code-quality
11
mojo-type-safety
Validate type safety in Mojo code including parametric types and trait constraints. Use during code review or when type errors occur.
mvillmow
testing-security
sorting
stars
current ordering strategy
query
all entries
refine the visible subset
code-quality
11
mojo-lint-syntax
Validate Mojo syntax against current v0.26.1+ standards. Use to catch syntax errors before compilation.
mvillmow
testing-security
code-quality
11
security-scan
Run comprehensive security vulnerability scans when reviewing code. Automatically uses basic mode (fast, high/medium severity only) for first reviews, advanced mode (comprehensive, all severities) for iterations. Detects SQL injection, XSS, hardcoded secrets, insecure dependencies. Use before approving any code changes or pull requests.
mehdic
testing-security
code-quality
11
mojo-format
Format Mojo code using mojo format command. Use when preparing code for commit or when formatting checks fail.
mvillmow
testing-security
code-quality
11
validate-inputs
Check function inputs for correctness and safety. Use when implementing defensive programming.
mvillmow
testing-security
code-quality
11
run-precommit
Run pre-commit hooks locally or in CI to validate code quality before committing. Use to ensure commits meet quality standards and CI will pass.
mvillmow
testing-security
code-quality
11
debug-eval
Diagnose and fix Nix evaluation errors, build failures, and module conflicts.
codgician
testing-security
code-quality
11
validate-mojo-patterns
Validate Mojo code patterns (out self, mut, List, etc.) against best practices. Use to ensure code follows project standards.
mvillmow
testing-security
code-quality
11
security-quick-scan
Scan code or configuration for common security issues. Use when a mid-level developer needs a quick security pass.
proflead
testing-security
code-quality
11
quality-run-linters
Run all configured linters including mojo format, markdownlint, and pre-commit hooks. Use before committing code to ensure quality standards are met.
mvillmow
testing-security
code-quality
11
accessibility-basic-check
Run a basic accessibility checklist for UI changes. Use when a junior developer needs quick a11y guidance.
proflead
testing-security
code-quality
11
conducting-code-review
Complete workflow for conducting thorough code reviews with structured feedback
cipherstash
testing-security
code-quality
11
agent-validate-config
Validate agent YAML frontmatter and configuration. Use before committing agent changes or in CI.
mvillmow
testing-security
security
11
ldap-injection-testing
This skill should be used when the user asks to "test for LDAP injection vulnerabilities", "exploit LDAP queries", "perform blind LDAP injection attacks", "bypass authentication using LDAP injection", "extract data from LDAP directories", or "assess LDAP-based application security". It provides comprehensive techniques for identifying and exploiting LDAP injection flaws in web applications.
zebbern
testing-security
security
11
external-network-penetration-testing
This skill should be used when the user asks to "perform external pentesting", "conduct external network assessment", "enumerate external attack surface", "perform OSINT reconnaissance", or "test perimeter security". It provides comprehensive external network penetration testing methodologies.
zebbern
testing-security
security
11
phishing-attacks
The assistant guides users through phishing attack simulation tools and techniques for penetration testing and security awareness. Activate when users ask about "phishing simulation," "social engineering testing," "Shellphish," "WiFi phishing," "credential harvesting," or "security awareness training."
zebbern
testing-security
security
11
security-headers
Analyzes HTTP security headers for a given URL and provides a comprehensive security score. Checks for critical headers like HSTS, CSP, X-Frame-Options, X-Content-Type-Options, Referrer-Policy, and Permissions-Policy. Returns detailed scoring and recommendations.
madsstoumann
testing-security
security
11
security-frameworks
Security framework alignment including ISO 27001, SOC 2, NIST CSF 2.0, and CIS Controls mapping
melodic-software
testing-security
security
11
credential-harvesting-lab-setup
This skill should be used when the user asks to "build a phishing lab", "perform credential harvesting", "set up ARP spoofing", "configure DNS spoofing", "create a fake login page", or "test social engineering attacks". It provides techniques for building a credential harvesting environment.
zebbern
testing-security
security
11
secrets-management
Use when designing secret storage, rotation, or credential management systems. Covers HashiCorp Vault patterns, AWS Secrets Manager, Azure Key Vault, secret rotation, and zero-knowledge architectures.
melodic-software
testing-security
security
11
pci-dss-compliance
PCI DSS compliance planning for payment card handling including scope reduction, SAQ selection, and security controls
melodic-software
testing-security
security
11
broken-authentication-testing
This skill should be used when the user asks to "test for broken authentication vulnerabilities", "assess session management security", "perform credential stuffing tests", "evaluate password policies", "test for session fixation", or "identify authentication bypass flaws". It provides comprehensive techniques for identifying authentication and session management weaknesses in web applications.
zebbern
testing-security