Loading...
Loading...
Found 137 Skills
Gère les aventures/campagnes BFRPG. Crée et charge des aventures, gère le groupe de personnages, l'inventaire partagé, les sessions de jeu et le journal automatique. Utilisez pour toute gestion de campagne.
Implement enterprise Single Sign-On (SSO) authentication supporting multiple identity providers with JWT RS256 tokens, backwards verification, session management, and cross-system permission mapping. Use this skill when building authentication systems that integrate with multiple enterprise SSO providers or when implementing secure token validation with session verification.
Implement secure, production-grade authentication systems with token-based session management. Use this skill when the user asks to build user authentication, login/registration systems, session management, user identity features, or secure access control for web applications.
Better Auth — framework-agnostic TypeScript authentication & authorization library. Covers setup, email/password, social OAuth (40+ providers), passkeys, magic links, 2FA, organizations, sessions, plugins, admin, hooks, and security hardening. Use when implementing auth with Better Auth: configuring auth instances, adding providers, setting up database adapters (Prisma, Drizzle, PostgreSQL, MySQL, SQLite, MongoDB), integrating with frameworks (Next.js, Nuxt, SvelteKit, Astro, Hono, Express, Elysia, Fastify, Expo), managing sessions, or extending with plugins.
Validate authentication mechanisms for security weaknesses and compliance. Use when reviewing login systems or auth flows. Trigger with 'validate authentication', 'check auth security', or 'review login'.
Cross-tool AI consultation. Use when user asks to 'consult gemini', 'ask codex', 'get second opinion', 'cross-check with claude', 'consult another AI', 'ask opencode', 'copilot opinion', or wants a second opinion from a different AI tool.
Analyze session management implementations to identify security vulnerabilities in web applications. Use when you need to audit session handling, check for session fixation risks, review session timeout configurations, or validate session ID generation security. Trigger with phrases like "check session security", "audit session management", "review session handling", or "session fixation vulnerability".
Take a ScienceWorld action in the active session. Returns observation, reward, done. No session_id needed - uses active session from executive_node.
Load PROACTIVELY when task involves user identity, login, or access control. Use when user says "add authentication", "set up login", "add OAuth", "protect these routes", "implement RBAC", or "add sign-up". Covers session management, JWT tokens, OAuth2 flows, password reset, email verification, protected route middleware, role-based access control, and security hardening (CSRF, rate limiting, token rotation).
自动进行浏览器交互,以进行Web测试、表单填充、屏幕截图和数据提取。当用户需要浏览网站、与网页交互、填写表单、截屏或从网页中提取信息时使用。
Persistent memory that survives across conversations. Automatically remembers important context (API specs, decisions, quirks, preferences) and saves session summaries. Searches past knowledge before starting new tasks. Responds naturally to phrases like "remember this", "what do you know about...", "save this session", or "what did we do last time". All local, zero network.
Generate and manage tmux sessions for parallel sub-coordinators using git worktrees. Used when all sections are ready for execution.