Labsco
bitwarden logo

bitwarden / ai-plugins

121

A skill package that teaches your agent 28 capabilities — every one documented and browsable below, no GitHub required · by bitwarden.

Each skill below is one capability this package teaches your agent. Install the whole package, or open a skill to install just that one.

action-audit🔥🔥FreeQuick setup

Determine the mode from the user's request:

1 file — installable on its own

action-remediate🔥🔥FreeQuick setup

Before proceeding, verify that the user has audit findings to act on. These should come from a prior run of the action-audit skill. Confirm:

1 file — installable on its own

addressing-code-review-comments🔥🔥🔥✓ VerifiedFreeQuick setup

Use when the user is addressing pull request review comments locally and asks for help evaluating, implementing, or drafting responses to reviewer feedback -…

1 file — installable on its own

analyzing-code-security🔥🔥🔥🔥✓ VerifiedFreeQuick setup

This skill should be used when the user asks to "analyze code for security issues", "check for OWASP vulnerabilities", "review code against CWE Top 25", "find…

4 files — installable on its own

analyzing-git-sessions🔥🔥🔥✓ VerifiedFreeQuick setup

Analyzes git commits and changes within a timeframe or commit range, providing structured summaries for code review, retrospectives, work logs, or session…

4 files — installable on its own

architecting-solutions🔥🔥🔥🔥✓ VerifiedFreeQuick setup

Tech lead perspective on architecture, system design, architecture reviews, blast radius assessment, trade-off analysis, and decision-making. Use when planning…

1 file — installable on its own

avoiding-false-positives🔥🔥🔥✓ VerifiedFreeQuick setup

Use this skill to validate findings during a code review. For each finding, run the rejection criteria and verification checks. If a finding fails any check,…

1 file — installable on its own

bitwarden-security-context🔥🔥✓ Verified🔒 repo maintenanceFreeQuick setup

Bitwarden's security principles (P01-P06), security vocabulary, and data classification standards. Use when you need foundational security context for any…

1 file — installable on its own

bitwarden-workflow-linter-rules🔥🔥🔒 repo maintenanceFreeQuick setup

job_environment_prefix

1 file — installable on its own

classifying-review-findings🔥🔥🔥✓ VerifiedFreeQuick setup

Use this skill when categorizing code review findings into severity levels. Apply when determining which emoji and label to use for PR comments, deciding if an…

1 file — installable on its own

committing-changes🔥🔥✓ Verified🔒 repo maintenanceFreeQuick setup

Git commit conventions and workflow for Bitwarden repositories. Use when committing code, writing commit messages, or preparing changes for commit. Triggered…

1 file — installable on its own

creating-pull-request🔥🔥✓ Verified🔒 repo maintenanceFreeQuick setup

Pull request creation workflow for Bitwarden repositories. Use when creating PRs, writing PR descriptions, or preparing branches for review. Triggered by…

6 files — installable on its own

detecting-secrets🔥🔥🔥🔥✓ VerifiedFreeQuick setup

This skill should be used when the user asks to "find hardcoded secrets", "audit for credential leaks", "check for API keys in code", "review secret scanning…

1 file — installable on its own

extracting-session-data🔥🔥🔥✓ VerifiedFreeQuick setup

Locates, lists, filters, and extracts structured data from Claude Code native session logs. Supports both single and multiple session analysis.

7 files — installable on its own

perform-preflight🔥🔥🔥✓ VerifiedFreeQuick setup

Quality gate checklist to run before committing or creating a PR. Use when finishing implementation, checking work quality, or preparing to commit. Triggered…

1 file — installable on its own

perform-security-review🔥🔥🔥🔥✓ VerifiedFreeQuick setup

Performs a security-focused code review by launching multiple specialized agents and a verification agent to ensure comprehensive coverage and accurate…

3 files — installable on its own

posting-bitwarden-review-comments🔥🔥✓ Verified🔒 repo maintenanceFreeQuick setup

Use this skill when posting inline comments to GitHub pull requests. Apply when formatting comments following Bitwarden engineering standards with severity…

1 file — installable on its own

posting-review-summary🔥🔥✓ Verified🔒 repo maintenanceFreeQuick setup

Use this skill when posting the final summary comment after all inline comments are posted. Apply as the LAST step of code review after all findings are…

1 file — installable on its own

researching-jira-issues🔥🔥🔥✓ VerifiedFreeQuick setup

Use whenever the user mentions a Jira issue key and wants more than a surface-level lookup — "Read PROJ-123", "What's PROJ-123 about?", "Give me context on…

3 files — installable on its own

retrospecting🔥🔥🔥✓ VerifiedFreeQuick setup

Performs comprehensive analysis of Claude Code sessions, examining git history, conversation logs, code changes, and gathering user feedback to generate…

9 files — installable on its own

reviewing-claude-config🔥🔥🔥✓ VerifiedFreeQuick setup

Reviews Claude configuration files for security, structure, and prompt engineering quality. Use when reviewing changes to CLAUDE.md files (project-level or…

20 files — installable on its own

reviewing-dependencies🔥🔥🔥🔥✓ VerifiedFreeQuick setup

This skill should be used when the user asks to "review Dependabot alerts", "check for vulnerable dependencies", "audit third-party packages", "assess supply…

1 file — installable on its own

reviewing-dependency-changes🔥🔥🔥✓ VerifiedFreeQuick setup

Use this skill when a PR diff contains changes to dependency manifest files (package.json, .csproj, Cargo.toml, go.mod, requirements.txt, etc.) or when…

1 file — installable on its own

reviewing-security-architecture🔥🔥🔥🔥✓ VerifiedFreeQuick setup

This skill should be used when the user asks to "review the security architecture", "check authentication patterns", "evaluate trust boundaries", "review…

4 files — installable on its own

threat-modeling🔥🔥🔥🔥✓ VerifiedFreeQuick setup

This skill should be used when the user asks to "create a threat model", "define security goals", "generate a data flow diagram", "write security definitions",…

10 files — installable on its own

triaging-security-findings🔥🔥🔥✓ VerifiedFreeQuick setup

This skill should be used when the user asks to "triage security findings", "fix a Checkmarx finding", "review SonarCloud results", "dismiss a false positive",…

1 file — installable on its own

workflow-audit🔥🔥🔒 repo maintenanceFreeQuick setup

Check if bwwl is available:

1 file — installable on its own

workflow-fix🔥🔥🔒 repo maintenanceFreeQuick setup

Check if bwwl is available:

1 file — installable on its own