npm - ginskill-init - Versions diffs - 2.7.0 - Mend

ginskill-init 2.7.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (128) hide show

package/.wrangler/cache/pages.json +4 -0
package/.wrangler/cache/wrangler-account.json +6 -0
package/DEVELOPMENT.md +510 -0
package/README.md +104 -0
package/agents/developer.md +56 -0
package/agents/frontend-design.md +69 -0
package/agents/mobile-reviewer.md +36 -0
package/agents/review-code.md +49 -0
package/agents/security-scanner.md +50 -0
package/agents/tester.md +72 -0
package/bin/cli.js +461 -0
package/landing/ai-build-ai.png +0 -0
package/landing/index.html +1495 -0
package/landing/logo.png +0 -0
package/package.json +37 -0
package/skills/active-life-dev/SKILL.md +157 -0
package/skills/active-life-dev/docs/auth.md +187 -0
package/skills/active-life-dev/docs/customers.md +216 -0
package/skills/active-life-dev/docs/integrations.md +209 -0
package/skills/active-life-dev/docs/inventory.md +192 -0
package/skills/active-life-dev/docs/modules.md +181 -0
package/skills/active-life-dev/docs/orders.md +180 -0
package/skills/active-life-dev/docs/patterns.md +319 -0
package/skills/active-life-dev/docs/products.md +216 -0
package/skills/active-life-dev/docs/schema.md +502 -0
package/skills/active-life-dev/docs/setup.md +169 -0
package/skills/active-life-dev/docs/vouchers.md +144 -0
package/skills/ai-asset-generator/SKILL.md +247 -0
package/skills/ai-asset-generator/docs/gen-image.md +274 -0
package/skills/ai-asset-generator/docs/genvideo.md +341 -0
package/skills/ai-asset-generator/docs/remove-background.md +19 -0
package/skills/ai-asset-generator/lib/bg-remove.mjs +34 -0
package/skills/ai-asset-generator/lib/env.mjs +48 -0
package/skills/ai-asset-generator/lib/kie-client.mjs +100 -0
package/skills/ai-build-ai/SKILL.md +127 -0
package/skills/ai-build-ai/docs/agent-teams.md +293 -0
package/skills/ai-build-ai/docs/checkpointing.md +161 -0
package/skills/ai-build-ai/docs/create-agent.md +399 -0
package/skills/ai-build-ai/docs/create-mcp.md +395 -0
package/skills/ai-build-ai/docs/create-skill.md +299 -0
package/skills/ai-build-ai/docs/headless-mode.md +614 -0
package/skills/ai-build-ai/docs/hooks.md +578 -0
package/skills/ai-build-ai/docs/memory-claude-md.md +375 -0
package/skills/ai-build-ai/docs/output-styles.md +208 -0
package/skills/ai-build-ai/docs/overview.md +162 -0
package/skills/ai-build-ai/docs/permissions.md +391 -0
package/skills/ai-build-ai/docs/plugins.md +396 -0
package/skills/ai-build-ai/docs/sandbox.md +262 -0
package/skills/ai-build-ai/docs/team-lead-workflow.md +648 -0
package/skills/ant-design/SKILL.md +323 -0
package/skills/ant-design/docs/components.md +160 -0
package/skills/ant-design/docs/data-entry.md +406 -0
package/skills/ant-design/docs/display.md +594 -0
package/skills/ant-design/docs/feedback.md +451 -0
package/skills/ant-design/docs/key-components.md +414 -0
package/skills/ant-design/docs/navigation.md +310 -0
package/skills/ant-design/docs/pro-components.md +543 -0
package/skills/ant-design/docs/setup.md +213 -0
package/skills/ant-design/docs/theme.md +265 -0
package/skills/flutter-performance/SKILL.md +803 -0
package/skills/flutter-performance/references/flutter-patterns.md +595 -0
package/skills/icon-generator/SKILL.md +270 -0
package/skills/mobile-app-review/SKILL.md +321 -0
package/skills/mobile-app-review/references/apple-review.md +132 -0
package/skills/mobile-app-review/references/google-play-review.md +203 -0
package/skills/mongodb/SKILL.md +667 -0
package/skills/mongodb/references/mongoose-patterns.md +368 -0
package/skills/nestjs-architecture/SKILL.md +1086 -0
package/skills/nestjs-architecture/references/advanced-patterns.md +590 -0
package/skills/performance/SKILL.md +509 -0
package/skills/react-fsd-architecture/SKILL.md +693 -0
package/skills/react-fsd-architecture/references/fsd-patterns.md +747 -0
package/skills/react-native-expo/SKILL.md +128 -0
package/skills/react-native-expo/references/data-layer.md +252 -0
package/skills/react-native-expo/references/design-system.md +252 -0
package/skills/react-native-expo/references/navigation.md +199 -0
package/skills/react-native-expo/references/performance.md +229 -0
package/skills/react-native-expo/references/platform-services.md +179 -0
package/skills/react-native-expo/references/state-management.md +209 -0
package/skills/react-native-expo/references/ui-patterns.md +301 -0
package/skills/react-query/SKILL.md +685 -0
package/skills/react-query/references/query-patterns.md +365 -0
package/skills/review-code/SKILL.md +374 -0
package/skills/review-code/references/clean-code-principles.md +395 -0
package/skills/review-code/references/frontend-patterns.md +136 -0
package/skills/review-code/references/nestjs-patterns.md +184 -0
package/skills/security-scanner/SKILL.md +366 -0
package/skills/security-scanner/references/nestjs-security.md +260 -0
package/skills/security-scanner/references/nextjs-security.md +201 -0
package/skills/security-scanner/references/react-native-security.md +199 -0
package/skills/traefik/SKILL.md +105 -0
package/skills/traefik/docs/advanced-routing.md +186 -0
package/skills/traefik/docs/auth-providers.md +137 -0
package/skills/traefik/docs/cicd-devops.md +396 -0
package/skills/traefik/docs/core-config.md +171 -0
package/skills/traefik/docs/distributed-config.md +96 -0
package/skills/traefik/docs/docker-compose.md +182 -0
package/skills/traefik/docs/ha-performance.md +177 -0
package/skills/traefik/docs/kubernetes.md +278 -0
package/skills/traefik/docs/middleware.md +205 -0
package/skills/traefik/docs/monitoring.md +357 -0
package/skills/traefik/docs/security.md +391 -0
package/skills/traefik/docs/tls-acme.md +155 -0
package/skills/ui-ux-pro-max/SKILL.md +377 -0
package/skills/ui-ux-pro-max/data/charts.csv +26 -0
package/skills/ui-ux-pro-max/data/colors.csv +97 -0
package/skills/ui-ux-pro-max/data/icons.csv +101 -0
package/skills/ui-ux-pro-max/data/landing.csv +31 -0
package/skills/ui-ux-pro-max/data/products.csv +97 -0
package/skills/ui-ux-pro-max/data/react-performance.csv +45 -0
package/skills/ui-ux-pro-max/data/stacks/astro.csv +54 -0
package/skills/ui-ux-pro-max/data/stacks/flutter.csv +53 -0
package/skills/ui-ux-pro-max/data/stacks/html-tailwind.csv +56 -0
package/skills/ui-ux-pro-max/data/stacks/jetpack-compose.csv +53 -0
package/skills/ui-ux-pro-max/data/stacks/nextjs.csv +53 -0
package/skills/ui-ux-pro-max/data/stacks/nuxt-ui.csv +51 -0
package/skills/ui-ux-pro-max/data/stacks/nuxtjs.csv +59 -0
package/skills/ui-ux-pro-max/data/stacks/react-native.csv +52 -0
package/skills/ui-ux-pro-max/data/stacks/react.csv +54 -0
package/skills/ui-ux-pro-max/data/stacks/shadcn.csv +61 -0
package/skills/ui-ux-pro-max/data/stacks/svelte.csv +54 -0
package/skills/ui-ux-pro-max/data/stacks/swiftui.csv +51 -0
package/skills/ui-ux-pro-max/data/stacks/vue.csv +50 -0
package/skills/ui-ux-pro-max/data/styles.csv +68 -0
package/skills/ui-ux-pro-max/data/typography.csv +58 -0
package/skills/ui-ux-pro-max/data/ui-reasoning.csv +101 -0
package/skills/ui-ux-pro-max/data/ux-guidelines.csv +100 -0
package/skills/ui-ux-pro-max/data/web-interface.csv +31 -0

package/skills/traefik/SKILL.md ADDED Viewed

@@ -0,0 +1,105 @@
+---
+name: traefik
+description: |
+  **Traefik Reverse Proxy Expert**: Production patterns for configuring Traefik v3 — routing, middleware, TLS/ACME, Docker Compose, Kubernetes CRDs, load balancing, observability, security hardening, CI/CD, and DevOps.
+  - MANDATORY TRIGGERS: traefik, reverse proxy, ingress controller, load balancer, traefik config, traefik middleware, traefik router, traefik service, traefik docker, traefik kubernetes, traefik TLS, traefik ACME, let's encrypt, traefik dashboard, traefik labels, IngressRoute, ForwardAuth, rate limit traefik, traefik compose, traefik helm, traefik CRD, traefik websocket, traefik grpc, traefik TCP, traefik UDP, traefik canary, traefik blue-green, traefik security headers, traefik monitoring, traefik prometheus
+  - Use this skill when building, configuring, deploying, debugging, or reviewing Traefik proxy setups in any environment (Docker, Kubernetes, bare metal, cloud).
+allowed-tools: Read, Grep, Glob, Bash, Write, Edit
+argument-hint: "[topic: config|middleware|tls|docker|k8s|security|cicd|monitoring|auth|tcp-udp|grpc|websocket|ha|performance]"
+---
+# Traefik v3 Expert Guide
+Traefik is a cloud-native reverse proxy and load balancer. Current stable: **v3.6.x**.
+## Quick Reference
+| Topic | Doc |
+|-------|-----|
+| Core config (static/dynamic, entrypoints, routers, services) | `docs/core-config.md` |
+| Middleware (headers, rate-limit, auth, compress, chain) | `docs/middleware.md` |
+| TLS, ACME, Let's Encrypt, mTLS | `docs/tls-acme.md` |
+| Docker Compose patterns | `docs/docker-compose.md` |
+| Kubernetes CRDs (IngressRoute, Middleware, TLSOption) | `docs/kubernetes.md` |
+| Security hardening | `docs/security.md` |
+| CI/CD, blue-green, canary, GitOps | `docs/cicd-devops.md` |
+| Monitoring, metrics, tracing, logging | `docs/monitoring.md` |
+| ForwardAuth (Authelia, Authentik, OAuth2 Proxy) | `docs/auth-providers.md` |
+| TCP/UDP, gRPC, WebSocket routing | `docs/advanced-routing.md` |
+| High availability & performance tuning | `docs/ha-performance.md` |
+| Distributed config (Redis, Consul, etcd) | `docs/distributed-config.md` |
+## Architecture Model
+```
+Internet → EntryPoints → Routers (rules + middleware) → Services → Backends
+              ↑                    ↑                        ↑
+         Static config      Dynamic config           Dynamic config
+```
+**Static config** (loaded at startup): entrypoints, providers, cert resolvers, API/dashboard.
+Set via `traefik.yml`, CLI flags, or env vars.
+**Dynamic config** (hot-reloaded): routers, services, middlewares, TLS options.
+Provided by: Docker labels, Kubernetes CRDs, file provider, Consul, etcd, Redis.
+## Key Patterns
+### Docker: Expose a service
+```yaml
+labels:
+  - "traefik.enable=true"
+  - "traefik.http.routers.myapp.rule=Host(`app.example.com`)"
+  - "traefik.http.routers.myapp.entrypoints=websecure"
+  - "traefik.http.routers.myapp.tls.certresolver=letsencrypt"
+  - "traefik.http.services.myapp.loadbalancer.server.port=8080"
+```
+### Kubernetes: IngressRoute
+```yaml
+apiVersion: traefik.io/v1alpha1
+kind: IngressRoute
+metadata:
+  name: myapp
+spec:
+  entryPoints: [websecure]
+  routes:
+    - match: Host(`app.example.com`)
+      kind: Rule
+      services:
+        - name: myapp-svc
+          port: 80
+  tls:
+    certResolver: letsencrypt
+```
+### Security headers (apply globally)
+```yaml
+http:
+  middlewares:
+    security-headers:
+      headers:
+        browserXssFilter: true
+        contentTypeNosniff: true
+        frameDeny: true
+        stsIncludeSubdomains: true
+        stsPreload: true
+        stsSeconds: 31536000
+```
+## When Using This Skill
+1. Read the relevant `docs/` file based on the user's topic
+2. Provide production-ready configs, not toy examples
+3. Always include security best practices
+4. Specify Traefik v3 syntax (v2 syntax differs)
+5. Warn about common pitfalls (exposed dashboard, no rate limiting, TLS misconfig)
+## Common Pitfalls
+- **Never** use `api.insecure: true` in production
+- **Always** set `exposedByDefault: false` for Docker provider
+- **Always** configure `forwardedHeaders.trustedIPs` when behind a load balancer
+- Mount Docker socket **read-only** (`:ro`) or use a socket proxy
+- Wildcard certs require DNS-01 challenge (HTTP-01 won't work)
+- Set `sniStrict: true` to reject connections without matching SNI

package/skills/traefik/docs/advanced-routing.md ADDED Viewed

@@ -0,0 +1,186 @@
+# Advanced Routing: TCP, UDP, gRPC, WebSocket
+## TCP Routing
+```yaml
+# Static config - entrypoints
+entryPoints:
+  mysql:
+    address: ":3306"
+  postgres:
+    address: ":5432"
+  ssh:
+    address: ":2222"
+# Dynamic config
+tcp:
+  routers:
+    mysql-router:
+      entryPoints: [mysql]
+      rule: "HostSNI(`db.example.com`)"
+      service: mysql-service
+      tls:
+        passthrough: true  # Don't terminate TLS
+    ssh-router:
+      entryPoints: [ssh]
+      rule: "HostSNI(`*`)"  # No SNI for plain TCP
+      service: ssh-service
+    postgres-tls:
+      entryPoints: [postgres]
+      rule: "HostSNI(`postgres.example.com`)"
+      service: postgres-service
+      tls:
+        certResolver: letsencrypt
+  services:
+    mysql-service:
+      loadBalancer:
+        servers:
+          - address: "10.0.0.20:3306"
+          - address: "10.0.0.21:3306"
+    ssh-service:
+      loadBalancer:
+        servers:
+          - address: "10.0.0.30:22"
+    postgres-service:
+      loadBalancer:
+        servers:
+          - address: "10.0.0.40:5432"
+```
+**TLS passthrough**: Traefik reads SNI from ClientHello without terminating TLS.
+**Plain TCP**: Use `HostSNI(`*`)` as catch-all (no TLS = no SNI).
+## UDP Routing
+```yaml
+entryPoints:
+  dns-udp:
+    address: ":53/udp"
+  wireguard:
+    address: ":51820/udp"
+udp:
+  routers:
+    dns-router:
+      entryPoints: [dns-udp]
+      service: dns-service
+    wireguard-router:
+      entryPoints: [wireguard]
+      service: wireguard-service
+  services:
+    dns-service:
+      loadBalancer:
+        servers:
+          - address: "10.0.0.50:53"
+          - address: "10.0.0.51:53"
+    wireguard-service:
+      loadBalancer:
+        servers:
+          - address: "10.0.0.60:51820"
+```
+UDP has no path/SNI matching — it's pure load balancing.
+## gRPC Routing
+```yaml
+http:
+  routers:
+    grpc-router:
+      entryPoints: [websecure]
+      rule: "Host(`grpc.example.com`)"
+      service: grpc-service
+      tls:
+        certResolver: letsencrypt
+  services:
+    grpc-service:
+      loadBalancer:
+        servers:
+          - url: "h2c://grpc-backend:50051"  # HTTP/2 cleartext
+        healthCheck:
+          path: /grpc.health.v1.Health/Check
+          scheme: h2c
+          interval: 10s
+```
+Docker labels:
+```yaml
+labels:
+  - "traefik.enable=true"
+  - "traefik.http.routers.grpc.rule=Host(`grpc.example.com`)"
+  - "traefik.http.routers.grpc.entrypoints=websecure"
+  - "traefik.http.routers.grpc.tls.certresolver=letsencrypt"
+  - "traefik.http.services.grpc.loadbalancer.server.port=50051"
+  - "traefik.http.services.grpc.loadbalancer.server.scheme=h2c"
+```
+### gRPC-Web (browser clients)
+```yaml
+http:
+  middlewares:
+    grpc-web:
+      grpcWeb:
+        allowOrigins:
+          - "https://app.example.com"
+```
+## WebSocket
+WebSocket works out of the box — no special config needed. The HTTP Upgrade mechanism is handled transparently.
+```yaml
+http:
+  routers:
+    ws-router:
+      entryPoints: [websecure]
+      rule: "Host(`ws.example.com`)"
+      service: ws-service
+      tls:
+        certResolver: letsencrypt
+  services:
+    ws-service:
+      loadBalancer:
+        servers:
+          - url: "http://websocket-backend:8080"
+        sticky:
+          cookie:
+            name: ws_affinity
+            secure: true
+            httpOnly: true
+```
+**Important**: Extend timeouts for long-lived WebSocket connections:
+```yaml
+# traefik.yml (static)
+serversTransport:
+  forwardingTimeouts:
+    dialTimeout: 30s
+    responseHeaderTimeout: 0s  # 0 = no timeout
+    idleConnTimeout: 90s
+```
+Sticky sessions are recommended for multi-instance WebSocket backends.
+## Server-Sent Events (SSE)
+SSE works automatically. Ensure compress middleware excludes `text/event-stream`:
+```yaml
+http:
+  middlewares:
+    compress:
+      compress:
+        excludedContentTypes:
+          - text/event-stream
+```
+Set `responseHeaderTimeout: 0s` to prevent premature connection closure.

package/skills/traefik/docs/auth-providers.md ADDED Viewed

@@ -0,0 +1,137 @@
+# ForwardAuth with Identity Providers
+## Authelia
+```yaml
+http:
+  middlewares:
+    authelia:
+      forwardAuth:
+        address: "http://authelia:9091/api/authz/forward-auth"
+        trustForwardHeader: true
+        authResponseHeaders:
+          - Remote-User
+          - Remote-Groups
+          - Remote-Name
+          - Remote-Email
+    authelia-basic:
+      forwardAuth:
+        address: "http://authelia:9091/api/authz/forward-auth/basic"
+        trustForwardHeader: true
+        authResponseHeaders:
+          - Remote-User
+          - Remote-Groups
+```
+Docker label:
+```yaml
+- "traefik.http.routers.myapp.middlewares=authelia@file"
+```
+## Authentik
+```yaml
+http:
+  middlewares:
+    authentik:
+      forwardAuth:
+        address: "http://authentik-outpost:9000/outpost.goauthentik.io/auth/traefik"
+        trustForwardHeader: true
+        authResponseHeaders:
+          - X-authentik-username
+          - X-authentik-groups
+          - X-authentik-email
+          - X-authentik-name
+          - X-authentik-uid
+          - X-authentik-jwt
+          - X-authentik-meta-jwks
+          - X-authentik-meta-outpost
+          - X-authentik-meta-provider
+          - X-authentik-meta-app
+          - X-authentik-meta-version
+```
+## OAuth2 Proxy
+Docker Compose:
+```yaml
+services:
+  oauth2-proxy:
+    image: quay.io/oauth2-proxy/oauth2-proxy:latest
+    environment:
+      - OAUTH2_PROXY_PROVIDER=google
+      - OAUTH2_PROXY_CLIENT_ID=xxx.apps.googleusercontent.com
+      - OAUTH2_PROXY_CLIENT_SECRET=secret
+      - OAUTH2_PROXY_COOKIE_SECRET=32-byte-base64-encoded
+      - OAUTH2_PROXY_EMAIL_DOMAINS=example.com
+      - OAUTH2_PROXY_HTTP_ADDRESS=0.0.0.0:4180
+      - OAUTH2_PROXY_REVERSE_PROXY=true
+      - OAUTH2_PROXY_SET_XAUTHREQUEST=true
+    networks: [proxy]
+```
+Middleware:
+```yaml
+http:
+  middlewares:
+    oauth2-proxy:
+      forwardAuth:
+        address: "http://oauth2-proxy:4180/oauth2/auth"
+        trustForwardHeader: true
+        authResponseHeaders:
+          - X-Auth-Request-User
+          - X-Auth-Request-Email
+          - X-Auth-Request-Access-Token
+          - Set-Cookie
+```
+## Keycloak (via OAuth2 Proxy)
+```yaml
+services:
+  oauth2-proxy:
+    image: quay.io/oauth2-proxy/oauth2-proxy:latest
+    environment:
+      - OAUTH2_PROXY_PROVIDER=keycloak-oidc
+      - OAUTH2_PROXY_OIDC_ISSUER_URL=https://keycloak.example.com/realms/myrealm
+      - OAUTH2_PROXY_CLIENT_ID=traefik
+      - OAUTH2_PROXY_CLIENT_SECRET=secret
+      - OAUTH2_PROXY_COOKIE_SECRET=32-byte-base64
+      - OAUTH2_PROXY_EMAIL_DOMAINS=*
+      - OAUTH2_PROXY_HTTP_ADDRESS=0.0.0.0:4180
+      - OAUTH2_PROXY_REVERSE_PROXY=true
+      - OAUTH2_PROXY_SET_XAUTHREQUEST=true
+      - OAUTH2_PROXY_PASS_ACCESS_TOKEN=true
+```
+## BasicAuth (simple)
+Generate password: `htpasswd -nB admin`
+```yaml
+http:
+  middlewares:
+    basic-auth:
+      basicAuth:
+        users:
+          - "admin:$2y$05$hash..."
+        removeHeader: true
+```
+Docker label (escape `$` with `$$`):
+```yaml
+- "traefik.http.middlewares.auth.basicauth.users=admin:$$2y$$05$$hash..."
+```
+## DigestAuth
+```yaml
+http:
+  middlewares:
+    digest-auth:
+      digestAuth:
+        users:
+          - "admin:traefik:hash"
+        removeHeader: true
+```