
microsoft / hve-core
✓ Official★ 1,200A skill package that teaches your agent 19 capabilities — every one documented and browsable below, no GitHub required · by microsoft.
Each skill below is one capability this package teaches your agent. Install the whole package, or open a skill to install just that one.
Generate customer-card PowerPoint content YAML from Design Thinking canonical artifacts and build using the shared PowerPoint skill pipeline - Brought to you…
23 files — installable on its own
Retrieves and groups GitHub code scanning alerts by rule and severity using the gh CLI - Brought to you by microsoft/hve-core
7 files — installable on its own
Manage GitLab merge requests and pipelines with a Python CLI - Brought to you by microsoft/hve-core
14 files — installable on its own
Decision-driven installer for HVE-Core with 6 clone-based installation methods, extension quick-install, environment detection, and agent customization…
29 files — installable on its own
Jira issue workflows for search, issue updates, transitions, comments, and field discovery via the Jira REST API. Use when you need to search with JQL, inspect…
50 files — installable on its own
OWASP Agentic Security Top 10 vulnerability knowledge base for identifying, assessing, and remediating security risks in AI agent systems - Brought to you by…
13 files — installable on its own
OWASP CI/CD Top 10 vulnerability knowledge base for identifying, assessing, and remediating security risks in continuous integration and continuous delivery…
13 files — installable on its own
OWASP Docker Top 6 vulnerability knowledge base for identifying, assessing, and remediating security risks in containerized Docker environments - Brought to…
9 files — installable on its own
OWASP Infrastructure Top 10 vulnerability knowledge base for identifying, assessing, and remediating security risks in internal IT infrastructure environments…
13 files — installable on its own
OWASP Top 10 for LLM Applications (2025) vulnerability knowledge base for identifying, assessing, and remediating security risks in large language model…
13 files — installable on its own
OWASP MCP Top 10 vulnerability knowledge base for identifying, assessing, and remediating security risks in Model Context Protocol environments - Brought to…
13 files — installable on its own
OWASP Top 10 for Web Applications (2025) vulnerability knowledge base for identifying, assessing, and remediating security risks in web application…
13 files — installable on its own
PowerPoint slide deck generation and management using python-pptx with YAML-driven content and styling - Brought to you by microsoft/hve-core
50 files — installable on its own
Generates PR reference XML containing commit history and unified diffs between branches with extension and path filtering. Includes utilities to list changed…
16 files — installable on its own
Foundational Python best practices, idioms, and code quality fundamentals - Brought to you by microsoft/hve-core
4 files — installable on its own
Secure by Design principles knowledge base for assessing adherence to security-first design, development, and deployment practices across the software…
14 files — installable on its own
Format specifications and data contracts for the security reviewer orchestrator and its subagents - Brought to you by microsoft/hve-core.
6 files — installable on its own
Video-to-GIF conversion skill with FFmpeg two-pass optimization - Brought to you by microsoft/hve-core
9 files — installable on its own
VS Code screenshot capture using Playwright MCP with serve-web for slide decks and documentation - Brought to you by microsoft/hve-core
1 file — installable on its own
title: HVE Core description: Hypervelocity Engineering prompt library for GitHub Copilot with convention-driven AI workflows and validated artifacts author: Microsoft ms.date: 2026-06-30 ms.topic: overview keywords:
- hypervelocity engineering
- prompt engineering
- github copilot
- ai workflows
- custom agents
- copilot instructions
- rpi methodology estimated_reading_time: 3
Hypervelocity Engineering (HVE) Core
<!-- markdownlint-disable MD013 --> <!-- markdownlint-enable MD013 -->HVE Core helps teams ship faster with GitHub Copilot by combining specialized agents, reusable prompts, coding instructions, and validated skills into one workflow system.
Use HVE Core when you want AI-assisted work to be repeatable, standards-aligned, and scalable across individuals and teams. HVE Core provides structured AI workflow building blocks:
- Agents for specialized tasks such as research, planning, implementation, and review
- Prompts for repeatable workflow entry points
- Instructions that apply coding standards automatically
- Skills that add reusable tool capabilities
Where to Start
<!-- markdownlint-disable MD013 --> <!-- markdownlint-enable MD013 -->- Install the HVE Core extension from the VS Code Marketplace.
- Open any project and launch GitHub Copilot Chat (
Ctrl+Alt+I). - Select an agent from the picker (try rpi-agent, task-researcher, or memory) and start a conversation.
[!TIP] Use HVE Core All Extension when you want the full collection deployment. See Collections Overview. [!TIP] Using GitHub Copilot CLI? Install as a plugin instead:
Copy & paste — that's itcopilot plugin marketplace add microsoft/hve-core copilot plugin install hve-core@hve-coreSee CLI Plugins for usage details.
Choose Your Path
- New to HVE-Core: Start with Start Here to complete your first workflow quickly.
- Leading a team: Use the Team Adoption Guide to roll out standards and onboarding.
- Contributing to this repo: Follow the Contributing Guide to add or improve agents, prompts, instructions, and skills.
Navigate This Repository
| Goal | Go here |
|---|---|
| Getting Started | docs/getting-started/README.md |
| Understand all setup options | docs/getting-started/install.md |
| Learn the core methodology | docs/rpi/README.md |
| Browse docs by topic | docs/README.md |
| Explore agents | .github/CUSTOM-AGENTS.md |
| Explore instructions | .github/instructions/README.md |
| Explore prompts | .github/prompts/README.md |
| Explore skills | .github/skills/ |
Documentation
Full documentation is available at https://microsoft.github.io/hve-core/.
| Guide | Description |
|---|---|
| Getting Started | Setup and first workflow tutorial |
| Collections | Available bundles and selection guide |
| RPI Workflow | Deep dive into Research, Plan, Implement, Review |
| Contributing | Create custom agents, instructions, and prompts |
| Agents Reference | All available agents |
| Instructions Reference | All coding instructions |
| AI Artifacts Architecture | Prompt engineering framework and artifact types |
| Validation Standards | CI/CD validation pipeline and quality gates |
Label Management
Repository labels are declared in .github/labels.yml and synced automatically by the Label Sync workflow on push to main or via manual workflow_dispatch.
| Task | How |
|---|---|
| Add a label | Add an entry with name, color (bare hex, no #), and description to .github/labels.yml, then push to main |
| Update a label | Edit the existing entry's color or description |
| Rename a label | Add an aliases array under the new canonical name listing the old name; the sync migrates existing assignments automatically |
| Delete a label | Remove it manually in the GitHub Labels UI. Deleting an entry from the file does not delete it from GitHub (the workflow runs in additive mode) |
Contributing
We appreciate contributions! Whether you're fixing typos or adding new components:
- Read our Contributing Guide.
- Check out open issues.
- Join the discussion.
Responsible AI
Microsoft encourages customers to review its Responsible AI Standard when developing AI-enabled systems to ensure ethical, safe, and inclusive AI practices. Learn more at Microsoft's Responsible AI.
Legal
This project is licensed under the MIT License.
Licensing
Most content in this repository is covered by the MIT License. Certain skill content derived from OWASP Foundation publications is licensed under CC BY-SA 4.0. Each affected skill identifies its license in frontmatter and includes a Third-Party Attribution section. See THIRD-PARTY-NOTICES for full details.
See SECURITY.md for the security policy and vulnerability reporting.
See GOVERNANCE.md for the project governance model.
See TRANSPARENCY-NOTE.md for the Responsible AI Transparency Note covering intended uses, limitations, and the responsibility boundary between HVE Core and the host platform.
Trademark Notice
This project may contain trademarks or logos for projects, products, or services. Authorized use of Microsoft trademarks or logos is subject to and must follow Microsoft's Trademark & Brand Guidelines. Use of Microsoft trademarks or logos in modified versions of this project must not cause confusion or imply Microsoft sponsorship. Any use of third-party trademarks or logos are subject to those third-party's policies.
<!-- markdownlint-disable MD036 -->
🤖 Crafted with precision by ✨Copilot following brilliant human instruction, then carefully refined by our team of discerning human reviewers.
<!-- markdownlint-enable MD036 -->Install the whole package (19 skills):
npx skills add https://github.com/microsoft/hve-coreOr install a single skill:
npx skills add https://github.com/microsoft/hve-core --skill <name>Pick the skill name from the Skills tab — each entry there installs independently.