Total 46,964 skills
Showing 12 of 46964 skills
TanStack Form patterns - useForm, form.Field, validators, arrays, linked fields, createFormHook, type safety
Brand intelligence - logos, colors, fonts, styleguides, and company data from any domain
Cross-site scripting (XSS) vulnerability detection and exploitation. Supports reflected XSS, stored XSS, DOM-based XSS, and blind XSS testing. Use this skill when user mentions XSS, cross-site scripting, script injection, or needs to test JavaScript injection in parameters, forms, headers, or DOM sources.
Detects and prevents code injection attacks targeting serverless functions (AWS Lambda, Azure Functions, Google Cloud Functions) through event source poisoning, malicious layer injection, runtime command execution, and IAM privilege escalation via function modification. The analyst combines static analysis of function code, CloudTrail event correlation, runtime behavior monitoring, and IAM policy auditing to identify injection vectors across the expanded serverless attack surface including API Gateway, S3, SQS, DynamoDB Streams, and CloudWatch event triggers. Activates for requests involving Lambda security assessment, serverless injection detection, function event poisoning analysis, or serverless privilege escalation investigation.
Skill for optimizing article style to remove AI flavor. Used to identify and rewrite issues such as AI traces, template tone, material-like style, translationese, empty buzzwords, excessive golden sentences, overuse of em dashes, bullet stacking, and random bolding in articles, official account drafts, self-media drafts, oral broadcast scripts, speech scripts, course scripts, and product copy; activated when users say phrases like "remove AI flavor", "eliminate AI traces", "not written by AI", "more human-written", "more natural", "less robotic", "remove template feel", "polish to official account final draft". Not applicable for fact-checking, zero-based topic planning, converting papers to official account articles, pure title generation, or pursuing AI detector pass rates.
Prepare for investor calls by pulling upcoming meetings from Google Calendar, deeply researching each investor and their firm (website scraping, portfolio analysis, thesis extraction), checking for competitor conflicts, and outputting an honest prep sheet with compatibility assessments. Use when asked to prep for investor meetings, fundraising calls, VC meetings, or demo day.
Generate Apple minimalist-style competitive analysis HTML reports with Chart.js data visualization. Use analysis frameworks including Porter's Five Forces, Blue Ocean Strategy, and Competitive Positioning Map. Suitable for competitive analysis, market positioning, and competitive advantage assessment.
People, company, investor, and job search with LinkedIn data enrichment
Create polished, intentional frontend interfaces. Use this skill when building any UI — dashboards, admin panels, landing pages, marketing sites, or web applications. Routes to specialized guidance based on context.
Generate penetration testing reports in standard format, including project information sheet, vulnerability discovery list, detailed vulnerability information (including attribute sheet, description, reproduction steps, evidence screenshots, remediation suggestions), and appendices (risk level definition, CVSS explanation, glossary). Use this skill when users request to generate penetration testing reports, security testing reports, or vulnerability reports. Strictly follow the standard format in the project template directory.
Creates talking head videos from any source material (docs, changelogs, blog posts, notes, transcripts). Produces multi-scene videos with avatar narration over screenshots/images using HeyGen v2 API. Supports Quick Shot and Full Producer modes.
Find attendees at conferences/events, research their companies, qualify against ICP, and launch outreach