全部能力

Entry P0 primary router for HackSkills. Use when the task involves web application testing, API security assessment, recon, vulnerability triage, exploit path planning, or choosing the right next category skill before any deep topic skill.

Cloudflare Tunnel API for secure tunnels. Use when user mentions "Cloudflare

TikTok Ads 深度分析，涵盖创意质量、追踪、竞价、广告系列架构和 TikTok Shop。评估 28 项检查，重点强调创意优先…

使用身份验证、速率限制、CORS、输入验证和安全中间件来保护 REST API。适用于构建或加固 API 端点以防御常见攻击。

Google Workspace Enterprise License Manager: Manage product licenses.

使用 LSP 符号分析 Rust 项目结构。触发条件：/symbols, project structure, list structs, list traits, list functions, 符号分析, 项目结构, 列出所有,…

Enable and configure Kibana audit logging for saved object access, logins, and space operations. Use when setting up Kibana audit, filtering events, or correlating Kibana and ES audit logs.

Google Workspace Reseller: Manage Workspace subscriptions.

通过 k-skill-proxy 代理调用 Naver 搜索 Open API 的新闻搜索(news.json)接口，获取最新新闻文章的标题、发布时间、链接和摘要并进行保守整理。用户无需单独申请 API 密钥即可直接调用。

飞书 OAuth 认证和 User Access Token 管理（Device Flow，RFC 8628）。 支持一键创建飞书应用（config create-app）、按域精细申请权限（--domain --recommend）、 auth check 预检 scope、auth login 登录、Token 自动刷新。 当用户请求"登录飞书"、"获取 Token"、"OAuth 授权"、"auth login"、"认证"、 "搜索需要什么权限"、"Token 过期了"、"刷新 Token"、"创建应用"、"create-app"、 "缺少权限"、"99991672"、"99991679"时使用。 当其他飞书技能（toolkit/msg/read 等）遇到 User Access Token 相关问题时，也应参考此技能。

Reconcile App Store Connect subscriptions and in-app purchases with RevenueCat products, entitlements, offerings, and packages using asc and RevenueCat MCP.…

Dune CLI for querying blockchain and on-chain data via DuneSQL, searching decoded contract tables, managing saved queries, managing visualizations, managing…

Expert patterns for HubSpot CRM integration including OAuth

JWT and OAuth token attack playbook. Use when validating token trust, signing algorithms, key handling, claim abuse, bearer flows, and OAuth account-binding weaknesses.

Guide for creating effective skills. This skill should be used when users want to create a new skill (or update an existing skill) that extends Codex's…

Assistant for newapi (new-api), an open-source unified AI gateway platform (https://github.com/QuantumNous/new-api). Use when the user asks about New API,…

Creates Elastic Cloud Serverless projects (Elasticsearch, Observability, or Security) via the REST API, saves credentials to file, and bootstraps a scoped Elasticsearch API key. Use when creating a new serverless project, provisioning a search or observability environment, or spinning up a new Elastic Cloud project.

Establish and manage SSH connections to remote machines, including key generation, configuration, and file transfers. Use when connecting to remote servers,…

Manage Elastic Cloud organization access: invite users, assign roles to Serverless projects, and create or revoke Cloud API keys. Use when granting, modifying, or auditing user access.

Daily news and hot topics via the 6551 API. Supports news categories, hot news articles, and trending tweets by category.