github-api

自动化 GitHub 操作。当用户需要推送代码到 GitHub、管理仓库、创建 PR、处理 Issue、git push 失败时使用此技能。优先使用 mcporter call github.push_files 而不是 git push。

GitHub API integration with managed OAuth. Access repositories, issues, pull requests, commits, branches, and users.\n Use this skill when users want to interact with GitHub repositories, manage issues and PRs, search code, or automate workflows.\n For other third party apps, use the api-gateway skill (https://clawhub.ai/byungkyu/api-gateway).

MUST load this skill when use `gh` command. GitHub CLI (gh) comprehensive reference for repositories, issues, pull requests, Actions, projects, releases, gists, codespaces, organizations, extensions, and all GitHub operations from the command line.

Use when work is ready to push and open a pull request, or when asked to create/submit a PR.

Here’s the updated AGENTS.md with a Doc Sync note so contributors know to check all public-facing docs together when changes happen:

- `src/` — TypeScript sources for the composite action (`dependency-review.ts`, `check-ossf.ts`, `check-guarddog.ts`, `frozen-install.ts`).

> **If you are an AI assistant or a new contributor opening this

**MUST** review these files before starting any work:

Reviews and edits documentation for clarity, consistency, grammar, and adherence to style guidelines.

Thirteen agent personas live in `.claude/agents/` for use with Agent Teams.

Prepares codebases for security review using Trail of Bits' checklist. Helps set review goals, runs static analysis tools, increases test coverage, removes dead code, ensures accessibility, and generates documentation (flowcharts, user stories, inline comments).

Smart contract development advisor based on Trail of Bits' best practices. Analyzes codebase to generate documentation/specifications, review architecture, check upgradeability patterns, assess implementation quality, identify pitfalls, review dependencies, and evaluate testing. Provides actionable recommendations.

Simulates NIH study section peer review for grant proposals. Triggers.

Generates academic reviews for molecules in diseases using PubMed research. Invoke when user needs biomedical literature review with Vancouver citation format.

Assist in drafting professional peer review response letters. Trigger.

Generates scientifically sound inclusion and exclusion criteria for Meta-Analysis based on a given title or keywords. Use when user wants to design eligibility criteria for a systematic review or meta-analysis.

Fetch and save the original HTML of scientific literature webpages when given a URL, DOI, or PubMed PMID (triggered when you need archival-grade page HTML for downstream parsing or review).

Coding Guidelines workflow skill. Use this skill when the user needs Behavioral guidelines to reduce common LLM coding mistakes. Use when writing, modifying, or reviewing code \u2014 implementation tasks, code changes, refactoring, bug fixes, or feature development. Do NOT use for architecture design, documentation, or non-code tasks and the operator should preserve the upstream workflow, copied support files, and provenance before merging or handing off.

Use when designing, reviewing, or refactoring a CLI that must serve AI agents alongside humans, or when converting an API or SDK into an agent-usable CLI interface.

Implement, review, or improve localization and internationalization in iOS/macOS apps — String Catalogs (.xcstrings), LocalizedStringKey, LocalizedStringResource, pluralization, FormatStyle for numbers/dates/measurements, right-to-left layout, Dynamic Type, and locale-aware formatting. Use when adding multi-language support, setting up String Catalogs, handling plural forms, formatting dates/numbers/currencies for different locales, testing localizations, or making UI work correctly in RTL languages like Arabic and Hebrew.

Code simplification suggestions — clarity, unnecessary complexity, redundant

Review completed implementation work and update task status.

'Explain AgentOps operating model, lifecycle, skills, hooks, and context.'

'Review completed work, capture learnings, and feed follow-up knowledge.'

'Prepare PR commits, validation evidence, and review-ready PR body.'

'Stress-test a plan before implementation with council or inline review.'

'Create or refine PRODUCT.md through mission, persona, and value prompts.'

'Draft or improve a project README using structured evidence and review.'

'Review code, PRs, diffs, or agent output for correctness and risk.'

'Provide language and repo standards for implementation, docs, tests, and review.'

'Run post-implementation validation: vibe, post-mortem, retro, and forge.'

'Validate code readiness with complexity checks and council or inline review.'

'Stewardship virtues (Care, Curiosity, Humility, Diligence) for plugins.'

Capture and retrieve PR review knowledge in project memory palaces.

'Evaluate API surface design, consistency, documentation, and exemplar alignment'

'Scope-focused PR review with requirements validation and backlog triage'

imagen

Systematic peer review toolkit. Evaluate methodology, statistics, design, reproducibility, ethics, figure integrity, reporting standards, for manuscript and grant review across disciplines.

Systematic framework for evaluating scholarly and research work based on the ScholarEval methodology. This skill should be used when assessing research papers, evaluating literature reviews, scoring research methodologies, analyzing scientific writing quality, or applying structured evaluation criteria to academic work. Provides comprehensive assessment across multiple dimensions including problem formulation, literature review, methodology, data collection, analysis, results interpretation, and scholarly writing quality.

Generate descriptive commit messages by analyzing git diffs. Use when the user asks for help writing commit messages or reviewing staged changes.

AI-assisted pair programming with multiple modes (driver/navigator/switch), real-time verification, quality monitoring, and comprehensive testing. Supports TDD, debugging, refactoring, and learning sessions. Features automatic role switching, continuous code review, security scanning, and performance optimization with truth-score verification.

Comprehensive truth scoring, code quality verification, and automatic rollback system with 0.95 accuracy threshold for ensuring high-quality agent outputs and codebase reliability.

Tracks and manages album ideas including brainstorming, planning, and status updates. Use when the user wants to add, review, or organize their album idea backlog.

>

>

Audits and hardens backend code against OWASP vulnerabilities, injection attacks, auth weaknesses, and insecure configurations. Use when reviewing backend code for security or when the user mentions backend security, vulnerability, or OWASP.

Audits frontend code for XSS, CSRF, insecure storage, and input validation vulnerabilities. Use when reviewing frontend code for security or when the user mentions frontend security, XSS, CSRF, or client-side vulnerabilities.

>