Loading...
Loading...
Found 2,005 Skills
Extract and decode Supabase-related JWTs from client-side code, cookies, and local storage patterns.
List all tables exposed via the Supabase PostgREST API to identify the attack surface.
Centralized API key management from Access.txt
This skill should be used when the user asks to "add MCP server", "integrate MCP", "configure MCP in plugin", "use .mcp.json", "set up Model Context Protocol", "connect external service", mentions "${CLAUDE_PLUGIN_ROOT} with MCP", or discusses MCP server types (SSE, stdio, HTTP, WebSocket). Provides comprehensive guidance for integrating Model Context Protocol servers into Claude Code plugins for external tool and service integration.
Run a comprehensive code review
Scan your project for exposed credentials, API keys, and secrets before running OpenClaw skills. Prevents accidental exfiltration.
Professional Skills for Cross-Site Scripting (XSS) Attack Testing
XXE XML外部实体注入测试的专业技能和方法论
Web fuzzing with ffuf
Professional Skills and Methodologies for Deserialization Vulnerability Testing
Reverse engineer binaries using Ghidra's headless analyzer. Decompile executables, extract functions, strings, symbols, and analyze call graphs without GUI.
Use this agent when working with prompt injection detection integration tests, including running tests, debugging failures, or adding new test samples.