semgrep
Run Semgrep static analysis scans on codebases using parallel subagents, multi-language detection, and Pro-enabled cross-file taint tracking.
Discover reusable agent skills, browse implementation details, and find the right skill for your workflow.
489 skills found
Run Semgrep static analysis scans on codebases using parallel subagents, multi-language detection, and Pro-enabled cross-file taint tracking.
Keep your technical specifications, test suites, and source code perfectly synchronized during AI-assisted development.
A comprehensive framework for deep analysis of articles, papers, and long-form content using 10+ thinking models like SCQA, First Principles, and Systems Thinking.
Security-first vetting protocol for AI agent skills. Detects red flags like credential theft, obfuscated code, and unauthorized data exfiltration before installation.
Convert diverse file formats like PDFs, Office docs, images, audio, and web content into clean Markdown, specifically optimized for LLM ingestion, RAG pipelines, and automated text analysis workflows.
Master professional TDD with the London (mockist) and Chicago (classicist) schools. Automate test-first workflows, style selection, and refactoring with AI agents.
Research React APIs, patterns, and concepts using authoritative source code, tests, and repository history.
Create professional technical diagrams and flowcharts using LaTeX TikZ with standardized Google Material and Anthropic-inspired design themes.
Edit and modify PDF documents using natural-language instructions via the nano-pdf command-line interface.
A professional bug bounty reporting agent that enforces impact-first writing, CVSS 3.1 scoring, and pre-submit validation for platforms like HackerOne, Bugcrowd, and Intigriti.
Definition of Done (DoD) verification workflow that triggers automatically upon implementation completion to ensure quality, document evidence, and standardize reporting.
An AI-driven active listening framework to extract, clarify, and structure requirements, business values, and scope from ambiguous user stories.