Discover rules to enhance your AI agent's capabilities.
Top Performing in Security & Compliance
Data-driven rankings. Real results from real agents.
| Name | Contains | Score |
|---|---|---|
v0.1.40 Security rules for untrusted NanoClaw groups covering credential protection, internal file protection, and social engineering defenses. | SkillsRules | |
Enforces pgsodium Vault for secret storage accessed only via SECURITY DEFINER functions on service_role. | SkillsDocsRules | |
v0.1.0 Run quality checks on Java code before committing. Validates against best practices, enterprise standards, and common issues. | SkillsRules | |
Standards and workflows for building secure, well-structured Terraform modules, including planning gates, validation steps, and implementation guidance. | SkillsDocsRules | |
v0.27.0 Discover and apply best practice skills automatically. Gap analysis scans the codebase, skill-search fills gaps from the registry, skill-classifier separates proactive from reactive skills, quality-standards generates CLAUDE.md guidance, self-review compares code against checklists, and verification-strategy sets up test/lint/typecheck feedback loops. | SkillsRules | |
Spec-driven development on OpenSpec, with mechanical spec-as-source enforcement: a custom 'spec-as-source' OpenSpec schema adds file-ownership (targets) and test-verification ([@test]) metadata to every capability spec, three scripts (link check, ownership check, manifest build) keep code and specs from drifting apart, plus requirement-gathering, spec-writer, work-review, and a session-handoff skill with a proactive context-warning hook. | SkillsRules | |
Database architecture skills, docs, and rules for high-demand multi-tenant commerce platforms (PostgreSQL source of truth, Neo4j as derived GraphRAG projection, transactional outbox, RLS-based tenant isolation). Includes live schema introspection workflow via explicit Supabase MCP/read-only schema sources. | SkillsDocsRules | |
v0.1.0 Enforces PKCE-based OAuth code flow replacing implicit auth flows for modern Supabase auth. | SkillsDocsRules | |
Secures Supabase Realtime private channels via RLS policies on the realtime.messages table. | SkillsDocsRules | |
Spec-driven workflow covering requirement gathering, spec authoring, implementation review, and verification — with skills, rules, and evaluation scenarios. | SkillsDocsRules | |
Enforces strict isolation of service_role key to server-side contexts only. | SkillsDocsRules | |
v1.8.0 Adds spec-as-source enforcement to any project using spec-driven development | SkillsRules | |
Configures Prometheus scraping, log drains, and observability for Supabase infrastructure monitoring. | SkillsDocsRules | |
Gemini Enterprise A2A configuration and rules. | SkillsDocsRules | |
v0.1.0 Context for developing and debugging Hubitat Elevation apps, drivers, and hub environment — sandbox constraints, lifecycle idioms, capability contracts, plus grounded deploy/log-tail/lint mechanisms. | SkillsRules | |
v0.1.126 Core behavioral rules and skills for NanoClaw personal assistant agents. Always-on rules for communication, verification, memory, and formatting. | SkillsRules | |
Prevents directory traversal in Supabase Storage via path validation functions and storage RLS. | SkillsDocsRules | |
v0.8.4 Agent-native E2E runtime with verifiable safety. 16 MCP tools including alethia_propose_tests (agent generates tests from a URL), alethia_assert_safety (proves destructive actions are blocked), and the expect block: NLP primitive unique to Alethia. Zero-IPC; 2-5x faster than Playwright MCP per flow; signed evidence packs. Works with Claude Code, Cursor, Cline. | SkillsDocsRules | |
Demo plugin one for scope/agent install testing | SkillsRules | |
Rego is the declarative policy language used by Open Policy Agent (OPA). This tile covers writing and testing Rego policies for Kubernetes admission control, Terraform and infrastructure-as-code plan validation, Docker container authorization, HTTP API authorization, RBAC and role-based access control, data filtering, metadata annotations with opa inspect, and OPA policy testing with opa test. | DocsRules |
Can't find what you're looking for? Evaluate a missing skill.