sbom-syft
Generate Software Bill of Materials (SBOM) for container images and filesystems using Syft. Supports 28+ ecosystems, multiple formats like CycloneDX and SPDX, and integration into CI/CD for supply chain security.
Discover reusable agent skills, browse implementation details, and find the right skill for your workflow.
193 skills found
Generate Software Bill of Materials (SBOM) for container images and filesystems using Syft. Supports 28+ ecosystems, multiple formats like CycloneDX and SPDX, and integration into CI/CD for supply chain security.
Framework for orchestrating long-running agentic tasks, evidence-based delivery, and automated QA gates following Simon Willison's iterative loop.
Audit Packmind documentation by cross-referencing MDX files against the codebase to detect broken links, outdated CLI references, and missing coverage.
An all-in-one Chinese daily utility toolkit: weather, currency exchange, news, and package tracking. Zero configuration, no API keys required.
Detects timing side-channel vulnerabilities in cryptographic code through static and dynamic analysis across multiple programming languages.
Monitor US-Iran strike probability via real-time open-source signals including market odds, flight traffic, energy prices, and geopolitical alerts.
Scans Solana programs (native/Anchor) for 6 critical vulnerabilities, including arbitrary CPI, improper PDA validation, and missing ownership checks, providing detailed fix recommendations.
Automated GitHub PR review agent for code quality, security analysis, and standard compliance using gh CLI.
Extracts Supabase anonymous API keys from client-side source code to facilitate RLS testing and security auditing.
Implement comprehensive TypeScript authentication and authorization using Better Auth, supporting OAuth, 2FA, passkeys, sessions, and multi-tenant features.
Create polished animated terminal demos for pull requests and documentation using asciinema, agg, and svg-term-cli.
Find similar vulnerabilities and bugs across codebases using pattern-based analysis. Use when hunting bug variants, building CodeQL/Semgrep queries, or performing systematic code audits.