搜索结果
全部能力
找到 17783 个相关结果
软件工程 / 诊断修复
business-logic-vuln
business-logic-vuln
Entry P1 category router for business logic testing. Use when workflow abuse, race conditions, pricing flaws, or multi-step state attacks matter more than parser-level input injection.
软件工程 / 诊断修复
playwright-local
playwright-local
Build browser automation and web scraping with Playwright on your local machine. Prevents 10 documented errors including CI timeout hangs, extension testing failures, and Ubuntu compatibility issues. Includes stealth mode for anti-bot bypass, authenticated sessions, infinite scroll handling, screenshot/PDF generation, and v1.57 Speedboard performance analysis. Use when: automating browsers, scraping protected sites, testing with real IPs, bypassing bot detection, generating screenshots/PDFs, or troubleshooting "target closed", "page.pause() hangs CI", "permission prompts block tests", or "Ubuntu 25.10 installation" errors.
软件工程 / 诊断修复
responsive-patterns
responsive-patterns
Responsive design with Container Queries, fluid typography, cqi/cqb units, subgrid, intrinsic layouts, foldable devices, and mobile-first patterns for React…
软件工程 / 诊断修复
oauth-oidc-misconfiguration
oauth-oidc-misconfiguration
OAuth and OIDC misconfiguration testing playbook. Use when reviewing redirect URI handling, state and nonce validation, PKCE, token audience, callback binding, and identity-provider trust flaws.
软件工程 / 诊断修复
db-seed
db-seed
Generate database seed scripts with realistic sample data. Reads Drizzle schemas or SQL migrations, respects foreign key ordering, produces idempotent…
软件工程 / 诊断修复
cors-cross-origin-misconfiguration
cors-cross-origin-misconfiguration
CORS misconfiguration testing playbook. Use when analyzing cross-origin trust, credentialed browser reads, origin reflection, preflight policy bugs, and browser-based access to authenticated APIs.
软件工程 / 部署发布
grepai-trace-callees
grepai-trace-callees
Find function callees with GrepAI trace. Use this skill to discover what functions a specific function calls.
通用助手 / 编排推荐
mapbox-android-patterns
mapbox-android-patterns
Official integration patterns for Mapbox Maps SDK on Android. Covers installation, adding markers, user location, custom data, styles, camera control, and…
软件工程 / 部署发布
kubernetes-deployment
kubernetes-deployment
Deploy, manage, and scale containerized applications on Kubernetes clusters with best practices for production workloads, resource management, and rolling updates.
软件工程 / 诊断修复
agent-ui
agent-ui
Batteries-included agent component for React/Next.js from ui.inference.sh. One component with runtime, tools, streaming, approvals, and widgets built in.…
软件工程 / 部署发布
grepai-trace-callers
grepai-trace-callers
Find function callers with GrepAI trace. Use this skill to discover what code calls a specific function.
软件工程 / 诊断修复
frontend-security-coder
frontend-security-coder
Expert in secure frontend coding practices specializing in XSS prevention, output sanitization, and client-side security patterns.
软件工程 / 诊断修复
mastering-typescript
mastering-typescript
Master enterprise-grade TypeScript development with type-safe patterns, modern tooling, and framework integration. This skill provides comprehensive guidance for TypeScript 5.9+, covering type system fundamentals (generics, mapped types, conditional types, satisfies operator), enterprise patterns (error handling, validation with Zod), React integration for type-safe frontends, NestJS for scalable APIs, and LangChain.js for AI applications. Use when building type-safe applications, migrating JavaScript codebases, configuring modern toolchains (Vite 7, pnpm, ESLint, Vitest), implementing advanced type patterns, or comparing TypeScript with Java/Python approaches.
通用助手 / 编排推荐
create-tool
create-tool
Create custom tools for Vapi voice assistants including function tools, API request tools, transfer call tools, end call tools, and integrations with Google…
自动化与集成 / 自动执行
file-access-vuln
file-access-vuln
Entry P1 category router for file access and upload workflows. Use when testing download endpoints, file paths, local file inclusion, upload flows, preview pipelines, archive extraction, or storage and sharing boundaries.
软件工程 / 诊断修复
API 侦察与文档编制
api-recon-and-docs
API侦察与文档审查手册。用于发现端点、模式、版本、OpenAPI规范、隐藏文档以及API测试的攻击面时。
数据与分析 / 分析洞察
commit-helper
commit-helper
Help create git commits and PRs with properly formatted messages and release notes following CockroachDB conventions. Use when committing changes or creating…
自动化与集成 / 自动执行
cmdi-command-injection
cmdi-command-injection
Command injection playbook. Use when user input may reach shell commands, process execution, converters, import pipelines, or blind out-of-band command sinks.
软件工程 / 诊断修复
security-audit
security-audit
Comprehensive security auditing workflow covering web application testing, API security, penetration testing, vulnerability scanning, and security hardening.
软件工程 / 诊断修复
system-architect
system-architect
Designs system architecture, selects tech stacks, defines components and interfaces, addresses non-functional requirements. Trigger words - architecture,…