Agent Skills
Instruction packs that give your AI agent know-how. Three different kinds — pick the right one below.
✦ Standalone skills2,933
Self-contained. Install one into any project and it works on its own — no other software needed.
🧰 Tool add-ons725
Come bundled with a specific tool and only work together with it — they teach your agent how to operate that tool.
code-review
✓★ 22,300by anthropic
Structured code review for security, performance, correctness, and maintainability across PR diffs and file changes. Audits security risks including SQL injection, XSS, CSRF, authentication flaws, and credential exposure Identifies performance issues like N+1 queries, memory leaks, algorithmic complexity, and resource leaks Checks correctness for edge cases, race conditions, error handling, and type safety gaps Works standalone with diffs and file paths; integrates with source control,...
code-checklist
✓★ 2,700by github
Team code quality checklist - use for checking Python code quality, bugs, security issues, and best practices
azure-keyvault-certificates-rust
✓★ 2,700by microsoft
Client library for Azure Key Vault Certificates — secure storage and management of certificates.
azure-compliance
✓★ 2,700by microsoft
Run Azure compliance and security audits with azqr plus Key Vault expiration checks. Covers best-practice assessment, resource review, policy/compliance…
azure-keyvault-keys-rust
✓★ 2,700by microsoft
Client library for Azure Key Vault Keys — secure storage and management of cryptographic keys.
azure-keyvault-py
✓★ 2,700by microsoft
Secure storage and management for secrets, cryptographic keys, and certificates.
azure-security-keyvault-secrets-java
✓★ 2,700by microsoft
Azure Key Vault Secrets Java SDK for secret management. Use when storing, retrieving, or managing passwords, API keys, connection strings, or other sensitive…
azure-keyvault-secrets-rust
✓★ 2,700by microsoft
Client library for Azure Key Vault Secrets — secure storage for passwords, API keys, and other secrets.
azure-keyvault-certificates-rust
✓★ 2,700by microsoft
Client library for Azure Key Vault Certificates — secure storage and management of certificates.
azure-security-keyvault-keys-dotnet
✓★ 2,700by microsoft
Client library for managing cryptographic keys in Azure Key Vault and Managed HSM.
azure-security-keyvault-keys-java
✓★ 2,700by microsoft
Azure Key Vault Keys Java SDK for cryptographic key management. Use when creating, managing, or using RSA/EC keys, performing encrypt/decrypt/sign/verify…
azure-security-keyvault-keys-dotnet
✓★ 2,700by microsoft
Client library for managing cryptographic keys in Azure Key Vault and Managed HSM.
azure-security-keyvault-keys-java
✓★ 2,700by microsoft
Azure Key Vault Keys Java SDK for cryptographic key management. Use when creating, managing, or using RSA/EC keys, performing encrypt/decrypt/sign/verify…
azure-keyvault-secrets-rust
✓★ 2,700by microsoft
Client library for Azure Key Vault Secrets — secure storage for passwords, API keys, and other secrets.
azure-keyvault-keys-rust
✓★ 2,700by microsoft
Client library for Azure Key Vault Keys — secure storage and management of cryptographic keys.
azure-compliance
✓★ 2,700by microsoft
Run Azure compliance and security audits with azqr plus Key Vault expiration checks. Covers best-practice assessment, resource review, policy/compliance…
azure-security-keyvault-secrets-java
✓★ 2,700by microsoft
Azure Key Vault Secrets Java SDK for secret management. Use when storing, retrieving, or managing passwords, API keys, connection strings, or other sensitive…
azure-keyvault-py
✓★ 2,700by microsoft
Secure storage and management for secrets, cryptographic keys, and certificates.
golang-security
★ 2,400by samber
Security best practices and vulnerability prevention for Golang. Covers injection (SQL, command, XSS), cryptography, filesystem safety, network security, cookies, secrets management, memory safety, and logging. Apply when writing, reviewing, or auditing Go code for security, or when working on any risky code involving crypto, I/O, secrets management, user input handling, or authentication. Includes configuration of security tools.
golang-swagger
★ 2,400by samber
Golang OpenAPI/Swagger documentation with swaggo/swag — annotation comments (@Summary, @Param, @Success, @Router, @Security), swag init code generation, framework integrations (gin, echo, fiber, chi, net/http), security definitions (Bearer/JWT, OAuth2, API key), and struct tags (swaggertype, enums, example, swaggerignore). Apply when adding or maintaining Swagger/OpenAPI docs in a Go project, or when the codebase imports github.com/swaggo/swag, github.com/swaggo/gin-swagger,...
golang-continuous-integration
★ 2,400by samber
CI/CD pipeline configuration using GitHub Actions for Golang projects — testing, linting, SAST, security scanning, code coverage, Dependabot, Renovate, GoReleaser, code review automation, and release pipelines. Use when setting up or improving Go project CI, configuring GitHub Actions workflows, adding linters or security scanners, automating dependency updates, or adding quality gates.
golang-how-to
★ 2,400by samber
Golang skills orchestrator — always active on any Golang coding, review, debug, or setup task. Reads the task context and loads the most relevant skills from samber/cc-skills-golang, often multiple at once: writing a gRPC service loads golang-grpc + golang-testing + golang-error-handling; debugging a panic loads golang-troubleshooting + golang-safety; auditing security loads golang-security + golang-lint + golang-safety. Also: disambiguates competing clusters when two skills seem to overlap...
supabase-postgres-best-practices
✓★ 2,300by supabase
Postgres performance optimization rules across 8 priority categories, from query tuning to advanced features. Organized into 8 rule categories prioritized by impact: query performance and connection management (critical), security and RLS, schema design, concurrency, data access patterns, monitoring, and advanced features Each rule includes detailed explanations, incorrect vs. correct SQL examples, EXPLAIN output analysis, and performance metrics to guide optimization decisions Covers query...
native-data-fetching
✓★ 2,200by expo
Network requests, API calls, and data fetching for Expo apps with caching, error handling, and offline support. Covers fetch API, React Query, error handling patterns, token management with expo-secure-store, and retry logic with exponential backoff Includes offline-first strategies using NetInfo and React Query persistence, plus environment variable configuration with EXPO_PUBLIC_ prefix for client-side URLs Supports Expo Router data loaders ( useLoaderData ) for route-level data loading on...
sandbox-sdk
✓★ 2,000by Cloudflare
Build sandboxed applications for secure code execution. Load when building AI code execution, code interpreters, CI/CD systems, interactive dev environments, or executing untrusted code. Covers Sandbox SDK lifecycle, commands, files, code interpreter, and preview URLs.
cloudflare
✓★ 2,000by Cloudflare
Comprehensive Cloudflare platform skill covering Workers, Pages, storage (KV, D1, R2), AI (Workers AI, Vectorize, Agents SDK), networking (Tunnel, Spectrum), security (WAF, DDoS), and infrastructure-as-code (Terraform, Pulumi). Use for any Cloudflare development task. references: - workers - pages - d1 - durable-objects - workers-ai
wp-plugin-development
★ 1,800by wordpress
Complete WordPress plugin development workflow from architecture through security and release packaging. Covers plugin structure, hooks/actions/filters, activation/deactivation/uninstall lifecycle, and Settings API for admin UI and options management Includes mandatory security baseline: input validation/sanitization, nonces, capability checks, and parameterized SQL queries via $wpdb->prepare() Supports data storage patterns, cron task setup with idempotency, and schema migrations with...
entra-app-registration
✓★ 1,300by microsoft
Microsoft Entra ID app registration, OAuth 2.0 configuration, and MSAL integration for secure application authentication. Covers app registration setup, authentication configuration, API permissions, and client credential management across web apps, SPAs, mobile apps, and daemon services Includes step-by-step workflows for first-time registration, console application authentication, and service-to-service credential flows Provides Azure CLI commands, MSAL library examples for .NET,...
azure-resource-visualizer
✓★ 1,300by microsoft
Transform Azure resource groups into detailed architecture diagrams showing resource relationships and configurations. Discovers all resources within a resource group and analyzes their configurations, dependencies, and interconnections Generates Mermaid diagrams organized by logical layers (Network, Compute, Data, Security, Monitoring) with SKU details and connection labels Maps relationships including network connections, data flows, identity bindings, and configuration dependencies across...
azure-enterprise-infra-planner
✓★ 1,300by microsoft
Architect and provision enterprise Azure infrastructure from workload descriptions. For cloud architects and platform engineers planning networking, identity, security, compliance, and multi-resource topologies with WAF alignment. Generates Bicep or Terraform directly (no azd). WHEN: 'plan Azure infrastructure', 'architect Azure landing zone', 'design hub-spoke network', 'plan multi-region DR topology', 'set up VNets firewalls and private endpoints', 'subscription-scope Bicep deployment',...