全部能力

将 Notion 规格说明转化为实施计划、任务和进度跟踪；在实现 PRD/功能规格说明，以及基于它们创建 Notion 计划与任务时使用。

当用户想要定义、审查或应用品牌战略——包括宗旨、价值观、定位、品牌故事、品牌语调和叙事（不仅限于视觉层面）时。也适用于……

Augments Trailmark code graphs with external audit findings from SARIF static analysis results and weAudit annotation files. Maps findings to graph nodes by file and line overlap, creates severity-based subgraphs, and enables cross-referencing findings with pre-analysis data (blast radius, taint, etc.). Use when projecting SARIF results onto a code graph, overlaying weAudit annotations, cross-referencing Semgrep or CodeQL findings with call graph data, or visualizing audit findings in the context of code structure.

Compares Trailmark code graphs at two source code snapshots (git commits, tags, or directories) to surface security-relevant structural changes. Detects new attack paths, complexity shifts, blast radius growth, taint propagation changes, and privilege boundary modifications that text diffs miss. Use when comparing code between commits or tags, analyzing structural evolution, detecting attack surface growth, reviewing what changed between audit snapshots, or finding security-relevant changes that text diffs miss.

当用户提及连接/断开钱包、登录、登出、Web3 钱包、钱包地址、查询余额、加密货币持有量、发送 BNB/USDT/加密货币、代币转账、代币兑换、买入/卖出代币、DEX 交易、限价单、市价单、取消订单、获取报价、交易历史、钱包设置、每日限额、滑点、MEV 保护、支持的链、可用网络，或任何链上钱包操作时使用。

结合 Notion 上下文和 Codex 调研准备会议材料；适用于收集背景信息、起草议程/预读材料，以及根据参会者定制材料。

This skill ensures all code follows security best practices and identifies potential vulnerabilities. Use when implementing authentication or authorization,…

Troubleshoot production issues using backend function logs. Use when investigating app errors, debugging function calls, or diagnosing production problems in…

Create, read, and manage calendar events and reminders using EventKit and EventKitUI. Use when adding events to the user's calendar, creating reminders,…

academic-research-writer — 一个可安装的 AI agent skill，由 endigo/claude-skills 发布。

Access security tokens and smart cards using CryptoTokenKit. Use when building token driver extensions with TKTokenDriver and TKToken, communicating with smart…

Analyzes events through cybersecurity lens using threat modeling, attack surface analysis, defense-in-depth, zero-trust architecture, and risk-based frameworks (CIA triad, STRIDE, MITRE ATT&CK). Provides insights on vulnerabilities, attack vectors, defense strategies, incident response, and security posture. Use when: Security incidents, vulnerability assessments, threat analysis, security architecture, compliance. Evaluates: Confidentiality, integrity, availability, threat actors, attack patterns, controls, residual risk.

通过在此仓库中生成、编辑或完善 SKILL.md 文件来创建或更新技能。适用于编写新技能或修改结构……

Security audit guidelines for web applications and REST APIs based on OWASP Top 10 and web security best practices. Use when checking code for vulnerabilities,…

INVOKE THIS SKILL for LLM-as-judge evaluation workflows on Arize: creating/updating evaluators, running evaluations on spans or experiments, tasks,…

When the user wants to analyze competitors for SEO, content, backlinks, or positioning. Also use when the user mentions "competitor analysis," "competitor…

Creates and manages annotation configs (categorical, continuous, freeform label schemas) and annotation queues (human review workflows) on Arize. Applies human…

INVOKE THIS SKILL when downloading, exporting, or inspecting Arize traces and spans, or when a user wants to look at what their LLM app is doing using existing…

Perform Porter's Five Forces analysis — competitive rivalry, supplier power, buyer power, threat of substitutes, and threat of new entrants. Use when analyzing…

当用户需要创建、生成或验证 Salesforce List View 元数据时使用此技能。当用户提及列表视图、筛选记录列表……时触发。