全部能力

飞书综合工具箱，覆盖 14 个模块：电子表格（含导出 XLSX/CSV）、日历日程（含 agenda）、 任务管理（task/subtask/member/reminder）、任务清单、审批查询（我的任务/重新打开/评论）、 画板操作、PlantUML 图表、文件管理、素材上传下载、文档评论、知识库、用户通讯录、 文档附件下载。当用户请求操作飞书表格、查看日历/日程、创建或查询任务、查询审批任务、 操作画板、生成 PlantUML、管理文件、上传素材、查看评论、查看知识库、查询用户或部门、 下载文档附件时使用。边界分诊：群聊管理 → feishu-cli-chat；搜索文档/消息/应用 → feishu-cli-search；发消息/回复/转发 → feishu-cli-msg；构造 interactive 卡片 → feishu-cli-card；邮箱收发 → feishu-cli-mail；云盘增强（分块上传/markdown 快捷导出/ 异步 resume/富文本评论）→ feishu-cli-drive；多维表格 → feishu-cli-bitable； 视频会议/妙记 → feishu-cli-vc；文档读/写/导入/导出 → feishu-cli-{read,write,import,export}； 权限管理 → feishu-cli-perm；OAuth 登录/Token → feishu-cli-auth。

When the user wants to plan content for SEO, create content calendar, or build topic clusters. Also use when the user mentions "content strategy," "content…

Generative Engine Optimization for AI search engines (ChatGPT, Claude, Perplexity).

When the user wants to plan SEO strategy, prioritize SEO work, or understand the SEO workflow. Also use when the user mentions "SEO strategy," "SEO plan," "SEO…

使用 Salesforce CLI 切换活动的 Salesforce 组织（默认 target-org）。当用户想要更改 CLI 命令运行的目标组织时使用——…

Continuous security vulnerability scanning for OWASP Top 10, common vulnerabilities, and insecure patterns. Use when reviewing code, before deployments, or on…

Guidelines for implementing JWT authentication with security best practices for token creation, validation, and storage

当用户想要设置、审计或优化分析追踪（GA4、事件、转化）时使用。当用户提到"Google Analytics"、"GA4"…时也使用。

Security vulnerability expert covering OWASP Top 10 and common security issues. Use when conducting security audits or reviewing code for vulnerabilities.

Django access control and IDOR security review. Use when reviewing Django views, DRF viewsets, ORM queries, or any Python/Django code handling user…

CloudBase Node SDK auth guide for server-side identity, user lookup, and custom login tickets. This skill should be used when Node.js code must read caller…

CloudBase auth provider configuration and login-readiness guide. This skill should be used when users need to inspect, enable, disable, or configure auth…

When the user wants to configure, audit, or optimize robots.txt. Also use when the user mentions "robots.txt," "crawler rules," "block crawlers," "AI…

Use CloudBase document database Web SDK to query, create, update, and delete data. Supports complex queries, pagination, aggregation, realtime, and geolocation…

When the user wants to create, optimize, or audit a product listing or category page. Also use when the user mentions "product page," "product listing,"…

根据 OWASP Agentic Security Initiative (ASI) Top 10 风险检查任意 AI agent 代码库。在以下场景使用此技能： - 生产部署前评估 agent 系统安全态势 - 针对 OWASP ASI 2026 标准运行合规检查 - 将现有安全控制映射到 10 项 agentic 风险 - 生成安全审查或审计用的合规报告 - 对比 agent 框架安全特性与标准差异 - 处理类似"我的 agent 是否符合 OWASP 标准"、"检查 ASI 合规性"或"agentic 安全审计"的请求

MANDATORY: Run appropriate validation tools after EVERY code change. Do not finish a task until the code is error-free.

When the user wants to build backlinks, acquire links, or improve off-page SEO. Also use when the user mentions "link building," "backlinks," "off-page SEO,"…

使用来自《Getting Real》《Rework》和《Shape Up》的 37signals 哲学，构建精简、有主见的产品。当用户提到 "Getting Real"、"Rework"…时使用。

When the user wants to optimize for local search, set up Google Business Profile, or build local citations. Also use when the user mentions "local SEO,"…