Skills

All Skills

security

Skills tagged with #security

@KyleJamesWalker

vscode-extension-expert

This skill provides expert-level guidance for VS Code extension development. Use when implementing new extension features, debugging extension code, designing WebView UIs, implementing Language Server Protocol features, or optimizing extension performance. Covers activation events, contribution points, VS Code API patterns, security best practices, testing strategies, state persistence, file watchers, singleton webview pattern, and publishing workflows.

KyleJamesWalker/vscode-cc-agent-manager
2mo ago
50
@VictoryInTech
MCP

TokenOracle

Hosted MCP server for LLM cost estimation, model comparison, and budget-aware routing.

mcpllm
VictoryInTech/TokenOracle-MCP
2mo ago
0
@jtalk22
MCP

Slack MCP Server

Slack MCP for self-host or managed Cloud, with Gemini CLI and secure-default HTTP.

mcpgithubslack
jtalk22/slack-mcp-server
2mo ago
0
@jnMetaCode
MCP

Io.Github.JnMetaCode/Shellward

AI agent security: 7 MCP tools for injection detection, PII scanning, command safety, DLP.

mcpgithubai
jnMetaCode/shellward+1 more
2mo ago
0
@Tyox-all
MCP

Io.Github.Tyox All/Mund

AI security scanner - secrets, PII, prompt injection, and exfiltration detection.

mcpgithubai
Tyox-all/Weave_Protocol
2mo ago
0
@inkog-io
MCP

Io.Github.Inkog Io/Inkog

Scan AI agents for security vulnerabilities. Audit MCP servers before installation.

mcpgithubai
inkog-io/inkog-mcp
2mo ago
0
@Defenter-AI
MCP

Defenter Proxy

Real-time semantic security for AI coding agents and MCP tools

mcpgithubai
Defenter-AI/defenter-proxy
2mo ago
0
@crunchtools
MCP

MCP Workboard

Secure MCP server for WorkBoard OKR and strategy execution platform

mcpgithub
crunchtools/mcp-workboard
2mo ago
0
@PlamenTSV

ability-analysis

Trigger Pattern Always (Aptos Move) - foundational security check - Inject Into Breadth agents, depth agents

PlamenTSV/plamen+55 more
1mo ago
1760
@arcjet
MCP

Arcjet

An MCP server for Arcjet - the runtime security platform that ships with your AI code.

mcpai
arcjet/mcp
2mo ago
0
@postrv

narsil

Use narsil-mcp code intelligence tools effectively. Use when searching code, finding symbols, analyzing call graphs, scanning for security vulnerabilities, exploring dependencies, or performing static analysis on indexed repositories.

postrv/narsil-mcp
2mo ago
1230
@mcp-registry
MCP

Egnyte Remote MCP Server

Egnyte's remote MCP server for secure AI access, search, upload and file management in your account.

mcpaisearchfile
2mo ago
0
@sudais-khalid

vibe-ship

Generates a complete, production-ready deployment setup for any app in one pass -- Dockerfile, docker-compose.yml, .dockerignore, CI/CD (GitHub Actions), scalability config (health checks, resource limits, K8s on request), and security hardening (non-root user, secrets, dependency scanning). Auto-detects the stack from repo files (package.json, requirements.txt, go.mod, pom.xml, Gemfile, etc.) and writes real working files, not just advice. Also audits an EXISTING Dockerfile/compose/CI setup with a static scoring script and reports concrete findings. Use whenever the user asks to "dockerize", "containerize", "make this deployable", "production-ready", "vibe ship this", "add CI/CD", "set up deployment", "ship this app", requests a Dockerfile/docker-compose/GitHub Actions workflow, or wants a deployment setup reviewed -- even for just one piece (e.g. "add a Dockerfile"), since the full set is interdependent.

sudais-khalid/vibe-ship
1d ago
120
@mcp-registry
MCP

Server

Create and manage your own Certificate Authority for internal HTTPS.

mcp
2mo ago
0
@thoughtbot

rails-audit-thoughtbot

Perform comprehensive code audits of Ruby on Rails applications based on thoughtbot best practices. Use this skill when the user requests a code audit, code review, quality assessment, or analysis of a Rails application. The skill analyzes the entire codebase focusing on testing practices (RSpec), security vulnerabilities, code design (skinny controllers, domain models, PORO with ActiveModel), Rails conventions, database optimization, and Ruby best practices. Outputs a detailed markdown audit report grouped by category (Testing, Security, Models, Controllers, Code Design, Views) with severity levels (Critical, High, Medium, Low) within each category.

thoughtbot/rails-audit-thoughtbot
2mo ago
610
@debu-sinha
MCP

Io.Github.Debu Sinha/Excalidraw

Security-hardened Excalidraw MCP server with auth, rate limiting, and 14 tools

mcpgithub
debu-sinha/excalidraw-mcp-server
2mo ago
0
@kevinrabun
MCP

Judges Panel

45 judges that evaluate AI-generated code for security, cost, and quality with built-in AST.

mcpgithubai
kevinrabun/judges
2mo ago
0
@GUCCI-atlasv
MCP

SkillsSafe Security Scanner

AI skill security scanner. Detects prompt injection, credential theft, ClawHavoc. Free, no signup.

mcpai
GUCCI-atlasv/Skillssafe.com
2mo ago
0
@26zl

ai-llm-security-review

Use for AI/LLM security assessments, prompt injection, RAG security, agent/tool permissioning, model supply chain, LLM red teaming, AI governance, eval design, data leakage, jailbreak testing, and secure AI application review.

26zl/cybersec-toolkit+119 more
1mo ago
70
@Alexis315

pwa-review

Comprehensive 185-point PWA audit beyond Lighthouse - analyzes manifest, service worker, offline capabilities, security, iOS compatibility, and advanced PWA features

Alexis315/pwa-review-skill
2mo ago
0
@Aguantar
MCP

Io.Github.Aguantar/Vibescan Mcp Server

MCP server for VibeScan — scan projects for leaked secrets and security issues

mcpgithub
Aguantar/vibescan-mcp-server
2mo ago
0
@Steffen025

AnnualReports

Security report aggregation. USE WHEN annual reports, security reports, threat reports.

Steffen025/pai-opencode+17 more
2mo ago
1040
@mcp-registry
MCP

Gossiper Shopify Admin MCP Server

Control Shopify Admin tasks with agents or via prompt. Ultra slim integration, fast and secure.

mcpai
2mo ago
0
@ankitjha67

product-architect

Complete product development system with 31 specialized agents and 23 frameworks. Use when user asks to build a product, write a PRD, create a roadmap, plan an MVP, design an app, do a security audit, create a financial model, plan hiring, launch a product, set up operations, prepare for IPO, or write a compliance policy. Also triggers on help me plan, product strategy, go-to-market, fundraising, pitch deck, unit economics, competitive analysis, user personas, sprint planning, SOP, checklist for, or how do I start a company. Do NOT use for general knowledge questions, coding tutorials, or creative writing unrelated to product development.

ankitjha67/product-architect
2mo ago
760
@marchev

solodit

Search Solodit for similar smart contract security findings. Use when reviewing vulnerabilities, comparing to known issues, or researching prior art from real audits.

marchev/claudit
2mo ago
1140
@efij

Security guardrails for Claude Code, MCP tools, and Claude cowork workflows. Local-first modular YARA-style guard packs for secrets, exfiltration, prompt injection, MCP abuse, and risky agent actions.

Inspect the current Secure Claude Code posture, enabled protections, and recent audit events.

efij/secure-claude-code
2mo ago
1000
@Cyfrin

solskill

Create production grade smart contracts. Use this skill when the user asks to write smart contracts, specially if they are going to be deployed to production (to a mainnet, or used in a mainnet script).

soliditysmart-contractsfoundryevmblockchainweb3
Cyfrin/forge-template
2mo ago
630
@jztan
MCP

Redmine Mcp Server

Production-ready MCP server for Redmine with security, pagination, and enterprise features

mcpgithub
jztan/redmine-mcp-server
2mo ago
0
@Shrike-Security
MCP

Shrike Security

AI agent security scanner — prompt injection detection, SQL injection, PII isolation, threat intel.

mcpgithubai
Shrike-Security/shrike-mcp
2mo ago
0
@sshh12

diy-mcp-connector

Builds a dedicated MCP server for a single web app by walking through API discovery, tool design, security review, implementation, testing, and deployment. Use when the user asks to create an MCP server, connect a web app to Claude Code, or build a tool integration for any web app.

sshh12/claude-plugins+2 more
2mo ago
100
@jefflester

api-security

API security best practices and common vulnerability prevention. Enforces security checks for authentication, input validation, SQL injection, XSS, and OWASP Top 10 vulnerabilities. Use when building or modifying APIs.

jefflester/claude-skills-supercharged
2mo ago
370
@The-Code-Registry
MCP

Coderegistry

Enterprise code intelligence for M&A, security audits, and tech debt. Hosted server with 200k free.

mcpgithub
The-Code-Registry/mcp-server
2mo ago
0
@caido-community

write-check-v2

Write security checks using the CheckDefinitionV2 system. Use when creating new checks, converting V1 checks to V2, or when the user asks to implement a vulnerability scanner check. Covers defineCheckV2, defineRegexCheck, CheckContext API, parameter injection, testing with testCheck/mockTarget, and registration.

caido-community/scanner
2mo ago
390
@mcollina

fastify-best-practices

Guides development of Fastify Node.js backend servers and REST APIs using TypeScript or JavaScript. Use when building, configuring, or debugging a Fastify application — including defining routes, implementing plugins, setting up JSON Schema validation, handling errors, optimising performance, managing authentication, configuring CORS and security headers, integrating databases, working with WebSockets, and deploying to production. Covers the full Fastify request lifecycle (hooks, serialization, logging with Pino) and TypeScript integration via strip types. Trigger terms: Fastify, Node.js server, REST API, API routes, backend framework, fastify.config, server.ts, app.ts.

mcollina/skills+7 more
2mo ago
1.4K0
@alisaitteke
MCP

Npm Mcp

MCP server for npm package management, security analysis, and compatibility checking

mcpgithubai
alisaitteke/npm-mcp
2mo ago
0
@thisdot
MCP

Docusign Navigator

Secure Docusign Navigator integration for AI assistants to access and analyze agreement data.

mcpai
thisdot/docusign-navigator-mcp
2mo ago
0
@sirkirby

firewall-auditor

Audit UniFi firewall policies for conflicts, redundancies, security gaps, and best practices. Use when asked to review firewall rules, check for security issues, audit network policies, or optimize firewall configuration.

sirkirby/unifi-network-mcp+8 more
2mo ago
1930
@lennyzeltser
MCP

Website Search

Write better IR reports, improve security writing, and plan cybersecurity product strategy.

mcpsearchweb
lennyzeltser/zeltser-website-mcp-server
2mo ago
0
@mcp-registry
MCP

Ghost Mcp Server

Minimal MCP server for Ghost Security API - compatible with all MCP clients

mcpgithubapi
2mo ago
0
@SergioRico1
MCP

Io.Github.SergioRico1/Thrd

Thrd MCP: agent email tools for events/threads, safe send/reply, usage, trust and security.

mcpgithubai
SergioRico1/thrd
2mo ago
0
@Everyone-Needs-A-Copilot

Transform Claude Code into a full development team. 11 specialized agents (Architect, Engineer, QA, Security, UX, DevOps, and more), persistent memory across sessions, and 25,000+ on-demand skills. Works immediately for solo devs—customizable with your team's standards, methodologies, and proprietary knowledge.

Validate and fix YAML frontmatter in markdown documentation

frontmatteryamldocumentationvalidationmetadatashared-docs
Everyone-Needs-A-Copilot/claude-copilot
2mo ago
120
@revsmoke
MCP

Promptrejectormcp

Security gateway for AI agents: detects prompt injections, jailbreaks, and common vulnerabilities.

mcpgithubai
revsmoke/promptrejectormcp
2mo ago
0
@waynesutton

convex-doctor

Run convex-doctor static analysis, interpret findings, and fix issues across security, performance, correctness, schema, and architecture categories. Use when running convex-doctor, fixing convex-doctor warnings or errors, improving the convex-doctor score, or when asked about Convex code quality, static analysis, or linting Convex functions.

waynesutton/markdown-site+11 more
2mo ago
5870
@CodeAlive-AI

agents-consilium

Query external AI agents (Codex, Gemini, OpenCode, Claude Code headless) in parallel for independent second opinions, code review, bug investigation, and consensus on high-stakes decisions. Agents and models are configurable in config.json. Use for architecture choices, security review, or ambiguous problems where independent perspectives matter. Not for simple questions answerable from docs or the codebase — use web search or repo exploration instead.

CodeAlive-AI/ai-driven-development+6 more
1mo ago
570
@NeuraLegion
MCP

Bright Security

AI-powered application security testing — scan APIs, discover endpoints, and find vulnerabilities.

mcpgithubapiai
NeuraLegion/mcp
2mo ago
0
@tsale

analysing-attack

Analyse Mitre ATT&CK tactics, techniques and sub-techniques. Use when performing analysis of threat detections, threat models, security risks or cyber threat intelligence

tsale/awesome-dfir-skills+4 more
2mo ago
2590
@malakhov-dmitrii

code-hygiene

Codebase health analysis: dead code, test quality, duplicates, complexity, security, architecture mapping. Tool-first, structured storage, forge integration.

malakhov-dmitrii/forge+1 more
2mo ago
190
@mcp-registry
MCP

Think Mcp

Intent security pre-flight checks for autonomous AI agents.

mcpai
2mo ago
0
@mcp-registry
MCP

Io.Github.Ansvar Systems/Security Controls

1,451 security controls across 261 frameworks with bidirectional mapping

mcpgithub
2mo ago
0
@sachin-shetty
MCP

Egnyte Remote

Secure integration between AI tools and Egnyte content with search, analysis, and workflow tools.

mcpgithubaisearch
sachin-shetty/egnyte-ai-samples
2mo ago
0