Explore skills

SkillSync MCP provides security-gated skill management for Claude Code, OpenClaw, Cursor & Windsurf. It features a scanner with over 60 threat patterns.

Copilot CLI sub-agent system for dispatching tasks and persona-based analysis to GitHub Copilot models. Use for task delegation (agent reads/writes files directly), security audits, architecture reviews, or any work requiring a fresh model context.

Audit RLM cache coverage - compare manifest against filesystem

Autonomous security vulnerability scanner for codebases. Detects secrets, XSS, missing security headers, auth issues, OWASP Top 10 patterns, dependency vulnerabilities, PII exposure, CORS misconfiguration, and more. Aligned to OWASP APTS (Autonomous Penetration Testing Standard) Foundation tier. Outputs SARIF JSON, Markdown report, and APTS Conformance Claim. Use when the user wants a security aud

Review code quality with adversarial rigor. Supports input modes: pending changes, PR number, commit hash, codebase scan. Always-on red-team analysis finds security holes, false assumptions, and failure modes.

A meta-gate that audits the current session's actions for philosophy, scope, convention, and token-budget violations before any commit. It's read-only, emits a single inline table verdict, and is used as the final step in multi-edit or multi-cycle tasks.

Triggers the L5 Red Team Sub-Agent to rigorously audit a plugin against the 39-point L4 pattern matrix.

Audits games for security vulnerabilities like save tampering, cheat vectors, network exploits, and data exposure, providing a prioritized report with remediation guidance. Recommended before public release or multiplayer launch.

Emergency fix workflow that bypasses normal sprint processes with a full audit trail. Creates hotfix branch, tracks approvals, and ensures the fix is backported correctly.

Automatically analyze project state, detect stage, identify gaps, and recommend next steps based on existing artifacts. Use this skill when the user asks where we are in development, what stage we are in, or requests a full project audit.

Audits the game for security vulnerabilities like save tampering, cheat vectors, network exploits, data exposure, and input validation gaps. It produces a prioritized security report with remediation guidance, recommended before any public release or multiplayer launch.

Diagnose your position on the founder mode vs. manager mode spectrum, based on Brian Chesky's operating system and Paul Graham's framework. Use this to assess if you are leading like a founder or drifting into manager mode.