@bcelep/capint 0.4.2 → 0.6.5
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/AGENT.md +11 -1
- package/CHANGELOG.md +101 -0
- package/README.md +38 -10
- package/bin/capint.js +13 -1
- package/docs/PRD-v0.5-agent-capability-activation.md +430 -0
- package/docs/conventions/cli-scripting.md +60 -0
- package/docs/conventions/daily-use.md +132 -0
- package/docs/conventions/task-to-capability-cheatsheet.md +29 -0
- package/docs/execution-intent-contract.md +31 -3
- package/docs/kullanim-kilavuzu.md +374 -0
- package/docs/maintainer-dogfood.md +90 -0
- package/package.json +11 -2
- package/projections/session-start.md +14 -6
- package/registry.json +117 -4
- package/schemas/explanation.v1.json +48 -0
- package/scripts/capint-task.ps1 +38 -0
- package/scripts/capint-task.sh +40 -0
- package/scripts/release-check.mjs +14 -1
- package/scripts/validate-registry.mjs +44 -0
- package/skill-routing-matrix.json +50 -4
- package/skills/agent-browser/LICENSE +201 -0
- package/skills/agent-browser/SKILL.md +522 -0
- package/skills/agent-browser/agents/verdent.yaml +7 -0
- package/skills/agent-browser/assets/icon-dark.png +0 -0
- package/skills/agent-browser/assets/icon-light.png +0 -0
- package/skills/agent-browser/references/authentication.md +202 -0
- package/skills/agent-browser/references/commands.md +263 -0
- package/skills/agent-browser/references/profiling.md +120 -0
- package/skills/agent-browser/references/proxy-support.md +194 -0
- package/skills/agent-browser/references/session-management.md +193 -0
- package/skills/agent-browser/references/snapshot-refs.md +194 -0
- package/skills/agent-browser/references/video-recording.md +173 -0
- package/skills/agent-browser/templates/authenticated-session.sh +105 -0
- package/skills/agent-browser/templates/capture-workflow.sh +69 -0
- package/skills/agent-browser/templates/form-automation.sh +62 -0
- package/skills/algorithmic-art/LICENSE.txt +202 -0
- package/skills/algorithmic-art/SKILL.md +410 -0
- package/skills/algorithmic-art/agents/verdent.yaml +11 -0
- package/skills/algorithmic-art/assets/icon-dark.png +0 -0
- package/skills/algorithmic-art/assets/icon-light.png +0 -0
- package/skills/algorithmic-art/templates/generator_template.js +223 -0
- package/skills/algorithmic-art/templates/viewer.html +599 -0
- package/skills/api-and-interface-design/SKILL.md +294 -0
- package/skills/aspnet-core/LICENSE.txt +202 -0
- package/skills/aspnet-core/SKILL.md +67 -0
- package/skills/aspnet-core/agents/verdent.yaml +11 -0
- package/skills/aspnet-core/assets/dotnet-logo.png +0 -0
- package/skills/aspnet-core/assets/icon-dark.png +0 -0
- package/skills/aspnet-core/assets/icon-light.png +0 -0
- package/skills/aspnet-core/references/_sections.md +40 -0
- package/skills/aspnet-core/references/apis-minimal-and-controllers.md +81 -0
- package/skills/aspnet-core/references/data-state-and-services.md +69 -0
- package/skills/aspnet-core/references/program-and-pipeline.md +103 -0
- package/skills/aspnet-core/references/realtime-grpc-and-background-work.md +58 -0
- package/skills/aspnet-core/references/security-and-identity.md +75 -0
- package/skills/aspnet-core/references/source-map.md +43 -0
- package/skills/aspnet-core/references/stack-selection.md +63 -0
- package/skills/aspnet-core/references/testing-performance-and-operations.md +92 -0
- package/skills/aspnet-core/references/ui-blazor.md +53 -0
- package/skills/aspnet-core/references/ui-mvc.md +56 -0
- package/skills/aspnet-core/references/ui-razor-pages.md +55 -0
- package/skills/aspnet-core/references/versioning-and-upgrades.md +51 -0
- package/skills/auth-patterns/SKILL.md +549 -0
- package/skills/best-practices/SKILL.md +641 -0
- package/skills/better-auth-best-practices/SKILL.md +180 -0
- package/skills/better-auth-best-practices/agents/verdent.yaml +11 -0
- package/skills/better-auth-best-practices/assets/icon-dark.png +0 -0
- package/skills/better-auth-best-practices/assets/icon-light.png +0 -0
- package/skills/brainstorming/SKILL.md +164 -0
- package/skills/brainstorming/spec-document-reviewer-prompt.md +49 -0
- package/skills/brainstorming/visual-companion.md +287 -0
- package/skills/canvas-design/LICENSE.txt +202 -0
- package/skills/canvas-design/SKILL.md +135 -0
- package/skills/canvas-design/agents/verdent.yaml +11 -0
- package/skills/canvas-design/assets/icon-dark.png +0 -0
- package/skills/canvas-design/assets/icon-light.png +0 -0
- package/skills/canvas-design/canvas-fonts/ArsenalSC-OFL.txt +93 -0
- package/skills/canvas-design/canvas-fonts/ArsenalSC-Regular.ttf +0 -0
- package/skills/canvas-design/canvas-fonts/BigShoulders-Bold.ttf +0 -0
- package/skills/canvas-design/canvas-fonts/BigShoulders-OFL.txt +93 -0
- package/skills/canvas-design/canvas-fonts/BigShoulders-Regular.ttf +0 -0
- package/skills/canvas-design/canvas-fonts/Boldonse-OFL.txt +93 -0
- package/skills/canvas-design/canvas-fonts/Boldonse-Regular.ttf +0 -0
- package/skills/canvas-design/canvas-fonts/BricolageGrotesque-Bold.ttf +0 -0
- package/skills/canvas-design/canvas-fonts/BricolageGrotesque-OFL.txt +93 -0
- package/skills/canvas-design/canvas-fonts/BricolageGrotesque-Regular.ttf +0 -0
- package/skills/canvas-design/canvas-fonts/CrimsonPro-Bold.ttf +0 -0
- package/skills/canvas-design/canvas-fonts/CrimsonPro-Italic.ttf +0 -0
- package/skills/canvas-design/canvas-fonts/CrimsonPro-OFL.txt +93 -0
- package/skills/canvas-design/canvas-fonts/CrimsonPro-Regular.ttf +0 -0
- package/skills/canvas-design/canvas-fonts/DMMono-OFL.txt +93 -0
- package/skills/canvas-design/canvas-fonts/DMMono-Regular.ttf +0 -0
- package/skills/canvas-design/canvas-fonts/EricaOne-OFL.txt +94 -0
- package/skills/canvas-design/canvas-fonts/EricaOne-Regular.ttf +0 -0
- package/skills/canvas-design/canvas-fonts/GeistMono-Bold.ttf +0 -0
- package/skills/canvas-design/canvas-fonts/GeistMono-OFL.txt +93 -0
- package/skills/canvas-design/canvas-fonts/GeistMono-Regular.ttf +0 -0
- package/skills/canvas-design/canvas-fonts/Gloock-OFL.txt +93 -0
- package/skills/canvas-design/canvas-fonts/Gloock-Regular.ttf +0 -0
- package/skills/canvas-design/canvas-fonts/IBMPlexMono-Bold.ttf +0 -0
- package/skills/canvas-design/canvas-fonts/IBMPlexMono-OFL.txt +93 -0
- package/skills/canvas-design/canvas-fonts/IBMPlexMono-Regular.ttf +0 -0
- package/skills/canvas-design/canvas-fonts/IBMPlexSerif-Bold.ttf +0 -0
- package/skills/canvas-design/canvas-fonts/IBMPlexSerif-BoldItalic.ttf +0 -0
- package/skills/canvas-design/canvas-fonts/IBMPlexSerif-Italic.ttf +0 -0
- package/skills/canvas-design/canvas-fonts/IBMPlexSerif-Regular.ttf +0 -0
- package/skills/canvas-design/canvas-fonts/InstrumentSans-Bold.ttf +0 -0
- package/skills/canvas-design/canvas-fonts/InstrumentSans-BoldItalic.ttf +0 -0
- package/skills/canvas-design/canvas-fonts/InstrumentSans-Italic.ttf +0 -0
- package/skills/canvas-design/canvas-fonts/InstrumentSans-OFL.txt +93 -0
- package/skills/canvas-design/canvas-fonts/InstrumentSans-Regular.ttf +0 -0
- package/skills/canvas-design/canvas-fonts/InstrumentSerif-Italic.ttf +0 -0
- package/skills/canvas-design/canvas-fonts/InstrumentSerif-Regular.ttf +0 -0
- package/skills/canvas-design/canvas-fonts/Italiana-OFL.txt +93 -0
- package/skills/canvas-design/canvas-fonts/Italiana-Regular.ttf +0 -0
- package/skills/canvas-design/canvas-fonts/JetBrainsMono-Bold.ttf +0 -0
- package/skills/canvas-design/canvas-fonts/JetBrainsMono-OFL.txt +93 -0
- package/skills/canvas-design/canvas-fonts/JetBrainsMono-Regular.ttf +0 -0
- package/skills/canvas-design/canvas-fonts/Jura-Light.ttf +0 -0
- package/skills/canvas-design/canvas-fonts/Jura-Medium.ttf +0 -0
- package/skills/canvas-design/canvas-fonts/Jura-OFL.txt +93 -0
- package/skills/canvas-design/canvas-fonts/LibreBaskerville-OFL.txt +93 -0
- package/skills/canvas-design/canvas-fonts/LibreBaskerville-Regular.ttf +0 -0
- package/skills/canvas-design/canvas-fonts/Lora-Bold.ttf +0 -0
- package/skills/canvas-design/canvas-fonts/Lora-BoldItalic.ttf +0 -0
- package/skills/canvas-design/canvas-fonts/Lora-Italic.ttf +0 -0
- package/skills/canvas-design/canvas-fonts/Lora-OFL.txt +93 -0
- package/skills/canvas-design/canvas-fonts/Lora-Regular.ttf +0 -0
- package/skills/canvas-design/canvas-fonts/NationalPark-Bold.ttf +0 -0
- package/skills/canvas-design/canvas-fonts/NationalPark-OFL.txt +93 -0
- package/skills/canvas-design/canvas-fonts/NationalPark-Regular.ttf +0 -0
- package/skills/canvas-design/canvas-fonts/NothingYouCouldDo-OFL.txt +93 -0
- package/skills/canvas-design/canvas-fonts/NothingYouCouldDo-Regular.ttf +0 -0
- package/skills/canvas-design/canvas-fonts/Outfit-Bold.ttf +0 -0
- package/skills/canvas-design/canvas-fonts/Outfit-OFL.txt +93 -0
- package/skills/canvas-design/canvas-fonts/Outfit-Regular.ttf +0 -0
- package/skills/canvas-design/canvas-fonts/PixelifySans-Medium.ttf +0 -0
- package/skills/canvas-design/canvas-fonts/PixelifySans-OFL.txt +93 -0
- package/skills/canvas-design/canvas-fonts/PoiretOne-OFL.txt +93 -0
- package/skills/canvas-design/canvas-fonts/PoiretOne-Regular.ttf +0 -0
- package/skills/canvas-design/canvas-fonts/RedHatMono-Bold.ttf +0 -0
- package/skills/canvas-design/canvas-fonts/RedHatMono-OFL.txt +93 -0
- package/skills/canvas-design/canvas-fonts/RedHatMono-Regular.ttf +0 -0
- package/skills/canvas-design/canvas-fonts/Silkscreen-OFL.txt +93 -0
- package/skills/canvas-design/canvas-fonts/Silkscreen-Regular.ttf +0 -0
- package/skills/canvas-design/canvas-fonts/SmoochSans-Medium.ttf +0 -0
- package/skills/canvas-design/canvas-fonts/SmoochSans-OFL.txt +93 -0
- package/skills/canvas-design/canvas-fonts/Tektur-Medium.ttf +0 -0
- package/skills/canvas-design/canvas-fonts/Tektur-OFL.txt +93 -0
- package/skills/canvas-design/canvas-fonts/Tektur-Regular.ttf +0 -0
- package/skills/canvas-design/canvas-fonts/WorkSans-Bold.ttf +0 -0
- package/skills/canvas-design/canvas-fonts/WorkSans-BoldItalic.ttf +0 -0
- package/skills/canvas-design/canvas-fonts/WorkSans-Italic.ttf +0 -0
- package/skills/canvas-design/canvas-fonts/WorkSans-OFL.txt +93 -0
- package/skills/canvas-design/canvas-fonts/WorkSans-Regular.ttf +0 -0
- package/skills/canvas-design/canvas-fonts/YoungSerif-OFL.txt +93 -0
- package/skills/canvas-design/canvas-fonts/YoungSerif-Regular.ttf +0 -0
- package/skills/ci-cd-and-automation/SKILL.md +390 -0
- package/skills/cloudflare/SKILL.md +233 -0
- package/skills/cloudflare/agents/verdent.yaml +12 -0
- package/skills/cloudflare/assets/icon-dark.png +0 -0
- package/skills/cloudflare/assets/icon-light.png +0 -0
- package/skills/cloudflare/references/agents-sdk/README.md +89 -0
- package/skills/cloudflare/references/agents-sdk/api.md +190 -0
- package/skills/cloudflare/references/agents-sdk/configuration.md +182 -0
- package/skills/cloudflare/references/agents-sdk/gotchas.md +158 -0
- package/skills/cloudflare/references/agents-sdk/patterns.md +192 -0
- package/skills/cloudflare/references/ai-gateway/README.md +175 -0
- package/skills/cloudflare/references/ai-gateway/configuration.md +111 -0
- package/skills/cloudflare/references/ai-gateway/dynamic-routing.md +82 -0
- package/skills/cloudflare/references/ai-gateway/features.md +96 -0
- package/skills/cloudflare/references/ai-gateway/sdk-integration.md +114 -0
- package/skills/cloudflare/references/ai-gateway/troubleshooting.md +88 -0
- package/skills/cloudflare/references/ai-search/README.md +138 -0
- package/skills/cloudflare/references/ai-search/api.md +87 -0
- package/skills/cloudflare/references/ai-search/configuration.md +88 -0
- package/skills/cloudflare/references/ai-search/gotchas.md +81 -0
- package/skills/cloudflare/references/ai-search/patterns.md +85 -0
- package/skills/cloudflare/references/analytics-engine/README.md +94 -0
- package/skills/cloudflare/references/analytics-engine/api.md +112 -0
- package/skills/cloudflare/references/analytics-engine/configuration.md +112 -0
- package/skills/cloudflare/references/analytics-engine/gotchas.md +85 -0
- package/skills/cloudflare/references/analytics-engine/patterns.md +83 -0
- package/skills/cloudflare/references/api/README.md +66 -0
- package/skills/cloudflare/references/api/api.md +204 -0
- package/skills/cloudflare/references/api/configuration.md +160 -0
- package/skills/cloudflare/references/api/gotchas.md +225 -0
- package/skills/cloudflare/references/api/patterns.md +204 -0
- package/skills/cloudflare/references/api-shield/README.md +44 -0
- package/skills/cloudflare/references/api-shield/api.md +141 -0
- package/skills/cloudflare/references/api-shield/configuration.md +192 -0
- package/skills/cloudflare/references/api-shield/gotchas.md +125 -0
- package/skills/cloudflare/references/api-shield/patterns.md +180 -0
- package/skills/cloudflare/references/argo-smart-routing/README.md +90 -0
- package/skills/cloudflare/references/argo-smart-routing/api.md +240 -0
- package/skills/cloudflare/references/argo-smart-routing/configuration.md +197 -0
- package/skills/cloudflare/references/argo-smart-routing/gotchas.md +111 -0
- package/skills/cloudflare/references/argo-smart-routing/patterns.md +104 -0
- package/skills/cloudflare/references/bindings/README.md +122 -0
- package/skills/cloudflare/references/bindings/api.md +203 -0
- package/skills/cloudflare/references/bindings/configuration.md +188 -0
- package/skills/cloudflare/references/bindings/gotchas.md +208 -0
- package/skills/cloudflare/references/bindings/patterns.md +200 -0
- package/skills/cloudflare/references/bot-management/README.md +94 -0
- package/skills/cloudflare/references/bot-management/api.md +169 -0
- package/skills/cloudflare/references/bot-management/configuration.md +163 -0
- package/skills/cloudflare/references/bot-management/gotchas.md +114 -0
- package/skills/cloudflare/references/bot-management/patterns.md +182 -0
- package/skills/cloudflare/references/browser-rendering/README.md +78 -0
- package/skills/cloudflare/references/browser-rendering/api.md +108 -0
- package/skills/cloudflare/references/browser-rendering/configuration.md +78 -0
- package/skills/cloudflare/references/browser-rendering/gotchas.md +88 -0
- package/skills/cloudflare/references/browser-rendering/patterns.md +91 -0
- package/skills/cloudflare/references/c3/README.md +111 -0
- package/skills/cloudflare/references/c3/api.md +71 -0
- package/skills/cloudflare/references/c3/configuration.md +81 -0
- package/skills/cloudflare/references/c3/gotchas.md +92 -0
- package/skills/cloudflare/references/c3/patterns.md +82 -0
- package/skills/cloudflare/references/cache-reserve/README.md +147 -0
- package/skills/cloudflare/references/cache-reserve/api.md +194 -0
- package/skills/cloudflare/references/cache-reserve/configuration.md +169 -0
- package/skills/cloudflare/references/cache-reserve/gotchas.md +132 -0
- package/skills/cloudflare/references/cache-reserve/patterns.md +197 -0
- package/skills/cloudflare/references/containers/README.md +85 -0
- package/skills/cloudflare/references/containers/api.md +187 -0
- package/skills/cloudflare/references/containers/configuration.md +188 -0
- package/skills/cloudflare/references/containers/gotchas.md +178 -0
- package/skills/cloudflare/references/containers/patterns.md +202 -0
- package/skills/cloudflare/references/cron-triggers/README.md +99 -0
- package/skills/cloudflare/references/cron-triggers/api.md +196 -0
- package/skills/cloudflare/references/cron-triggers/configuration.md +180 -0
- package/skills/cloudflare/references/cron-triggers/gotchas.md +199 -0
- package/skills/cloudflare/references/cron-triggers/patterns.md +190 -0
- package/skills/cloudflare/references/d1/README.md +133 -0
- package/skills/cloudflare/references/d1/api.md +196 -0
- package/skills/cloudflare/references/d1/configuration.md +188 -0
- package/skills/cloudflare/references/d1/gotchas.md +98 -0
- package/skills/cloudflare/references/d1/patterns.md +189 -0
- package/skills/cloudflare/references/ddos/README.md +41 -0
- package/skills/cloudflare/references/ddos/api.md +164 -0
- package/skills/cloudflare/references/ddos/configuration.md +93 -0
- package/skills/cloudflare/references/ddos/gotchas.md +107 -0
- package/skills/cloudflare/references/ddos/patterns.md +174 -0
- package/skills/cloudflare/references/do-storage/README.md +75 -0
- package/skills/cloudflare/references/do-storage/api.md +102 -0
- package/skills/cloudflare/references/do-storage/configuration.md +112 -0
- package/skills/cloudflare/references/do-storage/gotchas.md +150 -0
- package/skills/cloudflare/references/do-storage/patterns.md +194 -0
- package/skills/cloudflare/references/do-storage/testing.md +183 -0
- package/skills/cloudflare/references/durable-objects/README.md +185 -0
- package/skills/cloudflare/references/durable-objects/api.md +187 -0
- package/skills/cloudflare/references/durable-objects/configuration.md +160 -0
- package/skills/cloudflare/references/durable-objects/gotchas.md +197 -0
- package/skills/cloudflare/references/durable-objects/patterns.md +201 -0
- package/skills/cloudflare/references/email-routing/README.md +89 -0
- package/skills/cloudflare/references/email-routing/api.md +195 -0
- package/skills/cloudflare/references/email-routing/configuration.md +186 -0
- package/skills/cloudflare/references/email-routing/gotchas.md +196 -0
- package/skills/cloudflare/references/email-routing/patterns.md +229 -0
- package/skills/cloudflare/references/email-workers/README.md +151 -0
- package/skills/cloudflare/references/email-workers/api.md +237 -0
- package/skills/cloudflare/references/email-workers/configuration.md +112 -0
- package/skills/cloudflare/references/email-workers/gotchas.md +125 -0
- package/skills/cloudflare/references/email-workers/patterns.md +102 -0
- package/skills/cloudflare/references/graphql-api/README.md +147 -0
- package/skills/cloudflare/references/graphql-api/api.md +175 -0
- package/skills/cloudflare/references/graphql-api/configuration.md +118 -0
- package/skills/cloudflare/references/graphql-api/gotchas.md +110 -0
- package/skills/cloudflare/references/graphql-api/patterns.md +225 -0
- package/skills/cloudflare/references/hyperdrive/README.md +82 -0
- package/skills/cloudflare/references/hyperdrive/api.md +143 -0
- package/skills/cloudflare/references/hyperdrive/configuration.md +159 -0
- package/skills/cloudflare/references/hyperdrive/gotchas.md +77 -0
- package/skills/cloudflare/references/hyperdrive/patterns.md +190 -0
- package/skills/cloudflare/references/images/README.md +61 -0
- package/skills/cloudflare/references/images/api.md +96 -0
- package/skills/cloudflare/references/images/configuration.md +211 -0
- package/skills/cloudflare/references/images/gotchas.md +99 -0
- package/skills/cloudflare/references/images/patterns.md +115 -0
- package/skills/cloudflare/references/kv/README.md +89 -0
- package/skills/cloudflare/references/kv/api.md +160 -0
- package/skills/cloudflare/references/kv/configuration.md +144 -0
- package/skills/cloudflare/references/kv/gotchas.md +131 -0
- package/skills/cloudflare/references/kv/patterns.md +196 -0
- package/skills/cloudflare/references/miniflare/README.md +105 -0
- package/skills/cloudflare/references/miniflare/api.md +187 -0
- package/skills/cloudflare/references/miniflare/configuration.md +173 -0
- package/skills/cloudflare/references/miniflare/gotchas.md +160 -0
- package/skills/cloudflare/references/miniflare/patterns.md +181 -0
- package/skills/cloudflare/references/network-interconnect/README.md +99 -0
- package/skills/cloudflare/references/network-interconnect/api.md +199 -0
- package/skills/cloudflare/references/network-interconnect/configuration.md +114 -0
- package/skills/cloudflare/references/network-interconnect/gotchas.md +165 -0
- package/skills/cloudflare/references/network-interconnect/patterns.md +166 -0
- package/skills/cloudflare/references/observability/README.md +88 -0
- package/skills/cloudflare/references/observability/api.md +164 -0
- package/skills/cloudflare/references/observability/configuration.md +169 -0
- package/skills/cloudflare/references/observability/gotchas.md +115 -0
- package/skills/cloudflare/references/observability/patterns.md +105 -0
- package/skills/cloudflare/references/pages/README.md +88 -0
- package/skills/cloudflare/references/pages/api.md +204 -0
- package/skills/cloudflare/references/pages/configuration.md +201 -0
- package/skills/cloudflare/references/pages/gotchas.md +203 -0
- package/skills/cloudflare/references/pages/patterns.md +204 -0
- package/skills/cloudflare/references/pages-functions/README.md +98 -0
- package/skills/cloudflare/references/pages-functions/api.md +143 -0
- package/skills/cloudflare/references/pages-functions/configuration.md +122 -0
- package/skills/cloudflare/references/pages-functions/gotchas.md +94 -0
- package/skills/cloudflare/references/pages-functions/patterns.md +137 -0
- package/skills/cloudflare/references/pipelines/README.md +105 -0
- package/skills/cloudflare/references/pipelines/api.md +208 -0
- package/skills/cloudflare/references/pipelines/configuration.md +98 -0
- package/skills/cloudflare/references/pipelines/gotchas.md +80 -0
- package/skills/cloudflare/references/pipelines/patterns.md +87 -0
- package/skills/cloudflare/references/pulumi/README.md +100 -0
- package/skills/cloudflare/references/pulumi/api.md +200 -0
- package/skills/cloudflare/references/pulumi/configuration.md +198 -0
- package/skills/cloudflare/references/pulumi/gotchas.md +181 -0
- package/skills/cloudflare/references/pulumi/patterns.md +191 -0
- package/skills/cloudflare/references/queues/README.md +96 -0
- package/skills/cloudflare/references/queues/api.md +206 -0
- package/skills/cloudflare/references/queues/configuration.md +144 -0
- package/skills/cloudflare/references/queues/gotchas.md +206 -0
- package/skills/cloudflare/references/queues/patterns.md +220 -0
- package/skills/cloudflare/references/r2/README.md +95 -0
- package/skills/cloudflare/references/r2/api.md +200 -0
- package/skills/cloudflare/references/r2/configuration.md +165 -0
- package/skills/cloudflare/references/r2/gotchas.md +190 -0
- package/skills/cloudflare/references/r2/patterns.md +193 -0
- package/skills/cloudflare/references/r2-data-catalog/README.md +149 -0
- package/skills/cloudflare/references/r2-data-catalog/api.md +199 -0
- package/skills/cloudflare/references/r2-data-catalog/configuration.md +198 -0
- package/skills/cloudflare/references/r2-data-catalog/gotchas.md +170 -0
- package/skills/cloudflare/references/r2-data-catalog/patterns.md +191 -0
- package/skills/cloudflare/references/r2-sql/README.md +128 -0
- package/skills/cloudflare/references/r2-sql/SKILL.md.backup +512 -0
- package/skills/cloudflare/references/r2-sql/api.md +158 -0
- package/skills/cloudflare/references/r2-sql/configuration.md +147 -0
- package/skills/cloudflare/references/r2-sql/gotchas.md +212 -0
- package/skills/cloudflare/references/r2-sql/patterns.md +222 -0
- package/skills/cloudflare/references/realtime-sfu/README.md +65 -0
- package/skills/cloudflare/references/realtime-sfu/api.md +158 -0
- package/skills/cloudflare/references/realtime-sfu/configuration.md +137 -0
- package/skills/cloudflare/references/realtime-sfu/gotchas.md +133 -0
- package/skills/cloudflare/references/realtime-sfu/patterns.md +174 -0
- package/skills/cloudflare/references/realtimekit/README.md +113 -0
- package/skills/cloudflare/references/realtimekit/api.md +212 -0
- package/skills/cloudflare/references/realtimekit/configuration.md +203 -0
- package/skills/cloudflare/references/realtimekit/gotchas.md +169 -0
- package/skills/cloudflare/references/realtimekit/patterns.md +223 -0
- package/skills/cloudflare/references/sandbox/README.md +96 -0
- package/skills/cloudflare/references/sandbox/api.md +198 -0
- package/skills/cloudflare/references/sandbox/configuration.md +143 -0
- package/skills/cloudflare/references/sandbox/gotchas.md +194 -0
- package/skills/cloudflare/references/sandbox/patterns.md +201 -0
- package/skills/cloudflare/references/secrets-store/README.md +74 -0
- package/skills/cloudflare/references/secrets-store/api.md +200 -0
- package/skills/cloudflare/references/secrets-store/configuration.md +185 -0
- package/skills/cloudflare/references/secrets-store/gotchas.md +97 -0
- package/skills/cloudflare/references/secrets-store/patterns.md +207 -0
- package/skills/cloudflare/references/smart-placement/README.md +138 -0
- package/skills/cloudflare/references/smart-placement/api.md +183 -0
- package/skills/cloudflare/references/smart-placement/configuration.md +196 -0
- package/skills/cloudflare/references/smart-placement/gotchas.md +174 -0
- package/skills/cloudflare/references/smart-placement/patterns.md +183 -0
- package/skills/cloudflare/references/snippets/README.md +68 -0
- package/skills/cloudflare/references/snippets/api.md +198 -0
- package/skills/cloudflare/references/snippets/configuration.md +227 -0
- package/skills/cloudflare/references/snippets/gotchas.md +86 -0
- package/skills/cloudflare/references/snippets/patterns.md +135 -0
- package/skills/cloudflare/references/spectrum/README.md +52 -0
- package/skills/cloudflare/references/spectrum/api.md +181 -0
- package/skills/cloudflare/references/spectrum/configuration.md +194 -0
- package/skills/cloudflare/references/spectrum/gotchas.md +145 -0
- package/skills/cloudflare/references/spectrum/patterns.md +196 -0
- package/skills/cloudflare/references/static-assets/README.md +65 -0
- package/skills/cloudflare/references/static-assets/api.md +199 -0
- package/skills/cloudflare/references/static-assets/configuration.md +186 -0
- package/skills/cloudflare/references/static-assets/gotchas.md +162 -0
- package/skills/cloudflare/references/static-assets/patterns.md +189 -0
- package/skills/cloudflare/references/stream/README.md +114 -0
- package/skills/cloudflare/references/stream/api-live.md +195 -0
- package/skills/cloudflare/references/stream/api.md +199 -0
- package/skills/cloudflare/references/stream/configuration.md +141 -0
- package/skills/cloudflare/references/stream/gotchas.md +130 -0
- package/skills/cloudflare/references/stream/patterns.md +184 -0
- package/skills/cloudflare/references/tail-workers/README.md +89 -0
- package/skills/cloudflare/references/tail-workers/api.md +200 -0
- package/skills/cloudflare/references/tail-workers/configuration.md +176 -0
- package/skills/cloudflare/references/tail-workers/gotchas.md +192 -0
- package/skills/cloudflare/references/tail-workers/patterns.md +180 -0
- package/skills/cloudflare/references/terraform/README.md +102 -0
- package/skills/cloudflare/references/terraform/api.md +178 -0
- package/skills/cloudflare/references/terraform/configuration.md +197 -0
- package/skills/cloudflare/references/terraform/gotchas.md +150 -0
- package/skills/cloudflare/references/terraform/patterns.md +174 -0
- package/skills/cloudflare/references/tunnel/README.md +129 -0
- package/skills/cloudflare/references/tunnel/api.md +193 -0
- package/skills/cloudflare/references/tunnel/configuration.md +157 -0
- package/skills/cloudflare/references/tunnel/gotchas.md +147 -0
- package/skills/cloudflare/references/tunnel/networking.md +168 -0
- package/skills/cloudflare/references/tunnel/patterns.md +192 -0
- package/skills/cloudflare/references/turn/README.md +82 -0
- package/skills/cloudflare/references/turn/api.md +239 -0
- package/skills/cloudflare/references/turn/configuration.md +179 -0
- package/skills/cloudflare/references/turn/gotchas.md +231 -0
- package/skills/cloudflare/references/turn/patterns.md +213 -0
- package/skills/cloudflare/references/turnstile/README.md +99 -0
- package/skills/cloudflare/references/turnstile/api.md +240 -0
- package/skills/cloudflare/references/turnstile/configuration.md +222 -0
- package/skills/cloudflare/references/turnstile/gotchas.md +218 -0
- package/skills/cloudflare/references/turnstile/patterns.md +193 -0
- package/skills/cloudflare/references/vectorize/README.md +133 -0
- package/skills/cloudflare/references/vectorize/api.md +88 -0
- package/skills/cloudflare/references/vectorize/configuration.md +88 -0
- package/skills/cloudflare/references/vectorize/gotchas.md +76 -0
- package/skills/cloudflare/references/vectorize/patterns.md +90 -0
- package/skills/cloudflare/references/waf/README.md +113 -0
- package/skills/cloudflare/references/waf/api.md +202 -0
- package/skills/cloudflare/references/waf/configuration.md +203 -0
- package/skills/cloudflare/references/waf/gotchas.md +204 -0
- package/skills/cloudflare/references/waf/patterns.md +197 -0
- package/skills/cloudflare/references/web-analytics/README.md +141 -0
- package/skills/cloudflare/references/web-analytics/configuration.md +76 -0
- package/skills/cloudflare/references/web-analytics/gotchas.md +82 -0
- package/skills/cloudflare/references/web-analytics/integration.md +60 -0
- package/skills/cloudflare/references/web-analytics/patterns.md +91 -0
- package/skills/cloudflare/references/workerd/README.md +78 -0
- package/skills/cloudflare/references/workerd/api.md +185 -0
- package/skills/cloudflare/references/workerd/configuration.md +183 -0
- package/skills/cloudflare/references/workerd/gotchas.md +139 -0
- package/skills/cloudflare/references/workerd/patterns.md +192 -0
- package/skills/cloudflare/references/workers/README.md +108 -0
- package/skills/cloudflare/references/workers/api.md +195 -0
- package/skills/cloudflare/references/workers/configuration.md +185 -0
- package/skills/cloudflare/references/workers/frameworks.md +197 -0
- package/skills/cloudflare/references/workers/gotchas.md +136 -0
- package/skills/cloudflare/references/workers/patterns.md +198 -0
- package/skills/cloudflare/references/workers-ai/README.md +197 -0
- package/skills/cloudflare/references/workers-ai/api.md +112 -0
- package/skills/cloudflare/references/workers-ai/configuration.md +97 -0
- package/skills/cloudflare/references/workers-ai/gotchas.md +114 -0
- package/skills/cloudflare/references/workers-ai/patterns.md +120 -0
- package/skills/cloudflare/references/workers-for-platforms/README.md +89 -0
- package/skills/cloudflare/references/workers-for-platforms/api.md +196 -0
- package/skills/cloudflare/references/workers-for-platforms/configuration.md +167 -0
- package/skills/cloudflare/references/workers-for-platforms/gotchas.md +134 -0
- package/skills/cloudflare/references/workers-for-platforms/patterns.md +188 -0
- package/skills/cloudflare/references/workers-playground/README.md +127 -0
- package/skills/cloudflare/references/workers-playground/api.md +101 -0
- package/skills/cloudflare/references/workers-playground/configuration.md +163 -0
- package/skills/cloudflare/references/workers-playground/gotchas.md +88 -0
- package/skills/cloudflare/references/workers-playground/patterns.md +132 -0
- package/skills/cloudflare/references/workers-vpc/README.md +127 -0
- package/skills/cloudflare/references/workers-vpc/api.md +202 -0
- package/skills/cloudflare/references/workers-vpc/configuration.md +147 -0
- package/skills/cloudflare/references/workers-vpc/gotchas.md +167 -0
- package/skills/cloudflare/references/workers-vpc/patterns.md +209 -0
- package/skills/cloudflare/references/workflows/README.md +69 -0
- package/skills/cloudflare/references/workflows/api.md +185 -0
- package/skills/cloudflare/references/workflows/configuration.md +151 -0
- package/skills/cloudflare/references/workflows/gotchas.md +97 -0
- package/skills/cloudflare/references/workflows/patterns.md +175 -0
- package/skills/cloudflare/references/wrangler/README.md +135 -0
- package/skills/cloudflare/references/wrangler/api.md +188 -0
- package/skills/cloudflare/references/wrangler/configuration.md +197 -0
- package/skills/cloudflare/references/wrangler/gotchas.md +197 -0
- package/skills/cloudflare/references/wrangler/patterns.md +209 -0
- package/skills/cloudflare/references/zaraz/IMPLEMENTATION_SUMMARY.md +121 -0
- package/skills/cloudflare/references/zaraz/README.md +111 -0
- package/skills/cloudflare/references/zaraz/api.md +112 -0
- package/skills/cloudflare/references/zaraz/configuration.md +90 -0
- package/skills/cloudflare/references/zaraz/gotchas.md +81 -0
- package/skills/cloudflare/references/zaraz/patterns.md +74 -0
- package/skills/code-reviewer/SKILL.md +347 -0
- package/skills/code-simplifier/SKILL.md +124 -0
- package/skills/code-simplifier/agents/verdent.yaml +11 -0
- package/skills/code-simplifier/assets/icon-dark.png +0 -0
- package/skills/code-simplifier/assets/icon-light.png +0 -0
- package/skills/concept-modeler/SKILL.md +178 -0
- package/skills/context-engineering/SKILL.md +289 -0
- package/skills/copywriting/SKILL.md +252 -0
- package/skills/copywriting/evals/evals.json +111 -0
- package/skills/copywriting/references/copy-frameworks.md +344 -0
- package/skills/copywriting/references/natural-transitions.md +272 -0
- package/skills/core-web-vitals/SKILL.md +483 -0
- package/skills/core-web-vitals/references/LCP.md +208 -0
- package/skills/craft-authoring/SKILL.md +123 -0
- package/skills/create-design-system-rules/SKILL.md +530 -0
- package/skills/create-design-system-rules/agents/verdent.yaml +11 -0
- package/skills/create-design-system-rules/assets/icon-dark.png +0 -0
- package/skills/create-design-system-rules/assets/icon-light.png +0 -0
- package/skills/database-and-data-modeling/SKILL.md +515 -0
- package/skills/database-blueprints/SKILL.md +60 -0
- package/skills/database-blueprints/agents/verdent.yaml +13 -0
- package/skills/database-blueprints/assets/icon-dark.png +0 -0
- package/skills/database-blueprints/assets/icon-light.png +0 -0
- package/skills/database-blueprints/references/core-schema.md +68 -0
- package/skills/database-blueprints/references/migration-safety.md +55 -0
- package/skills/database-blueprints/references/mysql.md +50 -0
- package/skills/database-blueprints/references/prisma.md +47 -0
- package/skills/database-blueprints/references/supabase-postgres.md +63 -0
- package/skills/delivery-acceptance/SKILL.md +60 -0
- package/skills/delivery-acceptance/agents/verdent.yaml +12 -0
- package/skills/delivery-acceptance/assets/icon-dark.png +0 -0
- package/skills/delivery-acceptance/assets/icon-light.png +0 -0
- package/skills/delivery-acceptance/references/acceptance-checklist.md +44 -0
- package/skills/delivery-acceptance/references/mobile-print-file.md +19 -0
- package/skills/delivery-acceptance/references/playwright-smoke.md +35 -0
- package/skills/dependency-audit/SKILL.md +97 -0
- package/skills/deprecation-and-migration/SKILL.md +206 -0
- package/skills/design-reviewer/SKILL.md +189 -0
- package/skills/develop-web-game/LICENSE.txt +201 -0
- package/skills/develop-web-game/SKILL.md +154 -0
- package/skills/develop-web-game/agents/verdent.yaml +12 -0
- package/skills/develop-web-game/assets/game-small.svg +4 -0
- package/skills/develop-web-game/assets/game.png +0 -0
- package/skills/develop-web-game/assets/icon-dark.png +0 -0
- package/skills/develop-web-game/assets/icon-light.png +0 -0
- package/skills/develop-web-game/references/action_payloads.json +7 -0
- package/skills/develop-web-game/scripts/web_game_playwright_client.js +356 -0
- package/skills/dignified-python/SKILL.md +175 -0
- package/skills/dignified-python/agents/verdent.yaml +11 -0
- package/skills/dignified-python/assets/icon-dark.png +0 -0
- package/skills/dignified-python/assets/icon-light.png +0 -0
- package/skills/dignified-python/cli-patterns.md +156 -0
- package/skills/dignified-python/dignified-python-core.md +345 -0
- package/skills/dignified-python/references/README.md +319 -0
- package/skills/dignified-python/references/advanced/api-design.md +230 -0
- package/skills/dignified-python/references/advanced/exception-handling.md +185 -0
- package/skills/dignified-python/references/advanced/interfaces.md +183 -0
- package/skills/dignified-python/references/advanced/typing-advanced.md +158 -0
- package/skills/dignified-python/references/checklists.md +134 -0
- package/skills/dignified-python/references/module-design.md +214 -0
- package/skills/dignified-python/subprocess.md +99 -0
- package/skills/dignified-python/versions/python-3.10.md +520 -0
- package/skills/dignified-python/versions/python-3.11.md +538 -0
- package/skills/dignified-python/versions/python-3.12.md +664 -0
- package/skills/dignified-python/versions/python-3.13.md +657 -0
- package/skills/dispatching-parallel-agents/SKILL.md +182 -0
- package/skills/documentation-and-adrs/SKILL.md +278 -0
- package/skills/documentation-sync/SKILL.md +76 -0
- package/skills/documentation-writer/SKILL.md +50 -0
- package/skills/documentation-writer/agents/verdent.yaml +10 -0
- package/skills/documentation-writer/assets/icon-dark.png +0 -0
- package/skills/documentation-writer/assets/icon-light.png +0 -0
- package/skills/docx/SKILL.md +186 -0
- package/skills/docx/agents/verdent.yaml +9 -0
- package/skills/docx/assets/docx.png +0 -0
- package/skills/docx/assets/icon-dark.png +0 -0
- package/skills/docx/assets/icon-light.png +0 -0
- package/skills/docx/references/creation-guide.md +309 -0
- package/skills/docx/references/xml-editing-guide.md +237 -0
- package/skills/docx/scripts/docx_tool.py +164 -0
- package/skills/docx/scripts/fixtures/comments.xml +3 -0
- package/skills/docx/scripts/fixtures/commentsExtended.xml +3 -0
- package/skills/docx/scripts/fixtures/commentsExtensible.xml +3 -0
- package/skills/docx/scripts/fixtures/commentsIds.xml +3 -0
- package/skills/docx/scripts/fixtures/people.xml +3 -0
- package/skills/docx/scripts/internals/__init__.py +0 -0
- package/skills/docx/scripts/internals/content.py +307 -0
- package/skills/docx/scripts/internals/integrity/__init__.py +0 -0
- package/skills/docx/scripts/internals/integrity/foundation.py +559 -0
- package/skills/docx/scripts/internals/integrity/orchestrator.py +66 -0
- package/skills/docx/scripts/internals/integrity/revision_checker.py +181 -0
- package/skills/docx/scripts/internals/integrity/schema_checker.py +294 -0
- package/skills/docx/scripts/internals/packaging.py +193 -0
- package/skills/docx/scripts/internals/preprocessing/__init__.py +0 -0
- package/skills/docx/scripts/internals/preprocessing/revision_merger.py +193 -0
- package/skills/docx/scripts/internals/preprocessing/run_consolidator.py +179 -0
- package/skills/docx/scripts/internals/runtime/__init__.py +0 -0
- package/skills/docx/scripts/internals/runtime/converter.py +184 -0
- package/skills/docx/scripts/internals/runtime/renderer.py +60 -0
- package/skills/docx/scripts/internals/runtime/revision_acceptor.py +122 -0
- package/skills/docx/scripts/render_docx.py +296 -0
- package/skills/docx/scripts/schemas/ISO-IEC29500-4_2016/dml-chart.xsd +1499 -0
- package/skills/docx/scripts/schemas/ISO-IEC29500-4_2016/dml-chartDrawing.xsd +146 -0
- package/skills/docx/scripts/schemas/ISO-IEC29500-4_2016/dml-diagram.xsd +1085 -0
- package/skills/docx/scripts/schemas/ISO-IEC29500-4_2016/dml-lockedCanvas.xsd +11 -0
- package/skills/docx/scripts/schemas/ISO-IEC29500-4_2016/dml-main.xsd +3081 -0
- package/skills/docx/scripts/schemas/ISO-IEC29500-4_2016/dml-picture.xsd +23 -0
- package/skills/docx/scripts/schemas/ISO-IEC29500-4_2016/dml-spreadsheetDrawing.xsd +185 -0
- package/skills/docx/scripts/schemas/ISO-IEC29500-4_2016/dml-wordprocessingDrawing.xsd +287 -0
- package/skills/docx/scripts/schemas/ISO-IEC29500-4_2016/pml.xsd +1676 -0
- package/skills/docx/scripts/schemas/ISO-IEC29500-4_2016/shared-additionalCharacteristics.xsd +28 -0
- package/skills/docx/scripts/schemas/ISO-IEC29500-4_2016/shared-bibliography.xsd +144 -0
- package/skills/docx/scripts/schemas/ISO-IEC29500-4_2016/shared-commonSimpleTypes.xsd +174 -0
- package/skills/docx/scripts/schemas/ISO-IEC29500-4_2016/shared-customXmlDataProperties.xsd +25 -0
- package/skills/docx/scripts/schemas/ISO-IEC29500-4_2016/shared-customXmlSchemaProperties.xsd +18 -0
- package/skills/docx/scripts/schemas/ISO-IEC29500-4_2016/shared-documentPropertiesCustom.xsd +59 -0
- package/skills/docx/scripts/schemas/ISO-IEC29500-4_2016/shared-documentPropertiesExtended.xsd +56 -0
- package/skills/docx/scripts/schemas/ISO-IEC29500-4_2016/shared-documentPropertiesVariantTypes.xsd +195 -0
- package/skills/docx/scripts/schemas/ISO-IEC29500-4_2016/shared-math.xsd +582 -0
- package/skills/docx/scripts/schemas/ISO-IEC29500-4_2016/shared-relationshipReference.xsd +25 -0
- package/skills/docx/scripts/schemas/ISO-IEC29500-4_2016/sml.xsd +4439 -0
- package/skills/docx/scripts/schemas/ISO-IEC29500-4_2016/vml-main.xsd +570 -0
- package/skills/docx/scripts/schemas/ISO-IEC29500-4_2016/vml-officeDrawing.xsd +509 -0
- package/skills/docx/scripts/schemas/ISO-IEC29500-4_2016/vml-presentationDrawing.xsd +12 -0
- package/skills/docx/scripts/schemas/ISO-IEC29500-4_2016/vml-spreadsheetDrawing.xsd +108 -0
- package/skills/docx/scripts/schemas/ISO-IEC29500-4_2016/vml-wordprocessingDrawing.xsd +96 -0
- package/skills/docx/scripts/schemas/ISO-IEC29500-4_2016/wml.xsd +3646 -0
- package/skills/docx/scripts/schemas/ISO-IEC29500-4_2016/xml.xsd +116 -0
- package/skills/docx/scripts/schemas/ecma/fouth-edition/opc-contentTypes.xsd +42 -0
- package/skills/docx/scripts/schemas/ecma/fouth-edition/opc-coreProperties.xsd +50 -0
- package/skills/docx/scripts/schemas/ecma/fouth-edition/opc-digSig.xsd +49 -0
- package/skills/docx/scripts/schemas/ecma/fouth-edition/opc-relationships.xsd +33 -0
- package/skills/docx/scripts/schemas/mce/mc.xsd +75 -0
- package/skills/docx/scripts/schemas/microsoft/wml-2010.xsd +560 -0
- package/skills/docx/scripts/schemas/microsoft/wml-2012.xsd +67 -0
- package/skills/docx/scripts/schemas/microsoft/wml-2018.xsd +14 -0
- package/skills/docx/scripts/schemas/microsoft/wml-cex-2018.xsd +20 -0
- package/skills/docx/scripts/schemas/microsoft/wml-cid-2016.xsd +13 -0
- package/skills/docx/scripts/schemas/microsoft/wml-sdtdatahash-2020.xsd +4 -0
- package/skills/docx/scripts/schemas/microsoft/wml-symex-2015.xsd +8 -0
- package/skills/doubt-driven-development/SKILL.md +243 -0
- package/skills/e2e-testing-guide/SKILL.md +204 -0
- package/skills/emil-design-eng/SKILL.md +679 -0
- package/skills/environment-and-config/SKILL.md +849 -0
- package/skills/error-handling/SKILL.md +757 -0
- package/skills/excalidraw-diagram-generator/SKILL.md +618 -0
- package/skills/excalidraw-diagram-generator/agents/verdent.yaml +11 -0
- package/skills/excalidraw-diagram-generator/assets/icon-dark.png +0 -0
- package/skills/excalidraw-diagram-generator/assets/icon-light.png +0 -0
- package/skills/excalidraw-diagram-generator/references/element-types.md +497 -0
- package/skills/excalidraw-diagram-generator/references/excalidraw-schema.md +350 -0
- package/skills/excalidraw-diagram-generator/scripts/README.md +193 -0
- package/skills/excalidraw-diagram-generator/scripts/add-arrow.py +312 -0
- package/skills/excalidraw-diagram-generator/scripts/add-icon-to-diagram.py +404 -0
- package/skills/excalidraw-diagram-generator/scripts/split-excalidraw-library.py +183 -0
- package/skills/excalidraw-diagram-generator/templates/business-flow-swimlane-template.excalidraw +334 -0
- package/skills/excalidraw-diagram-generator/templates/class-diagram-template.excalidraw +558 -0
- package/skills/excalidraw-diagram-generator/templates/data-flow-diagram-template.excalidraw +279 -0
- package/skills/excalidraw-diagram-generator/templates/er-diagram-template.excalidraw +662 -0
- package/skills/excalidraw-diagram-generator/templates/flowchart-template.excalidraw +179 -0
- package/skills/excalidraw-diagram-generator/templates/mindmap-template.excalidraw +244 -0
- package/skills/excalidraw-diagram-generator/templates/relationship-template.excalidraw +145 -0
- package/skills/excalidraw-diagram-generator/templates/sequence-diagram-template.excalidraw +509 -0
- package/skills/executing-plans/SKILL.md +245 -0
- package/skills/figma/LICENSE.txt +202 -0
- package/skills/figma/SKILL.md +53 -0
- package/skills/figma/agents/verdent.yaml +7 -0
- package/skills/figma/assets/figma.png +0 -0
- package/skills/figma/assets/icon-dark.png +0 -0
- package/skills/figma/assets/icon-light.png +0 -0
- package/skills/figma/assets/icon.svg +28 -0
- package/skills/figma/references/figma-mcp-config.md +49 -0
- package/skills/figma/references/figma-tools-and-prompts.md +39 -0
- package/skills/figma-implement-design/LICENSE.txt +202 -0
- package/skills/figma-implement-design/SKILL.md +265 -0
- package/skills/figma-implement-design/agents/verdent.yaml +7 -0
- package/skills/figma-implement-design/assets/figma.png +0 -0
- package/skills/figma-implement-design/assets/icon-dark.png +0 -0
- package/skills/figma-implement-design/assets/icon-light.png +0 -0
- package/skills/figma-implement-design/assets/icon.svg +28 -0
- package/skills/find-docs/SKILL.md +164 -0
- package/skills/find-docs/agents/verdent.yaml +11 -0
- package/skills/find-docs/assets/icon-dark.png +0 -0
- package/skills/find-docs/assets/icon-light.png +0 -0
- package/skills/find-skills/SKILL.md +142 -0
- package/skills/firecrawl/SKILL.md +131 -0
- package/skills/firecrawl/agents/verdent.yaml +11 -0
- package/skills/firecrawl/assets/icon-dark.png +0 -0
- package/skills/firecrawl/assets/icon-light.png +0 -0
- package/skills/firecrawl/rules/install.md +63 -0
- package/skills/firecrawl/rules/security.md +26 -0
- package/skills/flutter-architecting-apps/SKILL.md +164 -0
- package/skills/flutter-architecting-apps/agents/verdent.yaml +11 -0
- package/skills/flutter-architecting-apps/assets/icon-dark.png +0 -0
- package/skills/flutter-architecting-apps/assets/icon-light.png +0 -0
- package/skills/frontend-design-pro/SKILL.md +328 -0
- package/skills/frontend-slides/LICENSE +21 -0
- package/skills/frontend-slides/SKILL.md +1169 -0
- package/skills/frontend-slides/STYLE_PRESETS.md +561 -0
- package/skills/frontend-slides/agents/verdent.yaml +7 -0
- package/skills/frontend-slides/assets/icon-dark.png +0 -0
- package/skills/frontend-slides/assets/icon-light.png +0 -0
- package/skills/gh-cli/SKILL.md +2192 -0
- package/skills/gh-cli/agents/verdent.yaml +12 -0
- package/skills/gh-cli/assets/icon-dark.png +0 -0
- package/skills/gh-cli/assets/icon-light.png +0 -0
- package/skills/git-commit/SKILL.md +129 -0
- package/skills/git-commit/agents/verdent.yaml +11 -0
- package/skills/git-commit/assets/icon-dark.png +0 -0
- package/skills/git-commit/assets/icon-light.png +0 -0
- package/skills/git-workflow-and-versioning/SKILL.md +300 -0
- package/skills/graphql-operations/SKILL.md +247 -0
- package/skills/graphql-operations/agents/verdent.yaml +11 -0
- package/skills/graphql-operations/assets/icon-dark.png +0 -0
- package/skills/graphql-operations/assets/icon-light.png +0 -0
- package/skills/graphql-operations/references/fragments.md +536 -0
- package/skills/graphql-operations/references/mutations.md +435 -0
- package/skills/graphql-operations/references/queries.md +504 -0
- package/skills/graphql-operations/references/tooling.md +404 -0
- package/skills/graphql-operations/references/variables.md +440 -0
- package/skills/graphql-schema/SKILL.md +175 -0
- package/skills/graphql-schema/agents/verdent.yaml +11 -0
- package/skills/graphql-schema/assets/icon-dark.png +0 -0
- package/skills/graphql-schema/assets/icon-light.png +0 -0
- package/skills/graphql-schema/references/errors.md +388 -0
- package/skills/graphql-schema/references/naming.md +400 -0
- package/skills/graphql-schema/references/pagination.md +396 -0
- package/skills/graphql-schema/references/security.md +484 -0
- package/skills/graphql-schema/references/types.md +445 -0
- package/skills/hugging-face-model-trainer/SKILL.md +722 -0
- package/skills/hugging-face-model-trainer/agents/verdent.yaml +12 -0
- package/skills/hugging-face-model-trainer/assets/icon-dark.png +0 -0
- package/skills/hugging-face-model-trainer/assets/icon-light.png +0 -0
- package/skills/hugging-face-model-trainer/references/gguf_conversion.md +296 -0
- package/skills/hugging-face-model-trainer/references/hardware_guide.md +283 -0
- package/skills/hugging-face-model-trainer/references/hub_saving.md +364 -0
- package/skills/hugging-face-model-trainer/references/local_training_macos.md +231 -0
- package/skills/hugging-face-model-trainer/references/reliability_principles.md +371 -0
- package/skills/hugging-face-model-trainer/references/trackio_guide.md +189 -0
- package/skills/hugging-face-model-trainer/references/training_methods.md +150 -0
- package/skills/hugging-face-model-trainer/references/training_patterns.md +203 -0
- package/skills/hugging-face-model-trainer/references/troubleshooting.md +282 -0
- package/skills/hugging-face-model-trainer/references/unsloth.md +313 -0
- package/skills/hugging-face-model-trainer/scripts/convert_to_gguf.py +424 -0
- package/skills/hugging-face-model-trainer/scripts/dataset_inspector.py +417 -0
- package/skills/hugging-face-model-trainer/scripts/estimate_cost.py +150 -0
- package/skills/hugging-face-model-trainer/scripts/train_dpo_example.py +106 -0
- package/skills/hugging-face-model-trainer/scripts/train_grpo_example.py +89 -0
- package/skills/hugging-face-model-trainer/scripts/train_sft_example.py +122 -0
- package/skills/hugging-face-model-trainer/scripts/unsloth_sft_example.py +512 -0
- package/skills/imagegen/LICENSE.txt +201 -0
- package/skills/imagegen/SKILL.md +180 -0
- package/skills/imagegen/agents/verdent.yaml +11 -0
- package/skills/imagegen/assets/icon-dark.png +0 -0
- package/skills/imagegen/assets/icon-light.png +0 -0
- package/skills/imagegen/assets/imagegen-small.svg +5 -0
- package/skills/imagegen/assets/imagegen.png +0 -0
- package/skills/imagegen/references/cli.md +132 -0
- package/skills/imagegen/references/image-api.md +36 -0
- package/skills/imagegen/references/network-notes.md +28 -0
- package/skills/imagegen/references/prompting.md +81 -0
- package/skills/imagegen/references/sample-prompts.md +384 -0
- package/skills/imagegen/scripts/image_gen.py +876 -0
- package/skills/impeccable/SKILL.md +450 -0
- package/skills/impeccable/reference/adapt.md +190 -0
- package/skills/impeccable/reference/animate.md +175 -0
- package/skills/impeccable/reference/audit.md +133 -0
- package/skills/impeccable/reference/bolder.md +113 -0
- package/skills/impeccable/reference/brand.md +114 -0
- package/skills/impeccable/reference/clarify.md +174 -0
- package/skills/impeccable/reference/cognitive-load.md +106 -0
- package/skills/impeccable/reference/color-and-contrast.md +105 -0
- package/skills/impeccable/reference/colorize.md +154 -0
- package/skills/impeccable/reference/craft.md +193 -0
- package/skills/impeccable/reference/critique.md +213 -0
- package/skills/impeccable/reference/delight.md +302 -0
- package/skills/impeccable/reference/distill.md +111 -0
- package/skills/impeccable/reference/document.md +427 -0
- package/skills/impeccable/reference/extract.md +69 -0
- package/skills/impeccable/reference/harden.md +347 -0
- package/skills/impeccable/reference/heuristics-scoring.md +234 -0
- package/skills/impeccable/reference/interaction-design.md +195 -0
- package/skills/impeccable/reference/layout.md +141 -0
- package/skills/impeccable/reference/live.md +622 -0
- package/skills/impeccable/reference/motion-design.md +109 -0
- package/skills/impeccable/reference/onboard.md +234 -0
- package/skills/impeccable/reference/optimize.md +258 -0
- package/skills/impeccable/reference/overdrive.md +130 -0
- package/skills/impeccable/reference/personas.md +179 -0
- package/skills/impeccable/reference/polish.md +233 -0
- package/skills/impeccable/reference/product.md +62 -0
- package/skills/impeccable/reference/quieter.md +99 -0
- package/skills/impeccable/reference/responsive-design.md +114 -0
- package/skills/impeccable/reference/shape.md +151 -0
- package/skills/impeccable/reference/spatial-design.md +100 -0
- package/skills/impeccable/reference/teach.md +156 -0
- package/skills/impeccable/reference/typeset.md +124 -0
- package/skills/impeccable/reference/typography.md +159 -0
- package/skills/impeccable/reference/ux-writing.md +107 -0
- package/skills/impeccable/references/A11Y-PATTERNS.md +233 -0
- package/skills/impeccable/references/WCAG.md +191 -0
- package/skills/impeccable/scripts/cleanup-deprecated.mjs +284 -0
- package/skills/impeccable/scripts/command-metadata.json +94 -0
- package/skills/impeccable/scripts/design-parser.mjs +820 -0
- package/skills/impeccable/scripts/detect-csp.mjs +198 -0
- package/skills/impeccable/scripts/impeccable-paths.mjs +105 -0
- package/skills/impeccable/scripts/is-generated.mjs +69 -0
- package/skills/impeccable/scripts/live-accept.mjs +595 -0
- package/skills/impeccable/scripts/live-browser-session.js +123 -0
- package/skills/impeccable/scripts/live-browser.js +4860 -0
- package/skills/impeccable/scripts/live-complete.mjs +75 -0
- package/skills/impeccable/scripts/live-completion.mjs +18 -0
- package/skills/impeccable/scripts/live-inject.mjs +446 -0
- package/skills/impeccable/scripts/live-poll.mjs +200 -0
- package/skills/impeccable/scripts/live-resume.mjs +48 -0
- package/skills/impeccable/scripts/live-server.mjs +836 -0
- package/skills/impeccable/scripts/live-session-store.mjs +254 -0
- package/skills/impeccable/scripts/live-status.mjs +47 -0
- package/skills/impeccable/scripts/live-wrap.mjs +632 -0
- package/skills/impeccable/scripts/live.mjs +247 -0
- package/skills/impeccable/scripts/load-context.mjs +141 -0
- package/skills/impeccable/scripts/modern-screenshot.umd.js +14 -0
- package/skills/impeccable/scripts/pin.mjs +214 -0
- package/skills/improve-codebase-architecture/DEEPENING.md +37 -0
- package/skills/improve-codebase-architecture/INTERFACE-DESIGN.md +44 -0
- package/skills/improve-codebase-architecture/LANGUAGE.md +53 -0
- package/skills/improve-codebase-architecture/SKILL.md +331 -0
- package/skills/incident-response/SKILL.md +97 -0
- package/skills/interview-me/SKILL.md +221 -0
- package/skills/knowledge-base-update/SKILL.md +90 -0
- package/skills/langchain-rag/SKILL.md +522 -0
- package/skills/langchain-rag/agents/verdent.yaml +12 -0
- package/skills/langchain-rag/assets/icon-dark.png +0 -0
- package/skills/langchain-rag/assets/icon-light.png +0 -0
- package/skills/linear/LICENSE.txt +202 -0
- package/skills/linear/SKILL.md +102 -0
- package/skills/linear/agents/verdent.yaml +7 -0
- package/skills/linear/assets/icon-dark.png +0 -0
- package/skills/linear/assets/icon-light.png +0 -0
- package/skills/linear/assets/linear.png +0 -0
- package/skills/localization-hub/ai-batch.md +23 -0
- package/skills/localization-hub/key-naming.md +15 -0
- package/skills/localization-hub/route-slugs.md +14 -0
- package/skills/mcp-builder/LICENSE.txt +202 -0
- package/skills/mcp-builder/SKILL.md +260 -0
- package/skills/mcp-builder/agents/verdent.yaml +7 -0
- package/skills/mcp-builder/assets/icon-dark.png +0 -0
- package/skills/mcp-builder/assets/icon-light.png +0 -0
- package/skills/mcp-builder/reference/mcp_best_practices.md +269 -0
- package/skills/mcp-builder/reference/node_mcp_server.md +980 -0
- package/skills/mcp-builder/reference/python_mcp_server.md +737 -0
- package/skills/mcp-builder/scripts/connections.py +151 -0
- package/skills/netlify-deploy/LICENSE.txt +201 -0
- package/skills/netlify-deploy/SKILL.md +261 -0
- package/skills/netlify-deploy/agents/verdent.yaml +7 -0
- package/skills/netlify-deploy/assets/icon-dark.png +0 -0
- package/skills/netlify-deploy/assets/icon-light.png +0 -0
- package/skills/netlify-deploy/assets/netlify.png +0 -0
- package/skills/netlify-deploy/references/cli-commands.md +162 -0
- package/skills/netlify-deploy/references/deployment-patterns.md +319 -0
- package/skills/netlify-deploy/references/netlify-toml.md +259 -0
- package/skills/nexus-mapper/SKILL.md +314 -0
- package/skills/nexus-mapper/references/language-customization.md +164 -0
- package/skills/nexus-mapper/references/output-schema.md +298 -0
- package/skills/nexus-mapper/references/probe-protocol.md +246 -0
- package/skills/nexus-mapper/scripts/extract_ast.py +705 -0
- package/skills/nexus-mapper/scripts/git_detective.py +194 -0
- package/skills/nexus-mapper/scripts/languages.json +127 -0
- package/skills/nexus-mapper/scripts/query_graph.py +556 -0
- package/skills/nexus-mapper/scripts/requirements.txt +6 -0
- package/skills/notion-spec-to-implementation/LICENSE.txt +7 -0
- package/skills/notion-spec-to-implementation/SKILL.md +67 -0
- package/skills/notion-spec-to-implementation/agents/verdent.yaml +7 -0
- package/skills/notion-spec-to-implementation/assets/icon-dark.png +0 -0
- package/skills/notion-spec-to-implementation/assets/icon-light.png +0 -0
- package/skills/notion-spec-to-implementation/assets/notion.png +0 -0
- package/skills/notion-spec-to-implementation/evaluations/README.md +130 -0
- package/skills/notion-spec-to-implementation/evaluations/basic-spec-implementation.json +31 -0
- package/skills/notion-spec-to-implementation/evaluations/spec-to-tasks.json +34 -0
- package/skills/notion-spec-to-implementation/examples/api-feature.md +511 -0
- package/skills/notion-spec-to-implementation/examples/database-migration.md +89 -0
- package/skills/notion-spec-to-implementation/examples/ui-component.md +78 -0
- package/skills/notion-spec-to-implementation/reference/milestone-summary-template.md +31 -0
- package/skills/notion-spec-to-implementation/reference/progress-tracking.md +507 -0
- package/skills/notion-spec-to-implementation/reference/progress-update-template.md +29 -0
- package/skills/notion-spec-to-implementation/reference/quick-implementation-plan.md +30 -0
- package/skills/notion-spec-to-implementation/reference/spec-parsing.md +406 -0
- package/skills/notion-spec-to-implementation/reference/standard-implementation-plan.md +170 -0
- package/skills/notion-spec-to-implementation/reference/task-creation-template.md +40 -0
- package/skills/notion-spec-to-implementation/reference/task-creation.md +467 -0
- package/skills/pdf/LICENSE.txt +201 -0
- package/skills/pdf/SKILL.md +715 -0
- package/skills/pdf/agents/verdent.yaml +9 -0
- package/skills/pdf/assets/icon-dark.png +0 -0
- package/skills/pdf/assets/icon-light.png +0 -0
- package/skills/pdf/assets/pdf.png +0 -0
- package/skills/pdf/reference.md +221 -0
- package/skills/performance/SKILL.md +400 -0
- package/skills/playwright/LICENSE.txt +201 -0
- package/skills/playwright/NOTICE.txt +14 -0
- package/skills/playwright/SKILL.md +151 -0
- package/skills/playwright/agents/verdent.yaml +7 -0
- package/skills/playwright/assets/icon-dark.png +0 -0
- package/skills/playwright/assets/icon-light.png +0 -0
- package/skills/playwright/assets/playwright.png +0 -0
- package/skills/playwright/references/cli.md +116 -0
- package/skills/playwright/references/workflows.md +95 -0
- package/skills/playwright/scripts/playwright_cli.sh +25 -0
- package/skills/playwriter/SKILL.md +69 -0
- package/skills/playwriter/agents/verdent.yaml +7 -0
- package/skills/playwriter/assets/icon-dark.png +0 -0
- package/skills/playwriter/assets/icon-light.png +0 -0
- package/skills/pptx/SKILL.md +302 -0
- package/skills/pptx/agents/verdent.yaml +9 -0
- package/skills/pptx/assets/icon-dark.png +0 -0
- package/skills/pptx/assets/icon-light.png +0 -0
- package/skills/pptx/references/generate-with-js.md +412 -0
- package/skills/pptx/references/modify-workflow.md +157 -0
- package/skills/pptx/references/python-charts.md +91 -0
- package/skills/pptx/scripts/check_env.py +207 -0
- package/skills/pptx/scripts/deck.py +161 -0
- package/skills/pptx/scripts/internals/__init__.py +0 -0
- package/skills/pptx/scripts/internals/cleanup.py +194 -0
- package/skills/pptx/scripts/internals/content.py +62 -0
- package/skills/pptx/scripts/internals/create.py +122 -0
- package/skills/pptx/scripts/internals/gridshot.py +181 -0
- package/skills/pptx/scripts/internals/imaging.py +77 -0
- package/skills/pptx/scripts/internals/integrity/__init__.py +0 -0
- package/skills/pptx/scripts/internals/integrity/checks.py +318 -0
- package/skills/pptx/scripts/internals/packaging.py +127 -0
- package/skills/pptx/scripts/internals/runtime/__init__.py +0 -0
- package/skills/pptx/scripts/internals/runtime/converter.py +154 -0
- package/skills/pptx/scripts/internals/structure.py +162 -0
- package/skills/pr-creator/SKILL.md +98 -0
- package/skills/pr-creator/agents/verdent.yaml +11 -0
- package/skills/pr-creator/assets/icon-dark.png +0 -0
- package/skills/pr-creator/assets/icon-light.png +0 -0
- package/skills/prd/SKILL.md +148 -0
- package/skills/prd/agents/verdent.yaml +11 -0
- package/skills/prd/assets/icon-dark.png +0 -0
- package/skills/prd/assets/icon-light.png +0 -0
- package/skills/prismx-skill-gateway/SKILL.md +179 -0
- package/skills/prismx-skill-gateway/references/installed-skills.md +38 -0
- package/skills/prismx-skills-catalog/SKILL.md +51 -0
- package/skills/prismx-skills-catalog/references/inventory.json +1092 -0
- package/skills/prompt-enhancer/SKILL.md +90 -0
- package/skills/react-native-best-practices/SKILL.md +241 -0
- package/skills/react-native-best-practices/agents/verdent.yaml +11 -0
- package/skills/react-native-best-practices/assets/icon-dark.png +0 -0
- package/skills/react-native-best-practices/assets/icon-light.png +0 -0
- package/skills/react-native-best-practices/references/bundle-analyze-app.md +211 -0
- package/skills/react-native-best-practices/references/bundle-analyze-js.md +262 -0
- package/skills/react-native-best-practices/references/bundle-barrel-exports.md +248 -0
- package/skills/react-native-best-practices/references/bundle-code-splitting.md +224 -0
- package/skills/react-native-best-practices/references/bundle-hermes-mmap.md +167 -0
- package/skills/react-native-best-practices/references/bundle-library-size.md +177 -0
- package/skills/react-native-best-practices/references/bundle-native-assets.md +214 -0
- package/skills/react-native-best-practices/references/bundle-r8-android.md +225 -0
- package/skills/react-native-best-practices/references/bundle-tree-shaking.md +214 -0
- package/skills/react-native-best-practices/references/images/bundle-treemap-source-map-explorer.png +0 -0
- package/skills/react-native-best-practices/references/images/controlled-textinput-pingpong.png +0 -0
- package/skills/react-native-best-practices/references/images/devtools-flamegraph.png +0 -0
- package/skills/react-native-best-practices/references/images/emerge-xray-ios.png +0 -0
- package/skills/react-native-best-practices/references/images/expo-atlas-treemap.png +0 -0
- package/skills/react-native-best-practices/references/images/flashlight-flatlist-vs-flashlist.png +0 -0
- package/skills/react-native-best-practices/references/images/fps-drop-graph.png +0 -0
- package/skills/react-native-best-practices/references/images/memory-heap-snapshot.png +0 -0
- package/skills/react-native-best-practices/references/images/tti-warm-start-diagram.png +0 -0
- package/skills/react-native-best-practices/references/images/view-hierarchy-flattening.png +0 -0
- package/skills/react-native-best-practices/references/images/xcode-instruments-templates.png +0 -0
- package/skills/react-native-best-practices/references/images/xcode-thread-view.png +0 -0
- package/skills/react-native-best-practices/references/js-animations-reanimated.md +254 -0
- package/skills/react-native-best-practices/references/js-atomic-state.md +245 -0
- package/skills/react-native-best-practices/references/js-concurrent-react.md +236 -0
- package/skills/react-native-best-practices/references/js-lists-flatlist-flashlist.md +236 -0
- package/skills/react-native-best-practices/references/js-measure-fps.md +180 -0
- package/skills/react-native-best-practices/references/js-memory-leaks.md +205 -0
- package/skills/react-native-best-practices/references/js-profile-react.md +161 -0
- package/skills/react-native-best-practices/references/js-react-compiler.md +368 -0
- package/skills/react-native-best-practices/references/js-uncontrolled-components.md +216 -0
- package/skills/react-native-best-practices/references/native-android-16kb-alignment.md +113 -0
- package/skills/react-native-best-practices/references/native-measure-tti.md +262 -0
- package/skills/react-native-best-practices/references/native-memory-leaks.md +240 -0
- package/skills/react-native-best-practices/references/native-memory-patterns.md +274 -0
- package/skills/react-native-best-practices/references/native-platform-setup.md +110 -0
- package/skills/react-native-best-practices/references/native-profiling.md +176 -0
- package/skills/react-native-best-practices/references/native-sdks-over-polyfills.md +183 -0
- package/skills/react-native-best-practices/references/native-threading-model.md +234 -0
- package/skills/react-native-best-practices/references/native-turbo-modules.md +292 -0
- package/skills/react-native-best-practices/references/native-view-flattening.md +201 -0
- package/skills/redis-development/FULL_GUIDE.md +2216 -0
- package/skills/redis-development/SKILL.md +124 -0
- package/skills/redis-development/agents/verdent.yaml +12 -0
- package/skills/redis-development/assets/icon-dark.png +0 -0
- package/skills/redis-development/assets/icon-light.png +0 -0
- package/skills/redis-development/assets/logo.png +0 -0
- package/skills/redis-development/rules/_contributing.md +97 -0
- package/skills/redis-development/rules/_sections.md +50 -0
- package/skills/redis-development/rules/_template.md +52 -0
- package/skills/redis-development/rules/cluster-hash-tags.md +78 -0
- package/skills/redis-development/rules/cluster-read-replicas.md +55 -0
- package/skills/redis-development/rules/conn-blocking.md +75 -0
- package/skills/redis-development/rules/conn-client-cache.md +70 -0
- package/skills/redis-development/rules/conn-pipelining.md +58 -0
- package/skills/redis-development/rules/conn-pooling.md +71 -0
- package/skills/redis-development/rules/conn-timeouts.md +41 -0
- package/skills/redis-development/rules/data-choose-structure.md +76 -0
- package/skills/redis-development/rules/data-hash-field-expiry.md +62 -0
- package/skills/redis-development/rules/data-incr.md +76 -0
- package/skills/redis-development/rules/data-key-naming.md +62 -0
- package/skills/redis-development/rules/data-transactions.md +74 -0
- package/skills/redis-development/rules/json-partial-updates.md +49 -0
- package/skills/redis-development/rules/json-vs-hash.md +105 -0
- package/skills/redis-development/rules/observe-commands.md +53 -0
- package/skills/redis-development/rules/observe-metrics.md +39 -0
- package/skills/redis-development/rules/ram-limits.md +42 -0
- package/skills/redis-development/rules/ram-ttl.md +55 -0
- package/skills/redis-development/rules/rqe-dialect.md +47 -0
- package/skills/redis-development/rules/rqe-field-types.md +81 -0
- package/skills/redis-development/rules/rqe-index-creation.md +73 -0
- package/skills/redis-development/rules/rqe-index-management.md +49 -0
- package/skills/redis-development/rules/rqe-query-optimization.md +49 -0
- package/skills/redis-development/rules/rqe-skip-initial-scan.md +82 -0
- package/skills/redis-development/rules/security-acls.md +41 -0
- package/skills/redis-development/rules/security-auth.md +78 -0
- package/skills/redis-development/rules/security-network.md +52 -0
- package/skills/redis-development/rules/semantic-cache-best-practices.md +72 -0
- package/skills/redis-development/rules/semantic-cache-langcache-usage.md +86 -0
- package/skills/redis-development/rules/stream-choosing-pattern.md +44 -0
- package/skills/redis-development/rules/vector-algorithm-choice.md +60 -0
- package/skills/redis-development/rules/vector-hybrid-search.md +49 -0
- package/skills/redis-development/rules/vector-index-creation.md +83 -0
- package/skills/redis-development/rules/vector-rag-pattern.md +51 -0
- package/skills/refactor/agents/verdent.yaml +11 -0
- package/skills/refactor/assets/icon-dark.png +0 -0
- package/skills/refactor/assets/icon-light.png +0 -0
- package/skills/runtime-inspector/SKILL.md +99 -0
- package/skills/schema-markup/SKILL.md +179 -0
- package/skills/schema-markup/evals/evals.json +87 -0
- package/skills/schema-markup/references/schema-examples.md +398 -0
- package/skills/screenshot/LICENSE.txt +201 -0
- package/skills/screenshot/SKILL.md +271 -0
- package/skills/screenshot/agents/verdent.yaml +7 -0
- package/skills/screenshot/assets/icon-dark.png +0 -0
- package/skills/screenshot/assets/icon-light.png +0 -0
- package/skills/screenshot/assets/screenshot.png +0 -0
- package/skills/screenshot/scripts/ensure_macos_permissions.sh +54 -0
- package/skills/screenshot/scripts/macos_display_info.swift +22 -0
- package/skills/screenshot/scripts/macos_permissions.swift +40 -0
- package/skills/screenshot/scripts/macos_window_info.swift +126 -0
- package/skills/screenshot/scripts/take_screenshot.ps1 +163 -0
- package/skills/screenshot/scripts/take_screenshot.py +585 -0
- package/skills/security-and-hardening/SKILL.md +349 -0
- package/skills/security-best-practices/LICENSE.txt +201 -0
- package/skills/security-best-practices/SKILL.md +91 -0
- package/skills/security-best-practices/agents/verdent.yaml +7 -0
- package/skills/security-best-practices/assets/icon-dark.png +0 -0
- package/skills/security-best-practices/assets/icon-light.png +0 -0
- package/skills/security-best-practices/references/golang-general-backend-security.md +988 -0
- package/skills/security-best-practices/references/javascript-express-web-server-security.md +1151 -0
- package/skills/security-best-practices/references/javascript-general-web-frontend-security.md +725 -0
- package/skills/security-best-practices/references/javascript-jquery-web-frontend-security.md +672 -0
- package/skills/security-best-practices/references/javascript-typescript-nextjs-web-server-security.md +1138 -0
- package/skills/security-best-practices/references/javascript-typescript-react-web-frontend-security.md +975 -0
- package/skills/security-best-practices/references/javascript-typescript-vue-web-frontend-security.md +789 -0
- package/skills/security-best-practices/references/python-django-web-server-security.md +880 -0
- package/skills/security-best-practices/references/python-fastapi-web-server-security.md +1030 -0
- package/skills/security-best-practices/references/python-flask-web-server-security.md +835 -0
- package/skills/security-ownership-map/LICENSE.txt +201 -0
- package/skills/security-ownership-map/SKILL.md +212 -0
- package/skills/security-ownership-map/agents/verdent.yaml +12 -0
- package/skills/security-ownership-map/assets/icon-dark.png +0 -0
- package/skills/security-ownership-map/assets/icon-light.png +0 -0
- package/skills/security-ownership-map/references/neo4j-import.md +60 -0
- package/skills/security-ownership-map/scripts/build_ownership_map.py +956 -0
- package/skills/security-ownership-map/scripts/community_maintainers.py +544 -0
- package/skills/security-ownership-map/scripts/query_ownership.py +483 -0
- package/skills/security-ownership-map/scripts/run_ownership_map.py +200 -0
- package/skills/security-threat-model/LICENSE.txt +201 -0
- package/skills/security-threat-model/SKILL.md +94 -0
- package/skills/security-threat-model/agents/verdent.yaml +7 -0
- package/skills/security-threat-model/assets/icon-dark.png +0 -0
- package/skills/security-threat-model/assets/icon-light.png +0 -0
- package/skills/security-threat-model/references/prompt-template.md +254 -0
- package/skills/security-threat-model/references/security-controls-and-assets.md +35 -0
- package/skills/seo-audit/SKILL.md +527 -0
- package/skills/seo-audit/evals/evals.json +136 -0
- package/skills/seo-audit/references/ai-writing-detection.md +200 -0
- package/skills/seo-audit/references/international-seo.md +230 -0
- package/skills/sequential-thinking/SKILL.md +224 -0
- package/skills/session-context-primer/SKILL.md +69 -0
- package/skills/shipping-and-launch/SKILL.md +309 -0
- package/skills/source-driven-development/SKILL.md +194 -0
- package/skills/spec-writer/SKILL.md +200 -0
- package/skills/speech/LICENSE.txt +201 -0
- package/skills/speech/SKILL.md +150 -0
- package/skills/speech/agents/verdent.yaml +12 -0
- package/skills/speech/assets/icon-dark.png +0 -0
- package/skills/speech/assets/icon-light.png +0 -0
- package/skills/speech/assets/speech-small.svg +3 -0
- package/skills/speech/assets/speech.png +0 -0
- package/skills/speech/references/accessibility.md +32 -0
- package/skills/speech/references/audio-api.md +31 -0
- package/skills/speech/references/cli.md +99 -0
- package/skills/speech/references/ivr.md +32 -0
- package/skills/speech/references/narration.md +31 -0
- package/skills/speech/references/network-notes.md +28 -0
- package/skills/speech/references/prompting.md +38 -0
- package/skills/speech/references/sample-prompts.md +44 -0
- package/skills/speech/references/voice-directions.md +80 -0
- package/skills/speech/references/voiceover.md +31 -0
- package/skills/speech/scripts/text_to_speech.py +528 -0
- package/skills/system-architect/SKILL.md +677 -0
- package/skills/system-designer/SKILL.md +601 -0
- package/skills/systematic-debugging/CREATION-LOG.md +119 -0
- package/skills/systematic-debugging/condition-based-waiting-example.ts +158 -0
- package/skills/systematic-debugging/condition-based-waiting.md +115 -0
- package/skills/systematic-debugging/defense-in-depth.md +122 -0
- package/skills/systematic-debugging/find-polluter.sh +63 -0
- package/skills/systematic-debugging/root-cause-tracing.md +169 -0
- package/skills/systematic-debugging/test-academic.md +14 -0
- package/skills/systematic-debugging/test-pressure-1.md +58 -0
- package/skills/systematic-debugging/test-pressure-2.md +68 -0
- package/skills/systematic-debugging/test-pressure-3.md +69 -0
- package/skills/task-planner/SKILL.md +699 -0
- package/skills/task-reviewer/SKILL.md +387 -0
- package/skills/task-skill-router/SKILL.md +105 -0
- package/skills/tech-evaluator/SKILL.md +181 -0
- package/skills/tech-evaluator/references/ADR_TEMPLATE.md +80 -0
- package/skills/tech-evaluator/scripts/evaluate_matrix.py +190 -0
- package/skills/test-driven-development/SKILL.md +383 -0
- package/skills/test-driven-development/testing-anti-patterns.md +299 -0
- package/skills/theme-factory/LICENSE.txt +202 -0
- package/skills/theme-factory/SKILL.md +64 -0
- package/skills/theme-factory/agents/verdent.yaml +11 -0
- package/skills/theme-factory/assets/icon-dark.png +0 -0
- package/skills/theme-factory/assets/icon-light.png +0 -0
- package/skills/theme-factory/theme-showcase.pdf +0 -0
- package/skills/theme-factory/themes/arctic-frost.md +19 -0
- package/skills/theme-factory/themes/botanical-garden.md +19 -0
- package/skills/theme-factory/themes/desert-rose.md +19 -0
- package/skills/theme-factory/themes/forest-canopy.md +19 -0
- package/skills/theme-factory/themes/golden-hour.md +19 -0
- package/skills/theme-factory/themes/midnight-galaxy.md +19 -0
- package/skills/theme-factory/themes/modern-minimalist.md +19 -0
- package/skills/theme-factory/themes/ocean-depths.md +19 -0
- package/skills/theme-factory/themes/sunset-boulevard.md +19 -0
- package/skills/theme-factory/themes/tech-innovation.md +19 -0
- package/skills/transcribe/LICENSE.txt +201 -0
- package/skills/transcribe/SKILL.md +86 -0
- package/skills/transcribe/agents/verdent.yaml +12 -0
- package/skills/transcribe/assets/icon-dark.png +0 -0
- package/skills/transcribe/assets/icon-light.png +0 -0
- package/skills/transcribe/assets/transcribe-small.svg +3 -0
- package/skills/transcribe/assets/transcribe.png +0 -0
- package/skills/transcribe/references/api.md +8 -0
- package/skills/transcribe/scripts/transcribe_diarize.py +276 -0
- package/skills/vercel-composition-patterns/FULL_GUIDE.md +946 -0
- package/skills/vercel-composition-patterns/SKILL.md +92 -0
- package/skills/vercel-composition-patterns/agents/verdent.yaml +12 -0
- package/skills/vercel-composition-patterns/assets/icon-dark.png +0 -0
- package/skills/vercel-composition-patterns/assets/icon-light.png +0 -0
- package/skills/vercel-composition-patterns/rules/_sections.md +29 -0
- package/skills/vercel-composition-patterns/rules/_template.md +24 -0
- package/skills/vercel-composition-patterns/rules/architecture-avoid-boolean-props.md +100 -0
- package/skills/vercel-composition-patterns/rules/architecture-compound-components.md +112 -0
- package/skills/vercel-composition-patterns/rules/patterns-children-over-render-props.md +87 -0
- package/skills/vercel-composition-patterns/rules/patterns-explicit-variants.md +100 -0
- package/skills/vercel-composition-patterns/rules/react19-no-forwardref.md +42 -0
- package/skills/vercel-composition-patterns/rules/state-context-interface.md +191 -0
- package/skills/vercel-composition-patterns/rules/state-decouple-implementation.md +113 -0
- package/skills/vercel-composition-patterns/rules/state-lift-state.md +125 -0
- package/skills/vercel-deploy/LICENSE.txt +21 -0
- package/skills/vercel-deploy/SKILL.md +75 -0
- package/skills/vercel-deploy/agents/verdent.yaml +7 -0
- package/skills/vercel-deploy/assets/icon-dark.png +0 -0
- package/skills/vercel-deploy/assets/icon-light.png +0 -0
- package/skills/vercel-deploy/assets/vercel.png +0 -0
- package/skills/vercel-deploy/scripts/deploy.sh +301 -0
- package/skills/vercel-react-best-practices/FULL_GUIDE.md +3254 -0
- package/skills/vercel-react-best-practices/SKILL.md +144 -0
- package/skills/vercel-react-best-practices/agents/verdent.yaml +12 -0
- package/skills/vercel-react-best-practices/assets/icon-dark.png +0 -0
- package/skills/vercel-react-best-practices/assets/icon-light.png +0 -0
- package/skills/vercel-react-best-practices/rules/_sections.md +46 -0
- package/skills/vercel-react-best-practices/rules/_template.md +28 -0
- package/skills/vercel-react-best-practices/rules/advanced-event-handler-refs.md +55 -0
- package/skills/vercel-react-best-practices/rules/advanced-init-once.md +42 -0
- package/skills/vercel-react-best-practices/rules/advanced-use-latest.md +39 -0
- package/skills/vercel-react-best-practices/rules/async-api-routes.md +38 -0
- package/skills/vercel-react-best-practices/rules/async-defer-await.md +80 -0
- package/skills/vercel-react-best-practices/rules/async-dependencies.md +51 -0
- package/skills/vercel-react-best-practices/rules/async-parallel.md +28 -0
- package/skills/vercel-react-best-practices/rules/async-suspense-boundaries.md +99 -0
- package/skills/vercel-react-best-practices/rules/bundle-barrel-imports.md +59 -0
- package/skills/vercel-react-best-practices/rules/bundle-conditional.md +31 -0
- package/skills/vercel-react-best-practices/rules/bundle-defer-third-party.md +49 -0
- package/skills/vercel-react-best-practices/rules/bundle-dynamic-imports.md +35 -0
- package/skills/vercel-react-best-practices/rules/bundle-preload.md +50 -0
- package/skills/vercel-react-best-practices/rules/client-event-listeners.md +74 -0
- package/skills/vercel-react-best-practices/rules/client-localstorage-schema.md +71 -0
- package/skills/vercel-react-best-practices/rules/client-passive-event-listeners.md +48 -0
- package/skills/vercel-react-best-practices/rules/client-swr-dedup.md +56 -0
- package/skills/vercel-react-best-practices/rules/js-batch-dom-css.md +107 -0
- package/skills/vercel-react-best-practices/rules/js-cache-function-results.md +80 -0
- package/skills/vercel-react-best-practices/rules/js-cache-property-access.md +28 -0
- package/skills/vercel-react-best-practices/rules/js-cache-storage.md +70 -0
- package/skills/vercel-react-best-practices/rules/js-combine-iterations.md +32 -0
- package/skills/vercel-react-best-practices/rules/js-early-exit.md +50 -0
- package/skills/vercel-react-best-practices/rules/js-flatmap-filter.md +60 -0
- package/skills/vercel-react-best-practices/rules/js-hoist-regexp.md +45 -0
- package/skills/vercel-react-best-practices/rules/js-index-maps.md +37 -0
- package/skills/vercel-react-best-practices/rules/js-length-check-first.md +49 -0
- package/skills/vercel-react-best-practices/rules/js-min-max-loop.md +82 -0
- package/skills/vercel-react-best-practices/rules/js-set-map-lookups.md +24 -0
- package/skills/vercel-react-best-practices/rules/js-tosorted-immutable.md +57 -0
- package/skills/vercel-react-best-practices/rules/rendering-activity.md +26 -0
- package/skills/vercel-react-best-practices/rules/rendering-animate-svg-wrapper.md +47 -0
- package/skills/vercel-react-best-practices/rules/rendering-conditional-render.md +40 -0
- package/skills/vercel-react-best-practices/rules/rendering-content-visibility.md +38 -0
- package/skills/vercel-react-best-practices/rules/rendering-hoist-jsx.md +46 -0
- package/skills/vercel-react-best-practices/rules/rendering-hydration-no-flicker.md +82 -0
- package/skills/vercel-react-best-practices/rules/rendering-hydration-suppress-warning.md +30 -0
- package/skills/vercel-react-best-practices/rules/rendering-resource-hints.md +85 -0
- package/skills/vercel-react-best-practices/rules/rendering-script-defer-async.md +68 -0
- package/skills/vercel-react-best-practices/rules/rendering-svg-precision.md +28 -0
- package/skills/vercel-react-best-practices/rules/rendering-usetransition-loading.md +75 -0
- package/skills/vercel-react-best-practices/rules/rerender-defer-reads.md +39 -0
- package/skills/vercel-react-best-practices/rules/rerender-dependencies.md +45 -0
- package/skills/vercel-react-best-practices/rules/rerender-derived-state-no-effect.md +40 -0
- package/skills/vercel-react-best-practices/rules/rerender-derived-state.md +29 -0
- package/skills/vercel-react-best-practices/rules/rerender-functional-setstate.md +74 -0
- package/skills/vercel-react-best-practices/rules/rerender-lazy-state-init.md +58 -0
- package/skills/vercel-react-best-practices/rules/rerender-memo-with-default-value.md +38 -0
- package/skills/vercel-react-best-practices/rules/rerender-memo.md +44 -0
- package/skills/vercel-react-best-practices/rules/rerender-move-effect-to-event.md +45 -0
- package/skills/vercel-react-best-practices/rules/rerender-no-inline-components.md +82 -0
- package/skills/vercel-react-best-practices/rules/rerender-simple-expression-in-memo.md +35 -0
- package/skills/vercel-react-best-practices/rules/rerender-transitions.md +40 -0
- package/skills/vercel-react-best-practices/rules/rerender-use-ref-transient-values.md +73 -0
- package/skills/vercel-react-best-practices/rules/server-after-nonblocking.md +73 -0
- package/skills/vercel-react-best-practices/rules/server-auth-actions.md +96 -0
- package/skills/vercel-react-best-practices/rules/server-cache-lru.md +41 -0
- package/skills/vercel-react-best-practices/rules/server-cache-react.md +76 -0
- package/skills/vercel-react-best-practices/rules/server-dedup-props.md +65 -0
- package/skills/vercel-react-best-practices/rules/server-hoist-static-io.md +142 -0
- package/skills/vercel-react-best-practices/rules/server-parallel-fetching.md +83 -0
- package/skills/vercel-react-best-practices/rules/server-serialization.md +38 -0
- package/skills/verdent-image-cli/SKILL.md +218 -0
- package/skills/verdent-image-cli/agents/verdent.yaml +11 -0
- package/skills/verdent-image-cli/assets/icon-dark.png +0 -0
- package/skills/verdent-image-cli/assets/icon-light.png +0 -0
- package/skills/verdent-skills-catalog/SKILL.md +72 -0
- package/skills/verdent-skills-catalog/references/categories.json +158 -0
- package/skills/verdent-skills-catalog/references/inventory.json +493 -0
- package/skills/verification-before-completion/SKILL.md +139 -0
- package/skills/web-quality-audit/SKILL.md +172 -0
- package/skills/web-quality-audit/scripts/analyze.sh +113 -0
- package/skills/webapp-testing/LICENSE.txt +202 -0
- package/skills/webapp-testing/SKILL.md +302 -0
- package/skills/webapp-testing/examples/console_logging.py +35 -0
- package/skills/webapp-testing/examples/element_discovery.py +40 -0
- package/skills/webapp-testing/examples/static_html_automation.py +33 -0
- package/skills/webapp-testing/scripts/with_server.py +110 -0
- package/skills/workers-best-practices/SKILL.md +132 -0
- package/skills/workers-best-practices/agents/verdent.yaml +11 -0
- package/skills/workers-best-practices/assets/icon-dark.png +0 -0
- package/skills/workers-best-practices/assets/icon-light.png +0 -0
- package/skills/workers-best-practices/references/review.md +174 -0
- package/skills/workers-best-practices/references/rules.md +463 -0
- package/skills/xlsx/SKILL.md +318 -0
- package/skills/xlsx/agents/verdent.yaml +9 -0
- package/skills/xlsx/assets/icon-dark.png +0 -0
- package/skills/xlsx/assets/icon-light.png +0 -0
- package/skills/xlsx/assets/spreadsheet.png +0 -0
- package/skills/xlsx/references/advanced-analysis.md +272 -0
- package/skills/xlsx/references/examples/openpyxl/create_basic_spreadsheet.py +51 -0
- package/skills/xlsx/references/examples/openpyxl/create_spreadsheet_with_styling.py +96 -0
- package/skills/xlsx/references/examples/openpyxl/read_existing_spreadsheet.py +59 -0
- package/skills/xlsx/references/examples/openpyxl/styling_spreadsheet.py +79 -0
- package/skills/xlsx/scripts/formula_engine.py +219 -0
- package/skills/xlsx/scripts/profile.py +62 -0
- package/src/commands/init.js +27 -3
- package/src/commands/pipeline.js +31 -0
- package/src/commands/recover.js +62 -0
- package/src/commands/route.js +7 -0
- package/src/commands/scaffold.js +7 -1
- package/src/commands/skill.js +114 -0
- package/src/commands/ui.js +50 -0
- package/src/commands/upgrade.js +2 -2
- package/src/lib/capability-router.js +4 -3
- package/src/lib/contract.js +49 -0
- package/src/lib/disabled-skills.js +86 -0
- package/src/lib/doctor.js +32 -1
- package/src/lib/env-flags.js +35 -0
- package/src/lib/execution-policy.js +78 -4
- package/src/lib/explanation.js +159 -0
- package/src/lib/ide-sync.js +4 -3
- package/src/lib/pipeline.js +68 -0
- package/src/lib/recover.js +93 -0
- package/src/lib/registry.js +79 -0
- package/src/lib/route-engine.js +21 -1
- package/src/lib/scaffold/index.js +23 -7
- package/src/lib/scaffold/presets.js +200 -31
- package/src/lib/ui-server.js +139 -0
- package/src/lib/upgrade-matrix.js +16 -1
- package/src/lib/workspace-boundary.js +60 -0
- package/templates/minimal/AGENT.md +10 -1
- package/templates/minimal/GUNLUK.md +12 -0
- package/templates/minimal/docs/conventions/daily-use.md +130 -0
- package/templates/minimal/docs/conventions/task-to-capability-cheatsheet.md +29 -0
- package/templates/minimal/docs/kullanim-kilavuzu.md +374 -0
- package/ui/app.js +167 -0
- package/ui/index.html +75 -0
- package/ui/styles.css +227 -0
- package/workflows/audit.md +143 -0
- package/workflows/blueprint.md +374 -0
- package/workflows/challenge.md +322 -0
- package/workflows/change.md +162 -0
- package/workflows/craft.md +135 -0
- package/workflows/design-system.md +248 -0
- package/workflows/explore.md +226 -0
- package/workflows/forge.md +570 -34
- package/workflows/genesis.md +307 -0
- package/workflows/ingest.md +145 -0
- package/workflows/init.md +216 -0
- package/workflows/probe.md +181 -0
- package/workflows/query-to-page.md +134 -0
- package/workflows/quickstart.md +111 -0
- package/workflows/retro.md +78 -0
- package/workflows/upgrade.md +146 -0
- package/workflows/wiki-lint.md +159 -0
- package/templates/bundle/skills/capability-router/SKILL.md +0 -12
- package/templates/bundle/skills/context-memory-bridge/SKILL.md +0 -17
- package/templates/bundle/skills/localization-hub/SKILL.md +0 -17
- package/templates/bundle/skills/refactor/SKILL.md +0 -17
- package/templates/bundle/skills/systematic-debugging/SKILL.md +0 -19
- package/templates/bundle/workflows/forge.md +0 -51
|
@@ -0,0 +1,549 @@
|
|
|
1
|
+
---
|
|
2
|
+
name: auth-patterns
|
|
3
|
+
description: >
|
|
4
|
+
Complete guide for implementing authentication and authorization in modern applications.
|
|
5
|
+
Covers JWT, OAuth2, OIDC, session management, RBAC/ABAC, MFA, social login,
|
|
6
|
+
password hashing, and security best practices for auth flows.
|
|
7
|
+
version: 1.0.0
|
|
8
|
+
trigger_keywords:
|
|
9
|
+
- auth
|
|
10
|
+
- login
|
|
11
|
+
- JWT
|
|
12
|
+
- OAuth
|
|
13
|
+
- session
|
|
14
|
+
- permission
|
|
15
|
+
- RBAC
|
|
16
|
+
- ABAC
|
|
17
|
+
- token
|
|
18
|
+
- password
|
|
19
|
+
- MFA
|
|
20
|
+
- 2FA
|
|
21
|
+
- OIDC
|
|
22
|
+
- SSO
|
|
23
|
+
- social login
|
|
24
|
+
- API key
|
|
25
|
+
---
|
|
26
|
+
|
|
27
|
+
# Authentication & Authorization Patterns
|
|
28
|
+
|
|
29
|
+
## 1. Authentication Methods Overview
|
|
30
|
+
|
|
31
|
+
| Method | Stateless | Best For | Complexity |
|
|
32
|
+
|--------|-----------|----------|------------|
|
|
33
|
+
| **JWT (JSON Web Tokens)** | Yes | SPAs, mobile apps, microservices | Medium |
|
|
34
|
+
| **Session-based** | No (server state) | Traditional web apps, SSR | Low |
|
|
35
|
+
| **OAuth 2.0 / OIDC** | Depends | Third-party login, delegated auth | High |
|
|
36
|
+
| **API Keys** | Yes | Server-to-server, public APIs | Low |
|
|
37
|
+
| **mTLS (Mutual TLS)** | Yes | Service mesh, zero-trust infra | High |
|
|
38
|
+
| **Passkeys / WebAuthn** | Yes | Passwordless modern apps | Medium |
|
|
39
|
+
|
|
40
|
+
---
|
|
41
|
+
|
|
42
|
+
## 2. JWT (JSON Web Tokens)
|
|
43
|
+
|
|
44
|
+
### 2.1 Token Structure
|
|
45
|
+
|
|
46
|
+
```
|
|
47
|
+
Header.Payload.Signature
|
|
48
|
+
|
|
49
|
+
{ { HMACSHA256(
|
|
50
|
+
"alg": "RS256", "sub": "user-123", base64(header) + "." +
|
|
51
|
+
"typ": "JWT" "email": "a@b.com", base64(payload),
|
|
52
|
+
} "role": "admin", secret
|
|
53
|
+
"iat": 1700000000, )
|
|
54
|
+
"exp": 1700003600
|
|
55
|
+
}
|
|
56
|
+
```
|
|
57
|
+
|
|
58
|
+
### 2.2 JWT Best Practices
|
|
59
|
+
|
|
60
|
+
| Practice | Details |
|
|
61
|
+
|----------|---------|
|
|
62
|
+
| **Use RS256 over HS256** | Asymmetric keys — the verifier doesn't need the signing secret |
|
|
63
|
+
| **Short expiry for access tokens** | 15 minutes or less |
|
|
64
|
+
| **Use refresh tokens** | Long-lived (7–30 days), stored securely, rotated on use |
|
|
65
|
+
| **Never store sensitive data in payload** | JWTs are base64-encoded, not encrypted |
|
|
66
|
+
| **Include only necessary claims** | `sub`, `role`, `exp`, `iat`, `jti` — avoid bloated tokens |
|
|
67
|
+
| **Use `jti` (JWT ID)** | Enables token revocation via a blocklist |
|
|
68
|
+
| **Validate `iss`, `aud`, `exp`** | Always verify issuer, audience, and expiry server-side |
|
|
69
|
+
|
|
70
|
+
### 2.3 Token Rotation Flow
|
|
71
|
+
|
|
72
|
+
```
|
|
73
|
+
1. Client authenticates → receives access_token + refresh_token
|
|
74
|
+
2. Access token expires (15 min)
|
|
75
|
+
3. Client sends refresh_token to /auth/refresh
|
|
76
|
+
4. Server validates refresh_token:
|
|
77
|
+
a. Check not revoked (DB/Redis lookup)
|
|
78
|
+
b. Check not expired
|
|
79
|
+
c. Issue NEW access_token + NEW refresh_token
|
|
80
|
+
d. Revoke the OLD refresh_token (one-time use)
|
|
81
|
+
5. If refresh_token is reused → revoke ALL tokens for user (breach detected)
|
|
82
|
+
```
|
|
83
|
+
|
|
84
|
+
### 2.4 Token Storage
|
|
85
|
+
|
|
86
|
+
| Storage | XSS Safe | CSRF Safe | Recommended |
|
|
87
|
+
|---------|----------|-----------|-------------|
|
|
88
|
+
| **HttpOnly cookie** | ✅ | ❌ (needs CSRF token) | ✅ Best for web apps |
|
|
89
|
+
| **localStorage** | ❌ | ✅ | ❌ Avoid |
|
|
90
|
+
| **sessionStorage** | ❌ | ✅ | ❌ Avoid |
|
|
91
|
+
| **In-memory (JS variable)** | ✅ | ✅ | ✅ Good for SPAs (lost on refresh) |
|
|
92
|
+
| **HttpOnly cookie + in-memory** | ✅ | ✅ | ✅ Best hybrid approach |
|
|
93
|
+
|
|
94
|
+
---
|
|
95
|
+
|
|
96
|
+
## 3. Session-Based Authentication
|
|
97
|
+
|
|
98
|
+
### 3.1 Flow
|
|
99
|
+
|
|
100
|
+
```
|
|
101
|
+
1. User POSTs credentials to /login
|
|
102
|
+
2. Server validates, creates session in store (Redis/DB)
|
|
103
|
+
3. Server sets session ID in HttpOnly, Secure, SameSite cookie
|
|
104
|
+
4. Subsequent requests include cookie automatically
|
|
105
|
+
5. Server looks up session by ID on each request
|
|
106
|
+
6. Logout: delete session from store + clear cookie
|
|
107
|
+
```
|
|
108
|
+
|
|
109
|
+
### 3.2 Session Storage Options
|
|
110
|
+
|
|
111
|
+
| Store | Pros | Cons |
|
|
112
|
+
|-------|------|------|
|
|
113
|
+
| **Redis** | Fast, TTL support, shared across instances | Requires Redis infrastructure |
|
|
114
|
+
| **Database** | Durable, queryable | Slower, needs cleanup job |
|
|
115
|
+
| **In-memory** | Simplest | Lost on restart, can't scale horizontally |
|
|
116
|
+
| **Encrypted cookie** | No server state | Size limited, can't revoke server-side |
|
|
117
|
+
|
|
118
|
+
### 3.3 Session Configuration
|
|
119
|
+
|
|
120
|
+
```javascript
|
|
121
|
+
// Express.js example with express-session + Redis
|
|
122
|
+
const session = require('express-session');
|
|
123
|
+
const RedisStore = require('connect-redis').default;
|
|
124
|
+
|
|
125
|
+
app.use(session({
|
|
126
|
+
store: new RedisStore({ client: redisClient }),
|
|
127
|
+
secret: process.env.SESSION_SECRET,
|
|
128
|
+
resave: false,
|
|
129
|
+
saveUninitialized: false,
|
|
130
|
+
name: '__session', // Don't use default 'connect.sid'
|
|
131
|
+
cookie: {
|
|
132
|
+
httpOnly: true,
|
|
133
|
+
secure: true, // HTTPS only
|
|
134
|
+
sameSite: 'lax', // CSRF protection
|
|
135
|
+
maxAge: 24 * 60 * 60 * 1000, // 24 hours
|
|
136
|
+
domain: '.example.com',
|
|
137
|
+
},
|
|
138
|
+
}));
|
|
139
|
+
```
|
|
140
|
+
|
|
141
|
+
---
|
|
142
|
+
|
|
143
|
+
## 4. OAuth 2.0 & OpenID Connect
|
|
144
|
+
|
|
145
|
+
### 4.1 OAuth 2.0 Grant Types
|
|
146
|
+
|
|
147
|
+
| Grant Type | Use Case | Security Level |
|
|
148
|
+
|------------|----------|----------------|
|
|
149
|
+
| **Authorization Code + PKCE** | SPAs, mobile apps, server apps | ✅ Highest |
|
|
150
|
+
| **Authorization Code** (no PKCE) | Server-side web apps (legacy) | ✅ High |
|
|
151
|
+
| **Client Credentials** | Machine-to-machine | ✅ High |
|
|
152
|
+
| **Device Code** | Smart TVs, CLI tools | Medium |
|
|
153
|
+
| **Implicit** (deprecated) | Legacy SPAs | ❌ Deprecated — use Auth Code + PKCE |
|
|
154
|
+
| **Resource Owner Password** (deprecated) | Legacy first-party apps | ❌ Deprecated |
|
|
155
|
+
|
|
156
|
+
### 4.2 Authorization Code + PKCE Flow
|
|
157
|
+
|
|
158
|
+
```
|
|
159
|
+
1. Client generates code_verifier (random string) + code_challenge (SHA256 hash)
|
|
160
|
+
2. Client redirects to authorization server:
|
|
161
|
+
GET /authorize?response_type=code&client_id=...&redirect_uri=...
|
|
162
|
+
&scope=openid profile email&state=RANDOM&code_challenge=...
|
|
163
|
+
&code_challenge_method=S256
|
|
164
|
+
3. User authenticates and consents
|
|
165
|
+
4. Auth server redirects back with authorization code:
|
|
166
|
+
GET /callback?code=AUTH_CODE&state=RANDOM
|
|
167
|
+
5. Client exchanges code for tokens (server-side):
|
|
168
|
+
POST /token { grant_type=authorization_code, code=AUTH_CODE,
|
|
169
|
+
redirect_uri=..., code_verifier=ORIGINAL_VERIFIER }
|
|
170
|
+
6. Auth server returns: { access_token, refresh_token, id_token }
|
|
171
|
+
```
|
|
172
|
+
|
|
173
|
+
### 4.3 OIDC vs OAuth 2.0
|
|
174
|
+
|
|
175
|
+
| Feature | OAuth 2.0 | OIDC (OAuth 2.0 + Identity Layer) |
|
|
176
|
+
|---------|-----------|-----------------------------------|
|
|
177
|
+
| Purpose | Authorization (access) | Authentication (identity) + Authorization |
|
|
178
|
+
| Token | `access_token` | `access_token` + `id_token` |
|
|
179
|
+
| User info | No standard | `/userinfo` endpoint, `id_token` claims |
|
|
180
|
+
| Scope | Custom | `openid`, `profile`, `email` |
|
|
181
|
+
|
|
182
|
+
---
|
|
183
|
+
|
|
184
|
+
## 5. Authorization Models
|
|
185
|
+
|
|
186
|
+
### 5.1 RBAC (Role-Based Access Control)
|
|
187
|
+
|
|
188
|
+
```
|
|
189
|
+
User → has Roles → Roles have Permissions
|
|
190
|
+
|
|
191
|
+
Example:
|
|
192
|
+
User "alice" → Role "editor" → Permissions ["posts:read", "posts:write", "posts:delete"]
|
|
193
|
+
User "bob" → Role "viewer" → Permissions ["posts:read"]
|
|
194
|
+
```
|
|
195
|
+
|
|
196
|
+
**Database schema:**
|
|
197
|
+
|
|
198
|
+
```sql
|
|
199
|
+
CREATE TABLE roles (
|
|
200
|
+
id UUID PRIMARY KEY,
|
|
201
|
+
name VARCHAR(50) UNIQUE NOT NULL -- 'admin', 'editor', 'viewer'
|
|
202
|
+
);
|
|
203
|
+
|
|
204
|
+
CREATE TABLE permissions (
|
|
205
|
+
id UUID PRIMARY KEY,
|
|
206
|
+
action VARCHAR(50) NOT NULL, -- 'read', 'write', 'delete'
|
|
207
|
+
resource VARCHAR(100) NOT NULL -- 'posts', 'users', 'settings'
|
|
208
|
+
);
|
|
209
|
+
|
|
210
|
+
CREATE TABLE role_permissions (
|
|
211
|
+
role_id UUID REFERENCES roles(id),
|
|
212
|
+
permission_id UUID REFERENCES permissions(id),
|
|
213
|
+
PRIMARY KEY (role_id, permission_id)
|
|
214
|
+
);
|
|
215
|
+
|
|
216
|
+
CREATE TABLE user_roles (
|
|
217
|
+
user_id UUID REFERENCES users(id),
|
|
218
|
+
role_id UUID REFERENCES roles(id),
|
|
219
|
+
PRIMARY KEY (user_id, role_id)
|
|
220
|
+
);
|
|
221
|
+
```
|
|
222
|
+
|
|
223
|
+
### 5.2 ABAC (Attribute-Based Access Control)
|
|
224
|
+
|
|
225
|
+
```
|
|
226
|
+
Policy: ALLOW if (user.department == resource.department AND user.clearance >= resource.classification)
|
|
227
|
+
|
|
228
|
+
Attributes:
|
|
229
|
+
- Subject: user role, department, clearance level
|
|
230
|
+
- Resource: type, owner, classification
|
|
231
|
+
- Action: read, write, delete
|
|
232
|
+
- Environment: time of day, IP address, device
|
|
233
|
+
```
|
|
234
|
+
|
|
235
|
+
**When to use ABAC over RBAC:**
|
|
236
|
+
- Fine-grained, context-dependent decisions
|
|
237
|
+
- Dynamic policies that change without code deploys
|
|
238
|
+
- Multi-tenant systems with per-tenant rules
|
|
239
|
+
- Regulatory compliance (HIPAA, GDPR data access controls)
|
|
240
|
+
|
|
241
|
+
### 5.3 Permission Check Implementation
|
|
242
|
+
|
|
243
|
+
```typescript
|
|
244
|
+
// Middleware pattern
|
|
245
|
+
function requirePermission(resource: string, action: string) {
|
|
246
|
+
return async (req: Request, res: Response, next: NextFunction) => {
|
|
247
|
+
const user = req.user;
|
|
248
|
+
const hasPermission = await checkPermission(user.id, resource, action);
|
|
249
|
+
|
|
250
|
+
if (!hasPermission) {
|
|
251
|
+
return res.status(403).json({
|
|
252
|
+
error: 'Forbidden',
|
|
253
|
+
message: `You do not have ${action} access to ${resource}`,
|
|
254
|
+
});
|
|
255
|
+
}
|
|
256
|
+
next();
|
|
257
|
+
};
|
|
258
|
+
}
|
|
259
|
+
|
|
260
|
+
// Usage
|
|
261
|
+
app.delete('/api/posts/:id',
|
|
262
|
+
authenticate,
|
|
263
|
+
requirePermission('posts', 'delete'),
|
|
264
|
+
deletePostHandler
|
|
265
|
+
);
|
|
266
|
+
```
|
|
267
|
+
|
|
268
|
+
---
|
|
269
|
+
|
|
270
|
+
## 6. Multi-Factor Authentication (MFA)
|
|
271
|
+
|
|
272
|
+
### 6.1 MFA Methods
|
|
273
|
+
|
|
274
|
+
| Method | Security | UX | Implementation |
|
|
275
|
+
|--------|----------|-----|----------------|
|
|
276
|
+
| **TOTP (Authenticator app)** | High | Good | `otplib`, `pyotp` |
|
|
277
|
+
| **SMS OTP** | Medium (SIM swap risk) | Easy | Twilio, AWS SNS |
|
|
278
|
+
| **Email OTP** | Medium | Easy | Any email service |
|
|
279
|
+
| **WebAuthn / Passkeys** | Very High | Excellent | `@simplewebauthn/server` |
|
|
280
|
+
| **Hardware keys (FIDO2)** | Very High | Moderate | YubiKey, Titan |
|
|
281
|
+
| **Push notification** | High | Excellent | Custom or Duo |
|
|
282
|
+
|
|
283
|
+
### 6.2 TOTP Implementation
|
|
284
|
+
|
|
285
|
+
```typescript
|
|
286
|
+
import { authenticator } from 'otplib';
|
|
287
|
+
|
|
288
|
+
// 1. Generate secret for user during MFA setup
|
|
289
|
+
const secret = authenticator.generateSecret();
|
|
290
|
+
// Store encrypted: user.mfa_secret = encrypt(secret)
|
|
291
|
+
|
|
292
|
+
// 2. Generate QR code URI
|
|
293
|
+
const otpauthUrl = authenticator.keyuri(user.email, 'MyApp', secret);
|
|
294
|
+
// Convert to QR code image using 'qrcode' library
|
|
295
|
+
|
|
296
|
+
// 3. Verify token during login
|
|
297
|
+
const isValid = authenticator.verify({ token: userInput, secret: decryptedSecret });
|
|
298
|
+
|
|
299
|
+
// 4. Generate backup codes (one-time use)
|
|
300
|
+
const backupCodes = Array.from({ length: 10 }, () =>
|
|
301
|
+
crypto.randomBytes(4).toString('hex') // e.g., "a1b2c3d4"
|
|
302
|
+
);
|
|
303
|
+
// Store hashed: hash each backup code with bcrypt
|
|
304
|
+
```
|
|
305
|
+
|
|
306
|
+
### 6.3 MFA Enrollment Flow
|
|
307
|
+
|
|
308
|
+
```
|
|
309
|
+
1. User enables MFA in settings
|
|
310
|
+
2. Server generates TOTP secret, returns QR code
|
|
311
|
+
3. User scans QR with authenticator app
|
|
312
|
+
4. User enters current TOTP code to verify setup
|
|
313
|
+
5. Server generates 10 backup codes, displays ONCE
|
|
314
|
+
6. User stores backup codes securely
|
|
315
|
+
7. MFA is now required on all future logins
|
|
316
|
+
```
|
|
317
|
+
|
|
318
|
+
---
|
|
319
|
+
|
|
320
|
+
## 7. Password Security
|
|
321
|
+
|
|
322
|
+
### 7.1 Hashing Algorithms
|
|
323
|
+
|
|
324
|
+
| Algorithm | Recommended | Notes |
|
|
325
|
+
|-----------|-------------|-------|
|
|
326
|
+
| **Argon2id** | ✅ Best | Winner of Password Hashing Competition, memory-hard |
|
|
327
|
+
| **bcrypt** | ✅ Good | Widely supported, proven, work factor adjustable |
|
|
328
|
+
| **scrypt** | ✅ Good | Memory-hard, less common than Argon2 |
|
|
329
|
+
| **PBKDF2** | ⚠️ Acceptable | NIST approved, but weaker than Argon2/bcrypt |
|
|
330
|
+
| **SHA-256/512** | ❌ Never | Not designed for passwords |
|
|
331
|
+
| **MD5** | ❌ Never | Broken, trivially reversible |
|
|
332
|
+
|
|
333
|
+
### 7.2 Configuration
|
|
334
|
+
|
|
335
|
+
```typescript
|
|
336
|
+
// bcrypt
|
|
337
|
+
import bcrypt from 'bcrypt';
|
|
338
|
+
const SALT_ROUNDS = 12; // Adjust: aim for ~250ms hash time
|
|
339
|
+
const hash = await bcrypt.hash(password, SALT_ROUNDS);
|
|
340
|
+
const isMatch = await bcrypt.compare(password, hash);
|
|
341
|
+
|
|
342
|
+
// Argon2id
|
|
343
|
+
import argon2 from 'argon2';
|
|
344
|
+
const hash = await argon2.hash(password, {
|
|
345
|
+
type: argon2.argon2id,
|
|
346
|
+
memoryCost: 65536, // 64 MB
|
|
347
|
+
timeCost: 3, // 3 iterations
|
|
348
|
+
parallelism: 4, // 4 threads
|
|
349
|
+
});
|
|
350
|
+
const isMatch = await argon2.verify(hash, password);
|
|
351
|
+
```
|
|
352
|
+
|
|
353
|
+
### 7.3 Password Policy
|
|
354
|
+
|
|
355
|
+
| Rule | Recommendation |
|
|
356
|
+
|------|----------------|
|
|
357
|
+
| **Minimum length** | 8 characters (NIST 800-63B: no max, allow up to 64+) |
|
|
358
|
+
| **Complexity rules** | ❌ Don't require uppercase/special chars (NIST guidance) |
|
|
359
|
+
| **Breached password check** | ✅ Check against HaveIBeenPwned API (k-anonymity model) |
|
|
360
|
+
| **Password rotation** | ❌ Don't force periodic changes (NIST guidance) |
|
|
361
|
+
| **Paste in password fields** | ✅ Allow (enables password manager use) |
|
|
362
|
+
| **Show/hide toggle** | ✅ Include for usability |
|
|
363
|
+
|
|
364
|
+
---
|
|
365
|
+
|
|
366
|
+
## 8. Social Login Integration
|
|
367
|
+
|
|
368
|
+
### 8.1 Provider Setup
|
|
369
|
+
|
|
370
|
+
| Provider | OAuth Endpoint | Scopes | Notes |
|
|
371
|
+
|----------|---------------|--------|-------|
|
|
372
|
+
| **Google** | `accounts.google.com` | `openid profile email` | OIDC compliant |
|
|
373
|
+
| **GitHub** | `github.com/login/oauth` | `user:email` | OAuth 2.0 only |
|
|
374
|
+
| **Apple** | `appleid.apple.com` | `name email` | Requires JWT client_secret |
|
|
375
|
+
| **Microsoft** | `login.microsoftonline.com` | `openid profile email` | OIDC compliant |
|
|
376
|
+
| **Facebook** | `facebook.com/v18.0/dialog/oauth` | `email public_profile` | OAuth 2.0 |
|
|
377
|
+
|
|
378
|
+
### 8.2 Account Linking Strategy
|
|
379
|
+
|
|
380
|
+
```
|
|
381
|
+
On social login callback:
|
|
382
|
+
1. Extract email from provider response
|
|
383
|
+
2. Check: does a user with this email already exist?
|
|
384
|
+
a. YES + same provider linked → Log in
|
|
385
|
+
b. YES + different provider → Link accounts (after email verification)
|
|
386
|
+
c. YES + password account → Prompt to link or reject
|
|
387
|
+
d. NO → Create new user account, link provider
|
|
388
|
+
3. Store provider info:
|
|
389
|
+
- provider_name (google, github, etc.)
|
|
390
|
+
- provider_user_id (unique per provider)
|
|
391
|
+
- access_token (encrypted, if needed for API calls)
|
|
392
|
+
```
|
|
393
|
+
|
|
394
|
+
### 8.3 Database Schema for Social Login
|
|
395
|
+
|
|
396
|
+
```sql
|
|
397
|
+
CREATE TABLE user_identities (
|
|
398
|
+
id UUID PRIMARY KEY,
|
|
399
|
+
user_id UUID NOT NULL REFERENCES users(id) ON DELETE CASCADE,
|
|
400
|
+
provider VARCHAR(50) NOT NULL, -- 'google', 'github', 'apple'
|
|
401
|
+
provider_id VARCHAR(255) NOT NULL, -- Provider's user ID
|
|
402
|
+
email VARCHAR(255),
|
|
403
|
+
access_token TEXT, -- Encrypted
|
|
404
|
+
refresh_token TEXT, -- Encrypted
|
|
405
|
+
token_expires TIMESTAMPTZ,
|
|
406
|
+
created_at TIMESTAMPTZ NOT NULL DEFAULT NOW(),
|
|
407
|
+
UNIQUE (provider, provider_id)
|
|
408
|
+
);
|
|
409
|
+
```
|
|
410
|
+
|
|
411
|
+
---
|
|
412
|
+
|
|
413
|
+
## 9. API Key Authentication
|
|
414
|
+
|
|
415
|
+
### 9.1 API Key Design
|
|
416
|
+
|
|
417
|
+
```
|
|
418
|
+
Format: prefix_environment_randomBytes
|
|
419
|
+
Example: myapp_live_a1b2c3d4e5f6g7h8i9j0k1l2m3n4o5p6
|
|
420
|
+
|
|
421
|
+
Rules:
|
|
422
|
+
- Generate with crypto-secure random: crypto.randomBytes(32).toString('hex')
|
|
423
|
+
- Store HASHED in database (SHA-256 is fine for API keys, unlike passwords)
|
|
424
|
+
- Show full key only ONCE at creation time
|
|
425
|
+
- Include a recognizable prefix for identification
|
|
426
|
+
- Support key rotation (multiple active keys per user)
|
|
427
|
+
```
|
|
428
|
+
|
|
429
|
+
### 9.2 API Key Security
|
|
430
|
+
|
|
431
|
+
| Practice | Details |
|
|
432
|
+
|----------|---------|
|
|
433
|
+
| **Hash before storing** | `SHA-256(key)` — never store plaintext |
|
|
434
|
+
| **Rate limit per key** | Prevent abuse; 100–1000 req/min typical |
|
|
435
|
+
| **Scope/permission per key** | Read-only vs read-write keys |
|
|
436
|
+
| **Expiration date** | Optional but recommended, force rotation |
|
|
437
|
+
| **IP allowlist** | Optional, restrict to known server IPs |
|
|
438
|
+
| **Audit logging** | Log every API key usage with timestamp + IP |
|
|
439
|
+
| **Revocation** | Instant revocation, takes effect immediately |
|
|
440
|
+
|
|
441
|
+
---
|
|
442
|
+
|
|
443
|
+
## 10. Security Checklist for Auth Flows
|
|
444
|
+
|
|
445
|
+
### 10.1 CSRF Prevention
|
|
446
|
+
|
|
447
|
+
| Context | Protection |
|
|
448
|
+
|---------|------------|
|
|
449
|
+
| **Session cookies** | `SameSite=Lax` or `Strict` + CSRF token |
|
|
450
|
+
| **JWT in cookie** | `SameSite=Lax` + CSRF token in header |
|
|
451
|
+
| **JWT in header** | Not vulnerable (browser doesn't auto-send) |
|
|
452
|
+
| **OAuth state param** | Always use `state` parameter with CSRF token |
|
|
453
|
+
|
|
454
|
+
### 10.2 XSS Prevention in Auth
|
|
455
|
+
|
|
456
|
+
| Rule | Details |
|
|
457
|
+
|------|---------|
|
|
458
|
+
| **HttpOnly cookies** | JS cannot access auth cookies |
|
|
459
|
+
| **CSP headers** | `Content-Security-Policy: script-src 'self'` |
|
|
460
|
+
| **Sanitize all output** | HTML-encode user data before rendering |
|
|
461
|
+
| **No tokens in URLs** | Never put tokens in query strings (logged, cached, leaked in Referer) |
|
|
462
|
+
| **Subresource Integrity** | `<script integrity="sha384-...">` for CDN scripts |
|
|
463
|
+
|
|
464
|
+
### 10.3 Brute Force Protection
|
|
465
|
+
|
|
466
|
+
```typescript
|
|
467
|
+
// Rate limiting login attempts
|
|
468
|
+
const loginLimiter = rateLimit({
|
|
469
|
+
windowMs: 15 * 60 * 1000, // 15 minutes
|
|
470
|
+
max: 5, // 5 attempts per window
|
|
471
|
+
keyGenerator: (req) => req.body.email, // Per-account limiting
|
|
472
|
+
handler: (req, res) => {
|
|
473
|
+
res.status(429).json({ error: 'Too many login attempts. Try again in 15 minutes.' });
|
|
474
|
+
},
|
|
475
|
+
});
|
|
476
|
+
|
|
477
|
+
// Account lockout after N failures
|
|
478
|
+
// 1. Track failed attempts in DB/Redis
|
|
479
|
+
// 2. Lock account after 10 failures
|
|
480
|
+
// 3. Require email verification or admin unlock
|
|
481
|
+
// 4. Implement progressive delays: 1s, 2s, 4s, 8s...
|
|
482
|
+
```
|
|
483
|
+
|
|
484
|
+
### 10.4 Comprehensive Auth Security Checklist
|
|
485
|
+
|
|
486
|
+
| Category | Item | Status |
|
|
487
|
+
|----------|------|--------|
|
|
488
|
+
| **Transport** | All auth endpoints over HTTPS | ☐ |
|
|
489
|
+
| **Transport** | HSTS header enabled | ☐ |
|
|
490
|
+
| **Passwords** | Argon2id or bcrypt hashing | ☐ |
|
|
491
|
+
| **Passwords** | Breached password check (HIBP) | ☐ |
|
|
492
|
+
| **Tokens** | Short-lived access tokens (≤15 min) | ☐ |
|
|
493
|
+
| **Tokens** | Refresh token rotation (one-time use) | ☐ |
|
|
494
|
+
| **Tokens** | Secure token storage (HttpOnly cookies) | ☐ |
|
|
495
|
+
| **Sessions** | Regenerate session ID after login | ☐ |
|
|
496
|
+
| **Sessions** | Clear session on logout (server + client) | ☐ |
|
|
497
|
+
| **CSRF** | SameSite cookie attribute set | ☐ |
|
|
498
|
+
| **CSRF** | CSRF token for state-changing operations | ☐ |
|
|
499
|
+
| **XSS** | CSP headers configured | ☐ |
|
|
500
|
+
| **XSS** | No tokens in localStorage | ☐ |
|
|
501
|
+
| **Brute force** | Rate limiting on login endpoint | ☐ |
|
|
502
|
+
| **Brute force** | Account lockout policy | ☐ |
|
|
503
|
+
| **OAuth** | `state` parameter for CSRF | ☐ |
|
|
504
|
+
| **OAuth** | PKCE for public clients | ☐ |
|
|
505
|
+
| **Logging** | Log auth events (login, failure, MFA) | ☐ |
|
|
506
|
+
| **Logging** | Never log passwords or tokens | ☐ |
|
|
507
|
+
| **MFA** | Offer TOTP or WebAuthn | ☐ |
|
|
508
|
+
| **MFA** | Backup codes generated and stored hashed | ☐ |
|
|
509
|
+
|
|
510
|
+
---
|
|
511
|
+
|
|
512
|
+
## 11. Session Management Best Practices
|
|
513
|
+
|
|
514
|
+
### 11.1 Session Lifecycle
|
|
515
|
+
|
|
516
|
+
```
|
|
517
|
+
CREATE → On successful authentication
|
|
518
|
+
EXTEND → On each authenticated request (sliding expiry)
|
|
519
|
+
REFRESH → When approaching expiry (optional)
|
|
520
|
+
REVOKE → On logout, password change, or security event
|
|
521
|
+
EXPIRE → After max idle time (30 min) or absolute time (24 hrs)
|
|
522
|
+
CLEANUP → Scheduled job to purge expired sessions
|
|
523
|
+
```
|
|
524
|
+
|
|
525
|
+
### 11.2 Session Invalidation Triggers
|
|
526
|
+
|
|
527
|
+
| Event | Action |
|
|
528
|
+
|-------|--------|
|
|
529
|
+
| User logs out | Delete session |
|
|
530
|
+
| Password changed | Invalidate ALL sessions for user |
|
|
531
|
+
| Email changed | Invalidate ALL sessions for user |
|
|
532
|
+
| MFA enabled/disabled | Invalidate ALL other sessions |
|
|
533
|
+
| Account compromised | Invalidate ALL sessions + force password reset |
|
|
534
|
+
| Role/permission changed | Invalidate ALL sessions (force re-auth) |
|
|
535
|
+
| Suspicious activity | Invalidate session + notify user |
|
|
536
|
+
|
|
537
|
+
### 11.3 "Remember Me" Implementation
|
|
538
|
+
|
|
539
|
+
```
|
|
540
|
+
Without "Remember Me":
|
|
541
|
+
- Session cookie (no Max-Age) → expires when browser closes
|
|
542
|
+
|
|
543
|
+
With "Remember Me":
|
|
544
|
+
- Persistent cookie (Max-Age: 30 days)
|
|
545
|
+
- Store a separate "remember token" (not the session ID)
|
|
546
|
+
- On return visit: validate remember token → create new session
|
|
547
|
+
- Remember token is one-time use (rotate on each use)
|
|
548
|
+
- Allow user to view/revoke active "remembered" devices
|
|
549
|
+
```
|