS.md . Generate marketing content drafts tailored to a specific content type, audience, and brand voice. Trigger User runs /draft-content or asks to draft, write, or create marketing content. Inputs Gather the following from the user. If not provided, ask before proceeding: Content type — one of: Blog post Social media post (specify platform: LinkedIn, Twitter/X, Instagram, Facebook) Email n...
|
1.9K |
| 4008 | process-doc | anthropics/knowledge-work-plugins |
/process-doc If you see unfamiliar placeholders or need to check which tools are connected, see CONNECTORS.md . Document a business process as a complete standard operating procedure (SOP). Usage /process-doc $ARGUMENTS How It Works Walk me through the process — describe it, paste existing docs, or just tell me the name and I'll ask the right questions. I'll produce a complete SOP. Output Process Document: [Process Name] Owner: [Person/Team] | Last Updated: [Date] | Review Cadence: [Quart...
|
1.9K |
| 4009 | yeet | openai/skills |
Prerequisites Require GitHub CLI gh . Check gh --version . If missing, ask the user to install gh and stop. Require authenticated gh session. Run gh auth status . If not authenticated, ask the user to run gh auth login (and re-run gh auth status ) before continuing. Naming conventions Branch: {description} when starting from main/master/default. Commit: {description} (terse). PR title: {description} summarizing the full diff. PR template discovery Before creating the PR, resolve the repository r...
|
1.9K |
| 4010 | humanizer | daleseo/korean-skills |
Humanizer: Remove AI Writing Patterns You are a writing editor that identifies and removes signs of AI-generated text to make writing sound more natural and human. This guide is based on Wikipedia's "Signs of AI writing" page, maintained by WikiProject AI Cleanup. Your Task When given text to humanize: Identify AI patterns - Scan for the patterns listed below Rewrite problematic sections - Replace AI-isms with natural alternatives Preserve meaning - Keep the core message intact Maintain voice - ...
|
1.9K |
| 4011 | policy-lookup | anthropics/knowledge-work-plugins |
/policy-lookup If you see unfamiliar placeholders or need to check which tools are connected, see CONNECTORS.md . Look up and explain company policies in plain language. Answer employee questions about policies, benefits, and procedures by searching connected knowledge bases or using provided handbook content. Usage /policy-lookup $ARGUMENTS Search for policies matching: $ARGUMENTS How It Works ┌─────────────────────────────────────────────────────────────────┐ │ POLICY LOOKUP...
|
1.9K |
| 4012 | comp-analysis | anthropics/knowledge-work-plugins |
/comp-analysis If you see unfamiliar placeholders or need to check which tools are connected, see CONNECTORS.md . Analyze compensation data for benchmarking, band placement, and planning. Helps benchmark compensation against market data for hiring, retention, and equity planning. Usage /comp-analysis $ARGUMENTS What I Need From You Option A: Single role analysis "What should we pay a Senior Software Engineer in SF?" Option B: Upload comp data Upload a CSV or paste your comp bands. I'll analyze p...
|
1.9K |
| 4013 | metrics-review | anthropics/knowledge-work-plugins |
Metrics Review If you see unfamiliar placeholders or need to check which tools are connected, see CONNECTORS.md . Review and analyze product metrics, identify trends, and surface actionable insights. Usage /metrics-review $ARGUMENTS Workflow 1. Gather Metrics Data If ~~product analytics is connected: Pull key product metrics for the relevant time period Get comparison data (previous period, same period last year, targets) Pull segment breakdowns if available If no analytics tool is connected, as...
|
1.9K |
| 4014 | setup-flows-auth | cognitedata/builder-skills |
Set Up Flows Authentication Wire a React app for Flows auth so it can talk to CDF inside Fusion. Two flows exist; pick one based on app.json . Pick the flow Read app.json if present: app.json infra Flow Auth source Extra package "appsApi" Apps API (new Fusion app host) connectToHostApp from @cognite/app-sdk @cognite/app-sdk missing / other Classic (legacy Files API) DuneAuthProvider + useDune() from @cognite/dune — No app.json ? Ask the user. Default to Apps API — it's the default for npx @cogni...
|
1.9K |
| 4015 | security | cognitedata/builder-skills |
Security Architecture Diagram Generator Quick Start: Define trust boundaries → Place identity/encryption/firewall icons → Connect with access flows → Group into security zones → Wrap in ```plantuml fence. ⚠️ IMPORTANT: Always use ```plantuml or ```puml code fence. NEVER use ```text — it will NOT render as a diagram. Critical Rules Every diagram starts with @startuml and ends with @enduml Use left to right direction for access flows (User → AuthN → AuthZ → Resource) Use mxgraph.aws4.* stencil syn...
|
1.9K |
| 4016 | influence-and-negotiation | samber/cc-skills |
Persona: You are a senior negotiation coach. Negotiation is preparation × discovery × discipline — not charm. Walk away early, anchor late, never split the difference. Same toolkit for sales, salary, annual collective bargaining, hard 1:1s, cross-cultural, and recruitment. Thinking mode: Use ultrathink for live-stakes strategy and lost-outcome debriefs. Multi-move planning (what they say → what I say → what they say back) wins; shallow reasoning costs deals, raises, and trust. Modes: Mode Trigge...
|
1.9K |
| 4017 | second-brain-ingest | nicholasspisak/second-brain |
Second Brain — Ingest Process raw source documents into structured, interlinked wiki pages. Identify Sources to Process Determine which files need ingestion: If the user specifies a file or files, use those If the user says "process new sources" or similar, detect unprocessed files: List all files in raw/ (excluding raw/assets/ ) Read wiki/log.md and extract all previously ingested source filenames from ingest entries Any file in raw/ not listed in the log is unprocessed If no unprocessed files ...
|
1.9K |
| 4018 | sentry | openai/skills |
Sentry (Read-only Observability) Quick start If not already authenticated, ask the user to provide a valid SENTRY_AUTH_TOKEN (read-only scopes such as project:read , event:read ) or to log in and create one before running commands. Set SENTRY_AUTH_TOKEN as an env var. Optional defaults: SENTRY_ORG , SENTRY_PROJECT , SENTRY_BASE_URL . Defaults: org/project {your-org} / {your-project} , time range 24h , environment prod , limit 20 (max 50). Always call the Sentry API (no heuristics, no caching). I...
|
1.9K |
| 4019 | vendor-check | anthropics/knowledge-work-plugins |
/vendor-check -- Vendor Agreement Status If you see unfamiliar placeholders or need to check which tools are connected, see CONNECTORS.md . Check the status of existing agreements with a vendor across all connected systems. Provides a consolidated view of the legal relationship. Important : This command assists with legal workflows but does not provide legal advice. Agreement status reports should be verified against original documents by qualified legal professionals. Invocation /vendor-check [...
|
1.9K |
| 4020 | call-summary | anthropics/knowledge-work-plugins |
/call-summary If you see unfamiliar placeholders or need to check which tools are connected, see CONNECTORS.md . Process call notes or a transcript to extract action items, draft follow-up communications, and update records. Usage /call-summary <notes or transcript> Process these call notes: $ARGUMENTS If a file is referenced: @$1 How It Works ┌─────────────────────────────────────────────────────────────────┐ │ CALL SUMMARY │ ├────────────────...
|
1.9K |
| 4021 | stakeholder-update | anthropics/knowledge-work-plugins |
Stakeholder Update If you see unfamiliar placeholders or need to check which tools are connected, see CONNECTORS.md . Generate a stakeholder update tailored to the audience and cadence. Usage /stakeholder-update $ARGUMENTS Workflow 1. Determine Update Type Ask the user what kind of update: Weekly : Regular cadence update on progress, blockers, and next steps Monthly : Higher-level summary with trends, milestones, and strategic alignment Launch : Announcement of a feature or product launch with d...
|
1.9K |
| 4022 | tiptap | ueberdosis/tiptap |
Tiptap Integration Skill Instructions for coding agents integrating the Tiptap rich text editor Reference Repositories Clone the tiptap and tiptap-docs repositories so you can search the source code and documentation. https://github.com/ueberdosis/tiptap https://github.com/ueberdosis/tiptap-docs If the workspace already has a reference folder with other repositories, clone them there. Otherwise, clone the repositories in a new .reference folder. The reference folder should be git-ignored. Before...
|
1.9K |
| 4023 | clean-code-guard | amelnagdy/guard-skills |
clean-code-guard You are reviewing generated or changed code before it ships. Apply the rules below as a guard pass after the first implementation pass. If the user explicitly invokes this skill before writing code, use the same rules while writing and still run the self-check before delivery. Compatibility This is a portable instruction skill. It requires no MCP server, network access, API key, shell command, local executable, or bundled script. It can be used in any runtime that supports SKILL...
|
1.9K |
| 4024 | setup-python-tools | cognitedata/builder-skills |
Set Up Python Tool Execution Add client-side Python tool execution via Pyodide to this Flows app. Target: $ARGUMENTS Prerequisite integrate-atlas-chat must already be complete: the app should have vendored atlas-agent code under src/atlas-agent/ (including react.ts for useAtlasChat ) and the peer dependencies from that skill ( @sinclair/typebox , ajv , ajv-formats ). Copy the Python-related modules from the integrate-atlas-chat skill code/ directory into src/atlas-agent/ when adding Pyodide ( py...
|
1.9K |
| 4025 | change-request | anthropics/knowledge-work-plugins |
/change-request If you see unfamiliar placeholders or need to check which tools are connected, see CONNECTORS.md . Create a structured change request with impact analysis, risk assessment, and rollback plan. Usage /change-request $ARGUMENTS Change Management Framework Apply the assess-plan-execute-sustain framework when building the request: 1. Assess What is changing? Who is affected? How significant is the change? (Low / Medium / High) What resistance should we expect? 2. Plan Communication pl...
|
1.9K |
| 4026 | chrome-cdp | pasky/chrome-cdp-skill |
Chrome CDP Lightweight Chrome DevTools Protocol CLI. Connects directly via WebSocket — no Puppeteer, works with 100+ tabs, instant connection. Prerequisites Chrome with remote debugging enabled: open chrome://inspect/remote-debugging and toggle the switch Node.js 22+ (uses built-in WebSocket) Commands All commands use scripts/cdp.mjs . The <target> is a unique targetId prefix from list ; copy the full prefix shown in the list output (for example 6BE827FA ). The CLI rejects ambiguous prefixes. Li...
|
1.9K |
| 4027 | multi-agent-orchestration | qodex-ai/ai-agent-skills |
Multi-Agent Orchestration Design and orchestrate sophisticated multi-agent systems where specialized agents collaborate to solve complex problems, combining different expertise and perspectives. Quick Start Get started with multi-agent implementations in the examples and utilities: Examples: See examples/ directory for complete implementations: orchestration_patterns.py - Sequential, parallel, hierarchical, and consensus orchestration framework_implementations.py - Templates for CrewAI, Aut...
|
1.9K |
| 4028 | kibana-dashboards | elastic/agent-skills |
Kibana Dashboards and Visualizations Overview The Kibana dashboards and visualizations APIs provide a declarative, Git-friendly format for defining dashboards and visualizations. Definitions are minimal, diffable, and suitable for version control and LLM-assisted generation. Key Benefits: Minimal payloads (no implementation details or derivable properties) Easy to diff in Git Consistent patterns for GitOps workflows Designed for LLM one-shot generation Robust validation via OpenAPI spec Version ...
|
1.9K |
| 4029 | frontend-design | sickn33/antigravity-awesome-skills |
This skill guides creation of distinctive, production-grade frontend interfaces that avoid generic "AI slop" aesthetics. Implement real working code with exceptional attention to aesthetic details and creative choices. The user provides frontend requirements: a component, page, application, or interface to build. They may include context about the purpose, audience, or technical constraints. Design Thinking Before coding, understand the context and commit to a BOLD aesthetic direction: Purpose :...
|
1.9K |
| 4030 | second-brain-query | nicholasspisak/second-brain |
Second Brain — Query Answer questions by searching and synthesizing knowledge from the wiki. Search Strategy 1. Start with the index Read wiki/index.md to identify relevant pages. Scan all category sections (Sources, Entities, Concepts, Synthesis) for entries related to the question. 2. Use qmd for large wikis If qmd is installed (check with command -v qmd ), use it for search: qmd search "query terms" --path wiki/ This is especially useful when the wiki has grown beyond ~100 pages where scannin...
|
1.9K |
| 4031 | ssrf-server-side-request-forgery | yaklang/hack-skills |
SKILL: Server-Side Request Forgery (SSRF) — Expert Attack Playbook AI LOAD INSTRUCTION : Expert SSRF techniques. Covers URL filter bypass, cloud metadata endpoints, protocol exploitation, blind SSRF detection, and chaining to RCE. Base models know basic 169.254.169.254 — this file covers what they miss. For real-world CVE chains, DNS Rebinding deep dives, K8s SSRF, and SSRF → Redis → RCE full exploitation, load the companion SCENARIOS.md . 0. QUICK START Extended Scenarios Also load SCENARIOS.md...
|
1.9K |
| 4032 | lh-notice-search | nomadamas/k-skill |
LH 청약 공고문 조회 What this skill does 한국토지주택공사(LH)가 apply.lh.or.kr 로 공고하는 임대주택·분양주택·주거복지(신혼희망타운 등)·토지·상가 공고 를 공공데이터포털( data.go.kr )의 공식 LH 공고 Open API로 조회한다. 요청은 k-skill-proxy 의 /v1/lh-notice/* 라우트로 보내고, 결과는 공고 목록·공고 상세(주택형별 공급 정보)로 정리한다. 본 스킬은 사회초년생, 청년, 신혼부부처럼 LH 공고 존재 자체를 모르는 사용자 가 공고 마감 전에 공고문을 빠르게 찾을 수 있도록 돕는다. When to use "LH 영구임대 공고 지금 뭐 올라와 있어?" "신혼희망타운 공고 요즘 나온 거 정리해줘" "부산광역시 LH 임대주택 공고중인 것 보여줘" "전세임대 공고 중 마감 임박한 거 찾아줘" "공고번호 2015122300019828 상세 정보 보여줘" "행복주택 청년 모집 공고 요약해줘" When not to use ...
|
1.9K |
| 4033 | redis-best-practices | mindrally/skills |
Redis Best Practices Core Principles Use Redis for caching, session storage, real-time analytics, and message queuing Choose appropriate data structures for your use case Implement proper key naming conventions and expiration policies Design for high availability and persistence requirements Monitor memory usage and optimize for performance Key Naming Conventions Use colons as namespace separators Include object type and identifier in key names Keep keys short but descriptive Use consistent nami...
|
1.9K |
| 4034 | godot-ui | zate/cc-godot |
You are a Godot UI/UX expert with deep knowledge of Godot's Control node system, theme customization, responsive design, and common game UI patterns. Core UI Knowledge Control Node Hierarchy Base Control Node Properties: anchor_*: Positioning relative to parent edges (0.0 to 1.0) offset_*: Pixel offset from anchor points size_flags_*: How the node should grow/shrink custom_minimum_size: Minimum size constraints mouse_filter: Control mouse input handling (STOP, PASS, IGNORE) focus_mode: Keyboa...
|
1.9K |
| 4035 | db-generate | medusajs/medusa-agent-skills |
Generate Database Migrations Generate database migrations for the specified Medusa module. The user will provide the module name as an argument (e.g., brand , product , custom-module ). For example: /medusa-dev:db-generate brand Use the Bash tool to execute the command npx medusa db:generate <module-name> , replacing <module-name> with the provided argument. Report the results to the user, including: The module name for which migrations were generated Migration file name or location Any errors o...
|
1.9K |
| 4036 | recon-and-methodology | yaklang/hack-skills |
SKILL: Recon and Methodology — Expert Bug Bounty Playbook AI LOAD INSTRUCTION : Systematic recon and bug-finding methodology from top bug hunters. Covers subdomain enumeration, endpoint discovery, tech fingerprinting, and the hunter's mental model for finding bugs that others miss. Key insight: most high-severity bugs are found through systematic coverage, not just clever payloads. 1. RECON HIERARCHY Target Selection └── Scope Definition (in-scope assets) └── Asset Discovery (subdomains, IPs, do...
|
1.9K |
| 4037 | catchtable-sniper | nomadamas/k-skill |
catchtable-sniper 📋 기본 정보 스킬명 : catchtable-sniper 라이선스 : MIT 단계 : v1 카테고리 : lifestyle / food 로케일 : ko-KR 요구사항 : Chrome MCP, 캐치테이블 로그인된 Chrome 세션 🎯 주요 기능 캐치테이블에서 원하는 식당의 빈자리(취소 슬롯)를 30초 간격으로 감시하다가 발견하는 즉시 자동 예약합니다. 멀티 타겟 동시 감시, 예약 오픈런 모드, 인원 유연 매칭, Dry-run 알림 전용 모드를 지원합니다. ✅ 적합한 사용 사례 "온지음 5월 토요일 저녁 2인 빈자리 나오면 예약해줘" "온지음, 밍글스, 라연 중 5월 주말 2인 아무데나 먼저 뜨는 거 잡아줘" ← 멀티 타겟 "라연 5월 예약 오픈이 4월 30일 오전 10시야, 그때 맞춰서 잡아줘" ← 오픈런 모드 "스시야마 이번달 안에 2인 — 못 잡으면 4인 있으면 알려줘" ← 인원 유연 "밍글스 빈자리 뜨면 예약은 내가 할게 알림만 줘" ← Dry-ru...
|
1.9K |
| 4038 | korean-slang-writing | nomadamas/k-skill |
Korean Slang Writing What this skill does 사용자가 "유행어 섞어서", "요즘 말투로", "밈스럽게", "재치있게" 같은 요청을 했을 때, 검증된 한국 유행어 후보 를 먼저 뽑고 필요하면 나무위키 원문 요약을 확인해 한국어 문장·홍보문·SNS 게시글·댓글을 유행어 느낌으로 작성한다. 스킬은 데이터와 조회 도구 만 제공한다: 큐레이션된 시드 인덱스 검색 + 나무위키 best-effort 요약. 실제 문장 작성은 에이전트(LLM) 가 스킬이 돌려준 후보 중에서 사용자 의도에 맞는 표현을 골라 한다. 시드 인덱스 출처는 나무위키 분류:유행어 를 기준으로 수작업 큐레이션한다. risky 수준의 혐오·차별·집단 조롱 가능성이 있는 표현은 시드에 넣지 않는다. When to use "SNS 홍보 글 유행어 섞어서 써줘" "댓글을 요즘 말투로 바꿔줘" "밈스럽게 / MZ스럽게 / 재치있게 써줘" "이 유행어가 무슨 뜻이야?" (시드 인덱스 + 나무위키 lookup...
|
1.9K |
| 4039 | graph-viewer | cognitedata/builder-skills |
Graph Viewer Use This When The user wants to embed an interactive graph of a CDF data model — nodes, direct relations, edges, and reverse relations — inside a Flows app. Do not use this skill for static diagrams, pure dataflow visualizations, or non-CDF graphs. Prerequisites The app is wrapped in @cognite/dune 's <DuneProvider> so useDune() returns an authenticated SDK. The target data model exists in CDF and you know its space , externalId , and version . The app uses React 18+ and TypeScript. ...
|
1.9K |
| 4040 | frontend-design-deslop | samber/cc-skills |
frontend design deslop AI-generated UI looks generic for two reasons. First, with no constraints the model samples the statistical median of 2019-2024 web code, which is Tailwind UI's bg-indigo-500 , Inter, rounded cards, and soft shadows. You cannot out-prompt a vacuum. Second, and deeper: designing before you know what you are designing. A corporate landing page, a creative portfolio, a developer-tool landing page, an analytics dashboard, and an ecommerce product page share almost no design DN...
|
1.9K |
| 4041 | csv-data-summarizer | coffeefuelbump/csv-data-summarizer-claude-skill |
CSV Data Summarizer This Skill analyzes CSV files and provides comprehensive summaries with statistical insights and visualizations. When to Use This Skill Claude should use this Skill whenever the user: Uploads or references a CSV file Asks to summarize, analyze, or visualize tabular data Requests insights from CSV data Wants to understand data structure and quality How It Works ⚠️ CRITICAL BEHAVIOR REQUIREMENT ⚠️ DO NOT ASK THE USER WHAT THEY WANT TO DO WITH THE DATA. DO NOT OFFER OPTIONS...
|
1.9K |
| 4042 | api-recon-and-docs | yaklang/hack-skills |
SKILL: API Recon and Docs — Endpoints, Schemas, and Version Surface AI LOAD INSTRUCTION : Use this skill first when the target is a REST, mobile, or GraphQL API and you need to enumerate endpoints, documentation, versions, and hidden surface area before exploitation. 1. PRIMARY GOALS Discover all reachable API entrypoints. Extract schemas, optional fields, and role differences. Identify old versions, mobile paths, GraphQL endpoints, and undocumented parameters. 2. RECON CHECKLIST JavaScript and ...
|
1.9K |
| 4043 | agent-hooks | starchild-ai-agent/official-skills |
Agent Hooks Shell hooks let a user run their own script at fixed points in the agent's lifecycle — to block a dangerous action, rewrite an input or an outbound message, inject context into the model, or warn the user . The script can be written in any language; it talks to the agent over a simple JSON-on-stdin, JSON-on-stdout protocol. Tools: read_file , write_file , bash When to use Reach for hooks when the user wants the agent to automatically enforce a rule or react to an event without being ...
|
1.9K |
| 4044 | deep-research | bytedance/deer-flow |
Deep Research Core System Instructions Purpose: Deliver citation-backed, verified research reports through 8-phase pipeline (Scope → Plan → Retrieve → Triangulate → Synthesize → Critique → Refine → Package) with source credibility scoring and progressive context management. Context Strategy: This skill uses 2025 context engineering best practices: Static instructions cached (this section) Progressive disclosure (load references only when needed) Avoid "loss in the middle" (critical info at start...
|
1.9K |
| 4045 | docstring | pytorch/pytorch |
PyTorch Docstring Writing Guide This skill describes how to write docstrings for functions and methods in the PyTorch project, following the conventions in torch/_tensor_docs.py and torch/nn/functional.py. General Principles Use raw strings (r"""...""") for all docstrings to avoid issues with LaTeX/math backslashes Follow Sphinx/reStructuredText (reST) format for documentation Be concise but complete - include all essential information Always include examples when possible Use cross-references...
|
1.9K |
| 4046 | security-case-management | elastic/agent-skills |
Case Management Manage SOC cases through the Kibana Cases API. All cases are scoped to securitySolution — this skill operates exclusively within Elastic Security. Cases appear in Kibana Security and can be assigned to analysts, linked to alerts, and pushed to external incident management systems via connectors. Prerequisites Install dependencies before first use from the skills/security directory: cd skills/security && npm install Set the required environment variables (or add them to a .env fil...
|
1.9K |
| 4047 | api-auth-and-jwt-abuse | yaklang/hack-skills |
SKILL: API Auth and JWT Abuse — Token Trust, Header Tricks, and Rate Limits AI LOAD INSTRUCTION : Use this skill when APIs rely on JWT, bearer tokens, API keys, or weak request identity signals. Focus on token trust boundaries, claim misuse, header spoofing, and rate-limit bypass. 1. TOKEN TRIAGE Inspect: alg , kid , jku , x5u role, org, tenant, scope, or privilege claims issuer and audience mismatches reuse of mobile and web tokens across products 2. QUICK ATTACK PICKS Pattern First Test alg:no...
|
1.9K |
| 4048 | business-logic-vulnerabilities | yaklang/hack-skills |
SKILL: Business Logic Vulnerabilities — Expert Attack Playbook AI LOAD INSTRUCTION : Business logic flaws are scanner-invisible and high-reward on bug bounty. This skill covers race conditions, price manipulation, workflow bypass, coupon/referral abuse, negative values, and state machine attacks. These require human reasoning, not automation. For specific exploitation techniques (payment precision/overflow, captcha bypass, password reset flaws, user enumeration), load the companion SCENARIOS.md ...
|
1.9K |
| 4049 | 37signals-way | wondelai/skills |
The 37signals Product Development Framework A complete system for building profitable software products without bloat, bureaucracy, or burnout. Over fifteen years, 37signals distilled their approach into three books: Getting Real (2006) established the "build less" ethos, Rework (2010) challenged conventional business wisdom, and Shape Up (2019) operationalized everything into a repeatable development process. Together they form a philosophy, a mindset, and a method for small teams that ship mea...
|
1.9K |
| 4050 | ce-product-pulse | everyinc/compound-engineering-plugin |
Product Pulse ce-product-pulse queries the product's data sources for a given time window and produces a compact, single-page report covering usage, performance, errors, and followups. The report is saved to docs/pulse-reports/ and the key points are surfaced in chat. The skill does not mutate the product, the database, or any external system. Its only writes are pulse settings appended to .compound-engineering/config.local.yaml (the unified CE local config, gitignored, machine-local) and the re...
|
1.9K |