Claude Skills

This skill enables Claude to identify security misconfigurations in infrastructure-as-code, application configs, and system settings using a dedicated plugin. Use it when you need to audit configurations, check for vulnerabilities, or perform security assessments. It helps pinpoint common security weaknesses and compliance issues for remediation.

This skill helps developers handle security incidents by guiding them through the entire response lifecycle. It assists with classifying incidents, creating response playbooks, collecting evidence, and generating remediation steps. Use it when responding to security breaches, ransomware, DDoS attacks, or when using terms like "containment" or "incident response plan."

This skill automatically analyzes HTTP security headers for any provided domain to identify vulnerabilities and misconfigurations. It generates comprehensive reports with security grades, scores, and actionable improvement recommendations. Developers should use it when performing security audits or checking website security posture through Claude.

This skill enables Claude to generate comprehensive security audit and vulnerability assessment reports. It analyzes security data to identify vulnerabilities, assess compliance status, and provide recommended remediation steps. Use it via the `/audit-report` command when you need to evaluate an application's security posture or create a remediation roadmap.

This skill scans your codebase to detect exposed secrets like API keys and passwords using pattern matching and entropy analysis. It helps developers proactively identify security vulnerabilities before committing code or deploying to production. Use it when you need to find and remediate credentials accidentally left in your code.

This skill automatically scans your code for security vulnerabilities based on the OWASP Top 10 (2021) list. It provides a detailed analysis of compliance gaps and remediation guidance to help you identify and fix security issues. Use it to audit your application's security, generate compliance reports, or before a security review.

This skill automatically scans codebases, infrastructure, and documentation for HIPAA compliance issues using the hipaa-compliance-checker plugin. It identifies potential violations related to data privacy, security controls, and protected health information (PHI). Use it when explicitly requested to check compliance, scan for violations, or assess HIPAA readiness in projects handling PHI.

This skill enables Claude to encrypt and decrypt data using various algorithms from the encryption-tool plugin. It should be used for securing sensitive information, handling file encryption/decryption, or generating encrypted files. The skill supports multiple encryption methods to ensure data confidentiality.

This skill analyzes project dependencies for security vulnerabilities, outdated packages, and license compliance issues. It helps developers identify potential risks in their dependencies using the dependency-checker plugin. The skill supports popular package managers including npm, pip, composer, gem, and Go modules.

This skill identifies CSRF vulnerabilities in web applications by validating protection mechanisms like synchronizer tokens, SameSite attributes, and origin validation. Use it to analyze your application's security posture against CSRF attacks when prompted to test or check CSRF protection.

This skill enables Claude to validate Cross-Origin Resource Sharing (CORS) policies to identify security vulnerabilities and misconfigurations. Use it when you need to check CORS configurations, analyze headers, or assess CORS security. It helps ensure proper implementation to prevent unauthorized cross-origin requests and protect sensitive data.

This skill enables Claude to audit access control implementations using the access-control-auditor plugin to identify vulnerabilities and misconfigurations. It's designed for analyzing IAM policies, ACLs, and other access mechanisms in cloud environments, applications, or infrastructure. Use it when users request access control audits, permission checks, or security reviews to ensure compliance and identify privilege escalation risks.

This Claude Skill automates overnight software development by using Git hooks to enforce test-driven development (TDD). It autonomously builds features, refactors code, and fixes bugs while ensuring all tests pass before allowing commits. Use it when you need autonomous coding that guarantees production-ready, fully tested code.

The agent-context-loader automatically detects and loads AGENTS.md files from the current working directory when starting a session or changing directories. It ensures agent-specific instructions are incorporated into Claude Code's context alongside CLAUDE.md, enabling specialized agent behaviors. This skill triggers automatically without user action or can be manually requested to load agent context.

This Claude Skill automatically activates to assist with all Google Cloud Agent Development Kit (ADK) operations. It helps developers build and deploy production-ready agent systems, including multi-agent architectures, containerized deployments, and RAG implementations. Use it for agent scaffolding, orchestration, and CI/CD pipeline setup when working with Google's agent frameworks.

Vertex AI Media Master automatically activates for Google Vertex AI multimodal operations including video processing, audio generation, and image creation. It handles tasks like marketing campaign automation, social media content creation, and ad creative generation. Use this skill when working with Vertex AI's multimodal features, especially for media asset workflows and content generation.

The yaml-master skill automatically activates when working with YAML files, configurations, and CI/CD pipelines. It provides intelligent validation, schema inference, linting, and format conversion between YAML/JSON/TOML/XML. This skill helps developers manage YAML-based workflows with deep understanding of specifications and common anti-patterns.

This Claude Skill automatically enforces Taskwarrior integration for all coding tasks when task management terms are mentioned. It decomposes work into tracked tasks with full lifecycle management (add → start → done) and integrates with Timewarrior for automatic time tracking. Use this skill to ensure all coding work is properly tracked and accounted for before implementation begins.

This skill helps developers implement Real User Monitoring (RUM) to track user experience metrics like Core Web Vitals and page load times. It guides you through selecting a RUM platform, designing an instrumentation strategy, and adding the necessary tracking code. Use it when you need to set up performance monitoring for a web application.

This skill automatically detects performance regressions in CI/CD pipelines by analyzing metrics like response time and throughput. It compares current performance against baselines or thresholds and performs statistical significance analysis to identify degradation. Use it to catch performance issues early when users mention regression detection, baseline comparison, or performance budget violations.

This skill provides comprehensive performance optimization advice for software projects when developers request improvements, reviews, or bottleneck analysis. It analyzes frontend, backend, and infrastructure layers to identify issues and anti-patterns, then delivers prioritized, actionable recommendations with estimated gains. Use it for performance tuning by triggering phrases like "optimize performance" or "improve speed."

This skill enables Claude to aggregate and centralize performance metrics from various sources like applications, databases, and external services. It is triggered by requests to consolidate metrics for monitoring and helps design a metrics taxonomy, choose aggregation tools, and set up dashboards and alerts.

This skill enables Claude to detect potential memory leaks and analyze memory usage patterns when developers request memory analysis. It identifies common issues like unremoved event listeners, uncancelled timers, and circular references that prevent garbage collection. Use it to proactively find and fix memory leaks for improved application performance and stability.

This skill enables Claude to generate CI/CD pipeline configurations for platforms like GitHub Actions, GitLab CI, and Jenkins. It automates software delivery by creating pipelines for stages such as testing, building, security scanning, and deployment. Use it when you need to set up or automate a CI/CD workflow for multi-environment deployments.