Loading...
Loading...
Found 1,718 Skills
SAML SSO assertion attack playbook. Use when testing signature validation, assertion wrapping, audience restrictions, ACS handling, XML trust boundaries, and enterprise SSO flaws.
Apply when implementing order integration hooks, feeds, or webhook handlers for VTEX marketplace connectors. Covers Feed v3 (pull) vs Hook (push), filter types (FromWorkflow and FromOrders), order status lifecycle, payload validation, and idempotent processing. Use for building order integrations between VTEX marketplaces and external systems such as ERPs, WMS, or fulfillment services.
Architecture reviews across 7 dimensions: structural integrity, scalability, enterprise readiness (SOC2/HIPAA/GDPR/PCI-DSS), performance, security, operational excellence, and data architecture. Produces scored reports with prioritized recommendations. Three modes: (1) Codebase review — evidence-based analysis of source code, configs, IaC; (2) Document review — risk-based analysis of design docs, RFCs, specs; (3) Hybrid — drift detection between intent and implementation. Triggers on: "review architecture", "critique design", "audit system", "evaluate codebase", "find design flaws", "assess scalability", "check security", "enterprise readiness", "architecture assessment", "technical due diligence", or when user provides a system design document or codebase and asks for feedback or improvements. For architecture diagrams, visuals, or topology drawings, use architecture-diagram instead.
Activates Warren Buffett's complete investment thinking system. The following scenarios must trigger it: analyzing any stock or company, evaluating investment opportunities, interpreting financial reports/annual reports/shareholder letters, assessing business moats or competitive advantages, evaluating management quality and integrity, making buy/hold/sell decisions, understanding core value investing concepts (compounding/intrinsic value/margin of safety/circle of competence/Mr. Market), analyzing any industry (insurance/banking/consumer/media/energy/railroads/technology), handling capital allocation/buybacks/dividends questions, assessing market sentiment and macro risks, exploring when to sell, analyzing institutional imperative or management behavior. Even if the user does not mention "Buffett," proactively trigger whenever the topic involves investment analysis, business quality assessment, or investment decision-making.
Apply Bhaskar's critical realism to analyze phenomena through three ontological domains (real, actual, empirical), identify generative causal mechanisms via retroduction, and examine structure-agency interplay. Use this skill when the user needs to go beyond surface correlations to underlying causes, design research that distinguishes mechanisms from events from experiences, or when they ask 'what causes this beyond the observed pattern', 'what structures enable or constrain this behavior', or 'how do I move from correlation to causal explanation'.
Apply Bourdieu's field theory to analyze power relations through the interplay of field, capital, and habitus. Use this skill when the user needs to map positions and position-takings within a social field, analyze how different forms of capital (economic, cultural, social, symbolic) structure competition, explain why actors behave as they do within institutional settings, or when they ask 'why do people in this industry act this way', 'who has power and why', or 'how does this field reproduce inequality'.
Design and conduct mixed methods research using convergent, explanatory sequential, or exploratory sequential strategies with genuine integration of qualitative and quantitative strands. Use this skill when the user needs to choose a mixed methods design, integrate qualitative and quantitative data at design, methods, or interpretation levels, justify mixing on pragmatist grounds, or when they ask 'which mixed methods design should I use', 'how do I integrate qual and quant findings', or 'is running both qual and quant enough to be mixed methods'.
Design and analyze A/B tests with proper statistical methodology including sample size calculation, randomization, frequentist and Bayesian approaches, and sequential testing. Use this skill when the user needs to set up an experiment, calculate required sample size, interpret test results, or decide between testing methodologies — even if they say 'should we A/B test this', 'how many users do we need', 'is the test result conclusive', or 'can we stop the test early'.
Teaches Vue's script setup syntax for concise Composition API usage. Use when writing Vue 3 single-file components and you want a more ergonomic, less boilerplate syntax for the Composition API.
Reference knowledge for Markuplint HTML linter. Covers violation interpretation, CLI usage, config patterns, and documentation URLs. Auto-loaded when working with HTML linting.
Generate professional presentation slides from a topic or outline — complete decks you can view, edit, and download. Use when user wants to "create slides", "make presentation", "generate PPT", "PowerPoint", "slide deck", "做PPT", "生成幻灯片", "プレゼン作成", "슬라이드 만들기".
Use this skill when using Phaser 4 math and geometry utilities. Covers vectors, rectangles, circles, triangles, polygons, random number generation, angles, distance, interpolation, and snapping. Triggers on: Vector2, Rectangle, Circle, math, distance, angle, random, lerp.