'Performing security reviews of serverless functions across AWS Lambda, Azure Functions, and GCP Cloud Functions
Skills(SKILL.md)は、AIエージェント(Claude Code、Cursor、Codexなど)に特定の能力を追加するための設定ファイルです。
詳しく見る →'Performing security reviews of serverless functions across AWS Lambda, Azure Functions, and GCP Cloud Functions
Triage web application vulnerability findings from DAST/SAST scanners using OWASP risk rating methodology to
Systematically assessing REST and GraphQL API endpoints against the OWASP API Security Top 10 risks using automated
'Triages security alerts in Splunk Enterprise Security by classifying severity, investigating notable events,
Rails 8.x application architecture, implementation, and review guidance for production codebases. Use when building or reviewing Ruby on Rails 8 features across models, controllers, routes, Hotwire, jobs, APIs, performance, security, and testing. Trigger for requests mentioning Rails 8, Active Record, Active Job, GoodJob, Solid Queue, Turbo/Stimulus, REST resources, migrations, code quality, naming, and production readiness.
Creates, structures, and reviews technical documentation following the Diátaxis framework (tutorials, how-to guides, reference, and explanation pages). Use when a user needs to write or reorganize docs, structure a tutorial vs. a how-to guide, build reference docs or API documentation, create explanation pages, choose between Diátaxis documentation types, or improve existing documentation structure. Trigger terms include: documentation structure, Diátaxis, tutorials vs how-to guides, organize docs, user guide, reference docs, technical writing.
Use this skill whenever the prompt contains any `github.com` URL, even if the user only pastes a link and gives no GitHub-specific keywords. Handles git and GitHub operations using the gh CLI. Triggers include any GitHub link to an issue, pull request, commit, compare page, Actions run, release, discussion, or repository. Covers creating and reviewing PRs, watching CI checks, interactive rebasing, branch cleanup, submodule management, and repository archaeology with git log/blame/bisect.
Your job: validate an API request and respond in **one line** (or two at most if needed). Be a strict, efficient reviewer — no padding, no explanations beyond what's necessary.
Prepare and maintain a grounded, venue-compliant rebuttal for: **$ARGUMENTS**
Get a multi-round critical review of research work from an external LLM with maximum reasoning depth.
> Override for Codex users who want **Gemini**, not a second Codex agent, to act as the reviewer. Install this package **after** `skills/skills-codex/*`.
> Override for Codex users who want **Gemini**, not a second Codex agent, to act as the reviewer. Install this package **after** `skills/skills-codex/*`.
> Override for Codex users who want **Gemini**, not a second Codex agent, to act as the reviewer. Install this package **after** `skills/skills-codex/*`.
> Override for Codex users who want **Gemini**, not a second Codex agent, to act as the reviewer. Install this package **after** `skills/skills-codex/*`.
> Override for Codex users who want **Gemini**, not a second Codex agent, to act as the reviewer. Install this package **after** `skills/skills-codex/*`.
Autonomously iterate: review → implement fixes → re-review, until the external reviewer gives a positive assessment or MAX_ROUNDS is reached.
Autonomously iterate: review → implement fixes → re-review, until the external reviewer gives a positive assessment or MAX_ROUNDS is reached.
Generate publishable research ideas for: $ARGUMENTS
Orchestrate a robotics-specific idea discovery workflow for: **$ARGUMENTS**
Orchestrate a complete idea discovery workflow for: **$ARGUMENTS**
Generate a structured, section-by-section paper outline from: **$ARGUMENTS**
Research topic: $ARGUMENTS
>
Migrate TypeScript library projects from tsup to tsdown. Provides complete option mappings, config transformation rules, default value differences, and unsupported option alternatives so AI agents can intelligently perform migrations.
Inspect, patch, validate, publish, or confirm OpenClaw GHSA security advisories and private-fork state.
Review, triage, close, label, comment on, or land OpenClaw PRs/issues with maintainer evidence checks.
Triage OpenClaw security advisories, drafts, and GHSA reports with shipped-tag and trust-model proof.
Search duplicate OpenClaw PRs/issues, group related work in prtags, and sync duplicate state to GitHub.
Delegate feature work, PR review, refactors, or iterative coding to background Codex, Claude Code, or Pi agents.
Fetch GitHub issues, delegate fixes to subagents, open PRs, watch reviews, or run /gh-issues workflows.
Use gh for GitHub issues, PR status, CI/logs, comments, reviews, releases, and API queries.
Query Google Places for text search, place details, resolve, reviews, or scriptable JSON via goplaces.
Use oracle CLI to bundle prompts and files for second-model debugging, refactor, design, or review checks.
Create, edit, improve, tidy, review, audit, or restructure AgentSkills and SKILL.md files.
General code quality review — project guideline compliance, bug detection,
Code comment accuracy verification, documentation completeness assessment,
Error handling review — silent failure detection, catch block analysis,
Comprehensive code review using specialized agents — orchestrates code,
Test coverage quality analysis — behavioral coverage, critical gap identification,
Type design analysis — encapsulation, invariant expression, usefulness,
Apply approved drift resolutions to specs and/or code
Review completed implementation work and update task status.
Iterative literature-review workflow for a research topic. Use this skill to draft up to 10 search keywords, build a seed set from OpenAlex title-and-abstract matches, expand by backward and forward citations, screen candidates by title and abstract, repeat until no new relevant papers remain, rank the final set, inspect up to 30 full texts, build a concept-reference knowledge graph, and write a literature review grounded only in the final included references.
When the user wants to analyze how their social media posts are performing. Also use when the user mentions 'analytics,' 'performance,' 'how did my posts do,' 'engagement,' 'impressions,' 'what's working,' 'post metrics,' 'my best posts,' or 'why isn't this post performing.' Uses BlackTwist analytics when available, works from user-provided data otherwise. For audience growth specifically, see audience-growth-tracker-sms. For pattern detection, see content-pattern-analyzer-sms. For actionable next steps, see optimization-advisor-sms.
The autonomous Agentic Development Ecosystem. Propose, Build, Publish, and Compound.
Narrow bare `rescue _ ->` / `rescue e ->` so UndefinedFunctionError, KeyError, and typos propagate instead of being swallowed. Use for auditing rescues, secure-coding review, exception review, refactoring error handling in Elixir.
A Go security skill for reviewing code
>
Autonomous content platform — 640+ self-contained HTML apps. Browse, submit, review, rate, and evolve apps via GitHub Issues.
Create a PR title and draft description after substantive code changes are finished. Trigger when wrapping up a moderate-or-larger change (runtime code, tests, build config, docs with behavior impact) and you need the PR-ready summary block with change summary plus PR draft text.