Agent Skills
Instruction packs that give your AI agent know-how. Three different kinds — pick the right one below.
✦ Standalone skills2,933
Self-contained. Install one into any project and it works on its own — no other software needed.
🧰 Tool add-ons725
Come bundled with a specific tool and only work together with it — they teach your agent how to operate that tool.
brandkit
★ 55,900by leonxlnx
Premium brand-kit image generation skill for creating high-end brand-guidelines boards, logo systems, identity decks, and visual-world presentations. Trained for minimalist, cinematic, editorial, dark-tech, luxury, cultural, security, gaming, developer-tool, and consumer-app brand systems. Optimized for intentional logo concepting, refined composition, sparse typography, strong symbolic meaning, premium mockups, art-directed imagery, and flexible grid layouts.
arduino-azure-iot-edge-integration
✓★ 36,200by github
Design and implement Arduino integration with Azure IoT Hub and IoT Edge, including secure provisioning, resilient telemetry, command handling, and production…
debian-linux-triage
✓★ 36,200by github
Expert-guided triage and resolution for Debian Linux system issues using apt, systemd, and AppArmor. Diagnoses problems across package management, service health, and security policies with Debian-native tools Provides step-by-step triage plans using systemctl , journalctl , apt , and dpkg with copy-paste-ready commands Includes verification steps after remediation and rollback guidance for safe recovery Accounts for AppArmor and firewall considerations in troubleshooting workflows
security-review
✓★ 36,200by github
AI-powered codebase security scanner that reasons about code like a security researcher — tracing data flows, understanding component interactions, and…
salesforce-apex-quality
✓★ 36,200by github
Apex code quality guardrails for Salesforce development. Enforces bulk-safety rules (no SOQL/DML in loops), sharing model requirements, CRUD/FLS security, SOQL…
azure-smart-city-iot-solution-builder
✓★ 36,200by github
Design and plan end-to-end Azure IoT and Smart City solutions: requirements, architecture, security, operations, cost, and a phased delivery plan with concrete…
mcp-create-declarative-agent
✓★ 36,200by github
Scaffold a declarative agent for Microsoft 365 Copilot integrated with an MCP server. Generates complete project structure including manifest.json, declarativeAgent.json, and ai-plugin.json with tool definitions auto-imported from MCP servers Supports OAuth 2.0 and SSO authentication with environment variable configuration and secure credential storage Provides response semantics mapping to extract and format API response data for Copilot consumption Includes MCP server integration workflow...
powerbi-modeling
✓★ 36,200by github
Semantic modeling assistant for building optimized Power BI data models with DAX, relationships, and best practices. Connects to active Power BI models (Desktop or Fabric) to analyze current structure before providing guidance on star schemas, relationships, measures, and naming conventions Covers core modeling tasks: creating DAX measures, configuring table relationships and cardinality, implementing row-level security (RLS), and optimizing performance Includes model quality assessment...
mentoring-juniors
✓★ 36,200by github
Socratic mentoring for junior developers through guided questions, never direct answers. Guides learners through structured questioning rather than solving problems, building autonomy and reasoning skills across fundamentals, debugging, testing, security, and architecture Includes the PEAR Loop (Plan, Explore, Analyze, Rewrite) for Copilot-assisted learning and teaches prompt engineering with the CTEX formula for better AI interactions Provides progressive clue systems from light guidance to...
multi-stage-dockerfile
✓★ 36,200by github
Build optimized, secure multi-stage Dockerfiles for any language or framework. Structures builds with separate builder and runtime stages, copying only necessary artifacts to minimize final image size and attack surface Emphasizes layer caching optimization by ordering commands from least to most frequently changing, combined with .dockerignore and command consolidation Recommends minimal base images (Alpine, distroless, or official slim variants) with exact version pinning for...
agent-owasp-compliance
✓★ 36,200by github
Evaluate AI agent systems against the OWASP Agentic Security Initiative (ASI) Top 10 — the industry standard for agent security posture.
ef-core
✓★ 36,200by github
Entity Framework Core best practices guide covering design, performance, security, and testing patterns. Covers eight core areas: DbContext design, entity modeling, performance optimization, migrations, querying strategies, change tracking, security, and testing approaches Emphasizes practical patterns like DbContextFactory, IEntityTypeConfiguration separation, AsNoTracking() for read-only queries, and compiled queries for frequently executed operations Includes migration best practices such...
dotnet-design-pattern-review
✓★ 36,200by github
Comprehensive C#/.NET design pattern analysis with actionable improvement recommendations. Evaluates six core patterns: Command, Factory, Dependency Injection, Repository, Provider, and Resource patterns against GoF and SOLID principles Analyzes architecture compliance including namespace conventions, project separation, async/await patterns, and structured logging implementation Reviews code quality across security, testability, maintainability, and performance dimensions with specific...
sql-code-review
✓★ 36,200by github
Comprehensive SQL security, performance, and quality analysis across MySQL, PostgreSQL, SQL Server, and Oracle databases. Analyzes SQL injection vulnerabilities, access control issues, and sensitive data exposure with parameterized query examples for each database platform Reviews query performance through index strategy, join optimization, and anti-pattern detection (N+1 queries, function misuse in WHERE clauses, overuse of DISTINCT) Evaluates code quality including naming conventions,...
update-avm-modules-in-bicep
✓★ 36,200by github
Automated Azure Verified Module version updates for Bicep files with breaking change detection. Scans Bicep files to extract AVM module references, queries MCR for latest versions, and applies updates automatically Pauses for manual approval when breaking changes, security modifications, or parameter incompatibilities are detected Validates all changes with bicep lint and bicep build to ensure compliance before finalizing Outputs results in a structured table showing module names, version...
azure-resource-visualizer
✓★ 36,200by github
Analyze Azure resource groups and generate detailed Mermaid diagrams showing resource relationships and architecture. Discovers and analyzes all resources within a specified resource group, capturing configurations, SKUs, network settings, and identity details Maps relationships between resources including network connections, data flows, identity bindings, and dependencies Generates layered Mermaid diagrams with subgraphs organized by function (Network, Compute, Data, Security, Monitoring)...
make-repo-contribution
✓★ 36,200by github
Enforce repository contribution guidelines before creating issues, branches, commits, or pull requests. Searches repository documentation (README, CONTRIBUTING.md, templates) to identify required contribution workflows, branch naming conventions, and commit message formats Applies security boundaries that prevent executing arbitrary commands, accessing files outside the repository, making network requests, or including secrets in contributions Treats issue and PR templates as formatting...
postgresql-code-review
✓★ 36,200by github
PostgreSQL code review assistant covering JSONB, arrays, custom types, schema design, and security best practices. Reviews JSONB operations for indexing efficiency, array usage with GIN indexes, and proper containment operators Evaluates schema design including ENUM types, CITEXT for case-insensitive data, TIMESTAMPTZ usage, and CHECK constraints Identifies anti-patterns in function optimization, trigger design, and extension usage Assesses Row Level Security (RLS) implementation, privilege...
create-technical-spike
✓★ 36,200by github
Time-boxed technical spike documents for researching critical development decisions before implementation. Generates structured markdown spike files with clear objectives, research questions, investigation plans, and decision frameworks Supports six spike categories: API Integration, Architecture & Design, Performance & Scalability, Platform & Infrastructure, Security & Compliance, and User Experience Includes built-in checklists for research tasks, success criteria, findings documentation,...
mcp-security-audit
✓★ 36,200by github
Audit MCP server configurations for security issues — secrets exposure, shell injection, unpinned dependencies, and unapproved servers.
github-copilot-starter
✓★ 36,200by github
Generates production-ready GitHub Copilot configuration files tailored to your project's technology stack. Gathers project information (language, framework, tech stack, development style) and creates a complete .github/ directory structure with instructions, skills, and agents Generates language-specific instruction files, testing standards, security guidelines, and code review practices with attribution to awesome-copilot patterns where applicable Creates six reusable skills (component...
fabric-lakehouse
✓★ 36,200by github
Microsoft Fabric Lakehouse storage for unified tabular and non-tabular data with Delta Lake, SQL analytics, and fine-grained security. Combines data lake flexibility with data warehouse management through Delta Lake format, ACID transactions, versioning, and SQL endpoints for T-SQL querying Organizes data via schemas (folders under Tables), shortcuts (virtual links to internal/external sources), and materialized views for optimized query performance Supports multiple data formats: Delta...
cloud-design-patterns
✓★ 36,200by github
Cloud design patterns for distributed systems architecture covering 42 industry-standard patterns across reliability, performance, messaging, security, and…
create-github-action-workflow-specification
✓★ 36,200by github
Generates formal, AI-optimized specifications for GitHub Actions workflows to standardize documentation and enable maintenance. Produces structured markdown specifications with execution flow diagrams, job dependency matrices, and requirement tables designed for token efficiency Covers functional, security, and performance requirements alongside input/output contracts, error handling strategies, and quality gates Includes sections for monitoring, compliance, edge cases, and change management...
azure-devops-cli
✓★ 36,200by github
Manage Azure DevOps resources including projects, repos, pipelines, builds, work items, and service endpoints via CLI. Covers six major domains: Repos and PRs, Pipelines and Builds, Boards and Work Items, Variables and Agents, Organization and Security, and Advanced Usage patterns Requires Azure CLI 2.81.0+ with the azure-devops extension; authenticate using PAT tokens and configure default organization/project to avoid repeating flags Supports output formatting with JMESPath queries, global...
ai-prompt-engineering-safety-review
✓★ 36,200by github
Comprehensive safety analysis and improvement framework for AI prompts with detailed assessment methodologies. Evaluates prompts across eight dimensions: safety, bias detection, security, effectiveness, best practices compliance, pattern analysis, technical robustness, and performance optimization Provides structured analysis reports with risk scoring, critical issue identification, and strength assessment across all evaluation criteria Delivers improved prompt versions with specific...
cloudflare-deploy
✓★ 23,200by openai
Deploy applications and infrastructure to Cloudflare using Workers, Pages, and platform services. Covers 40+ Cloudflare products organized by use case: compute (Workers, Pages, Durable Objects, Workflows), storage (KV, D1, R2, Queues), AI/ML (Workers AI, Vectorize, Agents SDK), networking (Tunnel, Spectrum), and security (WAF, Bot Management, Turnstile) Includes decision trees to route users to the right product based on their need (run code, store data, add AI, networking, security, or...
security-ownership-map
✓★ 23,200by openai
Analyze git repositories to build a security ownership topology (people-to-file), compute bus factor and sensitive-code ownership, and export CSV/JSON for…
security-best-practices
✓★ 23,200by openai
Language and framework-specific security reviews with actionable vulnerability detection and fix guidance. Supports Python, JavaScript/TypeScript, and Go with framework-specific best practices loaded from a references directory Operates in three modes: secure-by-default code generation, passive vulnerability detection during development, and full security audit reports with severity prioritization Generates detailed markdown reports with line-number references, impact statements, and numeric...
security-threat-model
✓★ 23,200by openai
Repository-grounded threat modeling that maps trust boundaries, assets, and abuse paths to concrete code evidence. Enumerates entry points, data flows, and trust boundaries anchored to actual repository structure and configuration Derives realistic attacker goals tied to specific assets (credentials, PII, integrity-critical state, compute resources) rather than generic checklists Prioritizes threats using likelihood and impact reasoning, with explicit assumptions about deployment,...