claude-code-plugins-plus-skills
github.com/jeremylongshore/claude-code-plugins-plus-skills
Skill | Added | Review |
|---|---|---|
Running Smoke Tests This skill runs smoke tests to verify critical application functionality. It executes pre-defined test suites that check system health, authentication, core features, and external integrations. Use this skill after deployments, upgrades, or significant configuration changes to ensure the application is operational. Trigger this skill using the terms "smoke test" or "st". | 17 Impact Pending No eval scenarios have been run Securityby  Passed No known issues Reviewed: Version: 4778c8f | |
Tracking Service Reliability This skill enables Claude to define and track Service Level Agreements (SLAs), Service Level Indicators (SLIs), and Service Level Objectives (SLOs) for improved service reliability. It is triggered when the user needs to establish, monitor, or analyze service performance metrics. Use this skill when the user mentions "SLA", "SLI", "SLO", "error budget", "service reliability", or "track service performance". The skill helps to define key metrics, set targets, and monitor performance against those targets. | 18 Impact Pending No eval scenarios have been run Securityby Passed No known issues Reviewed: Version: 4778c8f | |
Version Bumper Automatically handles semantic version updates across plugin.json and marketplace catalog when user mentions version bump, update version, or release. Ensures version consistency in claude-code-plugins repository. | 17 Impact Pending No eval scenarios have been run Securityby Passed No known issues Reviewed: Version: 4778c8f | |
Plugin Creator Automatically creates new Claude Code plugins with proper structure, validation, and marketplace integration when user mentions creating a plugin, new plugin, or plugin from template. Specific to claude-code-plugins repository workflow. | 17 Impact Pending No eval scenarios have been run Securityby Passed No known issues Reviewed: Version: 4778c8f | |
Marketplace Manager Automatically manages marketplace catalog updates, syncs marketplace.json, and handles plugin distribution when user mentions marketplace update, sync catalog, or add to marketplace. Specific to claude-code-plugins two-catalog system. | 17 Impact Pending No eval scenarios have been run Securityby Passed No known issues Reviewed: Version: 4778c8f | |
Plugin Creator Automatically creates new Claude Code plugins with proper structure, validation, and marketplace integration when user mentions creating a plugin, new plugin, or plugin from template. Specific to claude-code-plugins repository workflow. | 17 Impact Pending No eval scenarios have been run Securityby Passed No known issues Reviewed: Version: 4778c8f | |
Plugin Auditor Automatically audits Claude Code plugins for security vulnerabilities, best practices, CLAUDE.md compliance, and quality standards when user mentions audit plugin, security review, or best practices check. Specific to claude-code-plugins repository standards. | 17 Impact Pending No eval scenarios have been run Securityby Passed No known issues Reviewed: Version: 4778c8f | |
Marketplace Manager Automatically manages marketplace catalog updates, syncs marketplace.json, and handles plugin distribution when user mentions marketplace update, sync catalog, or add to marketplace. Specific to claude-code-plugins two-catalog system. | 17 Impact Pending No eval scenarios have been run Securityby Passed No known issues Reviewed: Version: 4778c8f | |
Checking Session Security This skill enables Claude to check session security implementations within a codebase. It analyzes session management practices to identify potential vulnerabilities. Use this skill when a user requests to "check session security", "audit session handling", "review session implementation", or asks about "session security best practices" in their code. It helps identify issues like insecure session IDs, lack of proper session expiration, or insufficient protection against session fixation attacks. This skill leverages the session-security-checker plugin. | 18 Impact Pending No eval scenarios have been run Securityby Passed No known issues Reviewed: Version: 4778c8f | |
Checking Session Security This skill enables Claude to check session security implementations within a codebase. It analyzes session management practices to identify potential vulnerabilities. Use this skill when a user requests to "check session security", "audit session handling", "review session implementation", or asks about "session security best practices" in their code. It helps identify issues like insecure session IDs, lack of proper session expiration, or insufficient protection against session fixation attacks. This skill leverages the session-security-checker plugin. | 18 Impact Pending No eval scenarios have been run Securityby Passed No known issues Reviewed: Version: 4778c8f | |
Configuring Service Meshes This skill configures service meshes like Istio and Linkerd for microservices. It generates production-ready configurations, implements best practices, and ensures a security-first approach. Use this skill when the user asks to "configure service mesh", "setup Istio", "setup Linkerd", or requests assistance with "service mesh configuration" for their microservices architecture. The configurations will be tailored to the specified infrastructure requirements. | 18 Impact Pending No eval scenarios have been run Securityby Passed No known issues Reviewed: Version: 4778c8f | |
Performing Security Testing This skill automates security vulnerability testing. It is triggered when the user requests security assessments, penetration tests, or vulnerability scans. The skill covers OWASP Top 10 vulnerabilities, SQL injection, XSS, CSRF, authentication issues, and authorization flaws. Use this skill when the user mentions "security test", "vulnerability scan", "OWASP", "SQL injection", "XSS", "CSRF", "authentication", or "authorization" in the context of application or API testing. | 18 Impact Pending No eval scenarios have been run Securityby Risky Do not use without reviewing Reviewed: Version: 4778c8f | |
Responding to Security Incidents Assists with security incident response, investigation, and remediation. This skill is triggered when the user requests help with incident response, mentions specific incident types (e.g., data breach, ransomware, DDoS), or uses terms like "incident response plan", "containment", "eradication", or "post-incident activity". It guides the user through the incident response lifecycle, from preparation to post-incident analysis. It is useful for classifying incidents, creating response playbooks, collecting evidence, constructing timelines, and generating remediation steps. Use this skill when needing to respond to a "security incident". | 18 Impact Pending No eval scenarios have been run Securityby Passed No known issues Reviewed: Version: 4778c8f | |
Performing Security Audits This skill allows Claude to conduct comprehensive security audits of code, infrastructure, and configurations. It leverages various tools within the security-pro-pack plugin, including vulnerability scanning, compliance checking, cryptography review, and infrastructure security analysis. Use this skill when a user requests a "security audit," "vulnerability assessment," "compliance review," or any task involving identifying and mitigating security risks. It helps to ensure code and systems adhere to security best practices and compliance standards. | 18 Impact Pending No eval scenarios have been run Securityby Passed No known issues Reviewed: Version: 4778c8f | |
Performing Security Audits This skill allows Claude to conduct comprehensive security audits of code, infrastructure, and configurations. It leverages various tools within the security-pro-pack plugin, including vulnerability scanning, compliance checking, cryptography review, and infrastructure security analysis. Use this skill when a user requests a "security audit," "vulnerability assessment," "compliance review," or any task involving identifying and mitigating security risks. It helps to ensure code and systems adhere to security best practices and compliance standards. | 16 Impact Pending No eval scenarios have been run Securityby Passed No known issues Reviewed: Version: 4778c8f | |
Finding Security Misconfigurations This skill enables Claude to identify potential security misconfigurations in various systems and configurations. It leverages the security-misconfiguration-finder plugin to analyze infrastructure-as-code, application configurations, and system settings, pinpointing common vulnerabilities and compliance issues. Use this skill when the user asks to "find security misconfigurations", "check for security vulnerabilities in my configuration", "audit security settings", or requests a security assessment of a specific system or file. This skill will assist in identifying and remediating potential security weaknesses. | 18 Impact Pending No eval scenarios have been run Securityby Risky Do not use without reviewing Reviewed: Version: 4778c8f | |
Finding Security Misconfigurations This skill enables Claude to identify potential security misconfigurations in various systems and configurations. It leverages the security-misconfiguration-finder plugin to analyze infrastructure-as-code, application configurations, and system settings, pinpointing common vulnerabilities and compliance issues. Use this skill when the user asks to "find security misconfigurations", "check for security vulnerabilities in my configuration", "audit security settings", or requests a security assessment of a specific system or file. This skill will assist in identifying and remediating potential security weaknesses. | 18 Impact Pending No eval scenarios have been run Securityby Risky Do not use without reviewing Reviewed: Version: 4778c8f | |
Responding to Security Incidents Assists with security incident response, investigation, and remediation. This skill is triggered when the user requests help with incident response, mentions specific incident types (e.g., data breach, ransomware, DDoS), or uses terms like "incident response plan", "containment", "eradication", or "post-incident activity". It guides the user through the incident response lifecycle, from preparation to post-incident analysis. It is useful for classifying incidents, creating response playbooks, collecting evidence, constructing timelines, and generating remediation steps. Use this skill when needing to respond to a "security incident". | 18 Impact Pending No eval scenarios have been run Securityby Passed No known issues Reviewed: Version: 4778c8f | |
Analyzing Security Headers This skill analyzes HTTP security headers of a given domain to identify potential vulnerabilities and misconfigurations. It provides a detailed report with a grade, score, and recommendations for improvement. Use this skill when the user asks to "analyze security headers", "check HTTP security", "scan for security vulnerabilities", or requests a "security audit" of a website. It will automatically activate when security-related keywords are used in conjunction with domain names or URLs. | 18 Impact Pending No eval scenarios have been run Securityby Passed No known issues Reviewed: Version: 4778c8f | |
Analyzing Security Headers This skill analyzes HTTP security headers of a given domain to identify potential vulnerabilities and misconfigurations. It provides a detailed report with a grade, score, and recommendations for improvement. Use this skill when the user asks to "analyze security headers", "check HTTP security", "scan for security vulnerabilities", or requests a "security audit" of a website. It will automatically activate when security-related keywords are used in conjunction with domain names or URLs. | 18 Impact Pending No eval scenarios have been run Securityby Passed No known issues Reviewed: Version: 4778c8f | |
Generating Security Audit Reports This skill enables Claude to generate comprehensive security audit reports. It is designed to provide insights into an application or system's security posture, compliance status, and recommended remediation steps. Use this skill when the user requests a "security audit report", wants to "audit security", or needs a "vulnerability assessment report". The skill analyzes security data and produces a detailed report in various formats. It is best used to identify vulnerabilities, track compliance, and create remediation roadmaps. The skill can be activated via the command `/audit-report` or its shortcut `/auditreport`. | 18 Impact Pending No eval scenarios have been run Securityby Passed No known issues Reviewed: Version: 4778c8f | |
Generating Security Audit Reports This skill enables Claude to generate comprehensive security audit reports. It is designed to provide insights into an application or system's security posture, compliance status, and recommended remediation steps. Use this skill when the user requests a "security audit report", wants to "audit security", or needs a "vulnerability assessment report". The skill analyzes security data and produces a detailed report in various formats. It is best used to identify vulnerabilities, track compliance, and create remediation roadmaps. The skill can be activated via the command `/audit-report` or its shortcut `/auditreport`. | 18 Impact Pending No eval scenarios have been run Securityby Passed No known issues Reviewed: Version: 4778c8f | |
Performing Security Code Review This skill enables Claude to conduct a security-focused code review using the security-agent plugin. It analyzes code for potential vulnerabilities like SQL injection, XSS, authentication flaws, and insecure dependencies. Claude uses this skill when the user explicitly requests a security audit, asks for a code review with a focus on security, or mentions security concerns related to code. The security-agent plugin then provides structured security findings with severity ratings, code locations, impact assessments, and remediation guidance. | 18 Impact Pending No eval scenarios have been run Securityby Passed No known issues Reviewed: Version: 4778c8f | |
Performing Security Code Review This skill enables Claude to conduct a security-focused code review using the security-agent plugin. It analyzes code for potential vulnerabilities like SQL injection, XSS, authentication flaws, and insecure dependencies. Claude uses this skill when the user explicitly requests a security audit, asks for a code review with a focus on security, or mentions security concerns related to code. The security-agent plugin then provides structured security findings with severity ratings, code locations, impact assessments, and remediation guidance. | 18 Impact Pending No eval scenarios have been run Securityby Passed No known issues Reviewed: Version: 4778c8f | |
Scanning for Secrets This skill helps you scan your codebase for exposed secrets and credentials. It uses pattern matching and entropy analysis to identify potential security vulnerabilities such as API keys, passwords, and private keys. Use this skill when you want to proactively identify and remediate exposed secrets before they are committed to version control or deployed to production. It is triggered by phrases like "scan for secrets", "check for exposed credentials", "find API keys", or "run secret scanner". | 18 Impact Pending No eval scenarios have been run Securityby Risky Do not use without reviewing Reviewed: Version: 4778c8f |