Daily Featured Skills Count
5,034 5,070 5,117 5,165 5,205 5,241 5,277
05/08 05/09 05/10 05/11 05/12 05/13 05/14
♾️ Free & Open Source 🛡️ Secure & Worry-Free

Import Skills

Composite Most Downloads Most Likes Most Comments Newest
pretorin-ai pretorin-ai
from GitHub Testing & Security
  • 📁 examples/
  • 📁 references/
  • 📄 SKILL.md
compliance security frameworks

pretorin

This skill should be used when the user asks about compliance frameworks, security controls, control families, document requirements, FedRAMP, NIST 800-53, NIST 800-171, CMMC, STIGs, CCIs, vendor inheritance, compliance campaigns, policy/scope questionnaires, or wants to perform a compliance gap analysis, generate compliance artifacts, map controls across frameworks, run bulk compliance workflows, manage vendor responsibility, scan for STIG compliance, or check what documents are needed for certification. Trigger phrases include "list frameworks", "show controls", "what documents do I need", "compliance check", "control requirements", "gap analysis", "audit my code", "run campaign", "vendor inheritance", "STIG rules", "CCI chain", and "scan compliance".

0 5 17 days ago · Uploaded Detail →
LupusDei LupusDei
from GitHub Data & AI
  • 📄 SKILL.md
review code security

code-review

Automated code review analyzing diffs for test coverage, code quality, architecture conformance, and security. Produces structured findings and optionally creates beads for issues found. Use when user says "review code", "code review", "review my changes", "check this branch", "/code-review", or wants automated quality analysis before merging.

0 5 22 days ago · Uploaded Detail →
jagalliers jagalliers
from GitHub Testing & Security
  • 📄 SKILL.md
security access authentication

investigating-splunk-login-activity

Investigates login and authentication activity on Splunk instances using the _audit index. Use when analyzing user access patterns, session behavior, authentication anomalies, login failures, token usage, API access patterns, or any security-related access questions on a Splunk deployment.

0 5 1 month ago · Uploaded Detail →
mondaycom mondaycom
from GitHub Development & Coding
  • 📁 references/
  • 📄 SKILL.md
deploy frontend security

monday-code-deploy

Build, deploy, and manage monday code apps with multi-region, cron, alerts, and security scanning. Use when user says "deploy my app", "push to monday-code", "deploy to monday", "check deployment status", "set environment variables", "push my app", "deploy backend", "deploy frontend", or wants to promote an app version.

0 5 1 month ago · Uploaded Detail →
AgentLogLabs AgentLogLabs
from GitHub Tools & Productivity
  • 📁 src/
  • 📄 openclaw.plugin.json
  • 📄 package.json
  • 📄 SKILL.md
automation agentlog security

agentlog-auto

AgentLog Auto Logging Skill for OpenClaw agents. Automatically captures agent reasoning, tool calls, and responses, then logs them to the AgentLog MCP server for compliance and audit purposes.

0 5 1 month ago · Uploaded Detail →
kyawshinethu kyawshinethu
from GitHub Development & Coding
  • 📁 code-review/
  • 📁 references/
  • 📄 code-review.zip
  • 📄 SKILL.md
  • 📄 使用说明.md
frontend security code

code-review

Frontend-focused code review skill for React/TypeScript/Tailwind projects. Analyzes code quality, security vulnerabilities (XSS, CSRF), performance issues, accessibility (WCAG), React best practices, hooks usage, component architecture, responsive design, and SEO. Use when users request code review, want feedback on components, ask about frontend security, performance optimization, or accessibility compliance. Provides actionable feedback with severity levels and fix suggestions.

0 5 1 month ago · Uploaded Detail →
arashr arashr
from GitHub Testing & Security
  • 📁 scripts/
  • 📄 SKILL.md
security production-quality sub-components

fig-create

Build a production-quality Figma component from a frame, screenshot, URL, or description. Binds all values to design tokens, detects sub-components, audits token gaps, wires interaction states, and proposes variants. Ends by suggesting /fig-qa.

0 5 1 month ago · Uploaded Detail →
upss-standard upss-standard
from GitHub Development & Coding
  • 📁 .github/
  • 📁 config/
  • 📁 docs/
  • 📄 .gitignore
  • 📄 AUTHORS.md
  • 📄 CHANGELOG.md
security prompt ai

upss-security-guard

Enforces Universal Prompt Security Standard (UPSS) for every prompt interaction — detects and blocks prompt injection, jailbreaks, role confusion, privilege escalation, encoding exploits, and supply-chain tampering before any LLM execution.

0 5 1 month ago · Uploaded Detail →
developer-overheid-nl developer-overheid-nl
from GitHub Testing & Security
  • 📄 conflicts.md
  • 📄 reference.md
  • 📄 SKILL.md
api security design

ls-api

Gebruik deze skill wanneer de gebruiker vraagt over 'API Design Rules', 'ADR', 'REST API standaard', 'API richtlijnen', 'NL GOV API', 'Spectral linter', 'API linter', 'OpenAPI validatie', 'API design', 'REST API naming', 'transport security', 'API signing', 'API encryption', 'geospatial API', 'api-linter', 'problem+json', 'error response format'.

0 5 1 month ago · Uploaded Detail →
Mar1oo Mar1oo
from GitHub Testing & Security
  • 📄 SKILL.md
security 信息泄露检测技巧 各技术栈漏洞特征

vega

漏洞赏金猎人专项技能包。当用户进行漏洞赏金测试、安全研究、挖洞时自动激活。包含:逻辑漏洞测试方法论、信息泄露检测技巧、WAF绕过策略、历史目标经验库、各技术栈漏洞特征。每次使用后自动学习成长。

0 5 1 month ago · Uploaded Detail →

Skill File Structure Sample (Reference)

skill-sample/
├─ SKILL.md              ⭐ Required: skill entry doc (purpose / usage / examples / deps)
├─ manifest.sample.json  ⭐ Recommended: machine-readable metadata (index / validation / autofill)
├─ LICENSE.sample        ⭐ Recommended: license & scope (open source / restriction / commercial)
├─ scripts/
│  └─ example-run.py     ✅ Runnable example script for quick verification
├─ assets/
│  ├─ example-formatting-guide.md  🧩 Output conventions: layout / structure / style
│  └─ example-template.tex         🧩 Templates: quickly generate standardized output
└─ references/           🧩 Knowledge base: methods / guides / best practices
   ├─ example-ref-structure.md     🧩 Structure reference
   ├─ example-ref-analysis.md      🧩 Analysis reference
   └─ example-ref-visuals.md       🧩 Visual reference

More Agent Skills specs Anthropic docs: https://agentskills.io/home

SKILL.md Requirements

├─ ⭐ Required: YAML Frontmatter (must be at top)
│  ├─ ⭐ name                 : unique skill name, follow naming convention
│  └─ ⭐ description          : include trigger keywords for matching
│
├─ ✅ Optional: Frontmatter extension fields
│  ├─ ✅ license              : license identifier
│  ├─ ✅ compatibility        : runtime constraints when needed
│  ├─ ✅ metadata             : key-value fields (author/version/source_url...)
│  └─ 🧩 allowed-tools        : tool whitelist (experimental)
│
└─ ✅ Recommended: Markdown body (progressive disclosure)
   ├─ ✅ Overview / Purpose
   ├─ ✅ When to use
   ├─ ✅ Step-by-step
   ├─ ✅ Inputs / Outputs
   ├─ ✅ Examples
   ├─ 🧩 Files & References
   ├─ 🧩 Edge cases
   ├─ 🧩 Troubleshooting
   └─ 🧩 Safety notes

Why SkillWink?

Skill files are scattered across GitHub and communities, difficult to search, and hard to evaluate. SkillWink organizes open-source skills into a searchable, filterable library you can directly download and use.

We provide keyword search, version updates, multi-metric ranking (downloads / likes / comments / updates), and open SKILL.md standards. You can also discuss usage and improvements on skill detail pages.

Keyword Search Version Updates Multi-Metric Ranking Open Standard Discussion

Quick Start:

Import/download skills (.zip/.skill), then place locally:

~/.claude/skills/ (Claude Code)

~/.codex/skills/ (Codex CLI)

One SKILL.md can be reused across tools.

FAQ

Everything you need to know: what skills are, how they work, how to find/import them, and how to contribute.

1. What are Agent Skills?

A skill is a reusable capability package, usually including SKILL.md (purpose/IO/how-to) and optional scripts/templates/examples.

Think of it as a plugin playbook + resource bundle for AI assistants/toolchains.

2. How do Skills work?

Skills use progressive disclosure: load brief metadata first, load full docs only when needed, then execute by guidance.

This keeps agents lightweight while preserving enough context for complex tasks.

3. How can I quickly find the right skill?

Use these three together:

  • Semantic search: describe your goal in natural language.
  • Multi-filtering: category/tag/author/language/license.
  • Sort by downloads/likes/comments/updated to find higher-quality skills.

4. Which import methods are supported?

  • Upload archive: .zip / .skill (recommended)
  • Upload skills folder
  • Import from GitHub repository

Note: file size for all methods should be within 10MB.

5. How to use in Claude / Codex?

Typical paths (may vary by local setup):

  • Claude Code:~/.claude/skills/
  • Codex CLI:~/.codex/skills/

One SKILL.md can usually be reused across tools.

6. Can one skill be shared across tools?

Yes. Most skills are standardized docs + assets, so they can be reused where format is supported.

Example: retrieval + writing + automation scripts as one workflow.

7. Are these skills safe to use?

Some skills come from public GitHub repositories and some are uploaded by SkillWink creators. Always review code before installing and own your security decisions.

8. Why does it not work after import?

Most common reasons:

  • Wrong folder path or nested one level too deep
  • Invalid/incomplete SKILL.md fields or format
  • Dependencies missing (Python/Node/CLI)
  • Tool has not reloaded skills yet

9. Does SkillWink include duplicates/low-quality skills?

We try to avoid that. Use ranking + comments to surface better skills:

  • Duplicate skills: compare differences (speed/stability/focus)
  • Low quality skills: regularly cleaned up