모든 Claude 스킬 탐색

Claude Permissions

Manages and configures security permissions, sandboxing environments, and tool access protocols for Claude Code.

Convex Backend Development

Streamlines the implementation of Convex backend features using Zod validation, custom function wrappers, and type-safe database interactions.

CSRF Protection

Secures web applications by implementing Cross-Site Request Forgery (CSRF) protection using cryptographic token validation and secure cookie policies.

Eval Harness

Implements an Eval-Driven Development (EDD) framework to ensure reliability and regression testing for AI-generated code.

Security Awareness Overview

Provides a comprehensive framework for understanding and mitigating the security risks associated with AI-generated code and the "vibe coding" development paradigm.

Research Agent Orchestrator

Orchestrates multi-source comprehensive research by deploying parallel autonomous agents to investigate topics, analyze trends, and synthesize detailed reports.

Epic Breakdown

Transforms high-level project epics into actionable user stories with acceptance criteria, effort estimates, and sprint-ready dependency mappings.

Skill Creator

Streamlines the creation, validation, and packaging of modular Claude skills to extend AI capabilities through specialized domain knowledge and integrated workflows.

Injection Vulnerability Awareness

Identifies and remediates common injection vulnerabilities in AI-generated code, including SQL injection, command injection, and cross-site scripting (XSS).

Supply Chain Risk Management

Identifies and mitigates supply chain vulnerabilities in AI-generated code, including outdated packages, typosquatting, and dependency confusion attacks.

Security Operations

Provides comprehensive operational security guidance for web application deployment, monitoring, and secret management.

Information Leakage Prevention

Prevents the exposure of sensitive credentials and private data by identifying hardcoded secrets and insecure logging patterns in generated code.

Payment Security

Implement secure subscription billing and payment gating using Clerk Billing and Stripe while ensuring PCI-DSS compliance through outsourced card data handling.

Resource Exhaustion Security

Identifies and mitigates resource exhaustion and denial-of-service vulnerabilities in AI-generated code by implementing strict operational limits and resource-aware patterns.

Dependency & Supply Chain Security

Audits and secures software dependencies to prevent supply chain attacks and mitigate known vulnerabilities in application packages.

Security Headers

Configures robust HTTP security headers to protect web applications against clickjacking, cross-site scripting (XSS), and data exfiltration.

Jira Management

Manages Atlassian Jira projects, issues, and sprints using the official command-line interface for streamlined project tracking.

Implement Feature

Implements software features from task specifications using Test-Driven Development (TDD) and automated validation.

Input Validation & XSS Prevention

Validates and sanitizes user input using Zod schemas to protect web applications against XSS, injection attacks, and data corruption.

Validate Story

Performs a comprehensive 10-step assessment to ensure user stories are complete, technically accurate, and ready for development.

Refine Story

Transforms vague or incomplete user stories into sprint-ready requirements with clear acceptance criteria, test scenarios, and technical guidance.

Task Specification Creator

Generates hyper-detailed implementation plans that embed architectural context and technical requirements to eliminate lookup overhead during development.

Sprint Planning

Generates comprehensive sprint plans by intelligently grouping user stories based on velocity, dependencies, priorities, and risk assessment.

YouTube Strategy

Provides data-driven strategic guidance for optimizing YouTube video packaging, retention, and channel growth through evidence-based pre-production frameworks.

Validate Test Reality

Validates test coverage against real-world production scenarios and identifies critical gaps between specifications and reality.

Quality Review Orchestrator

Coordinates a comprehensive quality assessment by executing specialized skills for risk, testing, traceability, and non-functional requirements to generate a final quality gate decision.

Content Auditor

Evaluates educational materials and training programs against learning outcomes to identify content gaps and provide actionable improvement recommendations.

Using Skills

Enforces a mandatory meta-workflow for discovering, announcing, and strictly following specialized skills and checklists during development tasks.

Terraform Tasks

Automates infrastructure-as-code operations including resource generation, security auditing, multi-cloud deployments, and complex migration tasks.

Plugin Manager

Manages and queries Claude Code plugins by accessing local settings files to provide real-time status tracking and cross-platform environment auditing.