Total Skills
200
Author Profile: galyarderlabs
Skills published by galyarderlabs with real stars/downloads and source-aware metadata.
Total Stars
1.8K
Total Downloads
0
Skills Performance
Comparison chart based on real stars and downloads signals from source data.
playwright-pro
9
Stars
9
Downloads
0
design-guide
9
Stars
9
Downloads
0
finishing-a-development-branch
9
Stars
9
Downloads
0
browserstack
9
Stars
9
Downloads
0
fix
9
Stars
9
Downloads
0
generate
9
Stars
9
Downloads
0
pw-init
9
Stars
9
Downloads
0
migrate
9
Stars
9
Downloads
0
Published Skills
playwright-pro
Production-grade Playwright testing toolkit. Use when the user mentions Playwright tests, end-to-end testing, browser automation, fixing flaky tests, test migration, CI/CD testing, or test suites. Generate tests, fix flaky failures, migrate from Cypress/Selenium, sync with TestRail, run on BrowserStack. 55 templates, 3 agents, smart reporting.
Repository SourceNeeds Review
design-guide
Galyarder Framework UI design system guide for building consistent, reusable frontend components. Use when creating new UI components, modifying existing ones, adding pages or features to the frontend, styling UI elements, or when you need to understand the design language and conventions. Covers: component creation, design tokens, typography, status/priority systems, composition patterns, and the /design-guide showcase page. Always use this skill alongside the frontend-design skill (for visual quality) and the web-design-guidelines skill (for web best practices).
Repository SourceNeeds Review
finishing-a-development-branch
Use when implementation is complete, all tests pass, and you need to decide how to integrate the work - guides completion of development work by presenting structured options for merge, PR, or cleanup
Repository SourceNeeds Review
browserstack
Run tests on BrowserStack. Use when user mentions "browserstack", "cross-browser", "cloud testing", "browser matrix", "test on safari", "test on firefox", or "browser compatibility".
Repository SourceNeeds Review
fix
Fix failing or flaky Playwright tests. Use when user says "fix test", "flaky test", "test failing", "debug test", "test broken", "test passes sometimes", or "intermittent failure".
Repository SourceNeeds Review
generate
Generate Playwright tests. Use when user says "write tests", "generate tests", "add tests for", "test this component", "e2e test", "create test for", "test this page", or "test this feature".
Repository SourceNeeds Review
pw-init
Set up Playwright in a project. Use when user says "set up playwright", "add e2e tests", "configure playwright", "testing setup", "init playwright", or "add test infrastructure".
Repository SourceNeeds Review
migrate
Migrate from Cypress or Selenium to Playwright. Use when user mentions "cypress", "selenium", "migrate tests", "convert tests", "switch to playwright", "move from cypress", or "replace selenium".
Repository SourceNeeds Review
report
Generate test report. Use when user says "test report", "results summary", "test status", "show results", "test dashboard", or "how did tests go".
Repository SourceNeeds Review
review
Review Playwright tests for quality. Use when user says "review tests", "check test quality", "audit tests", "improve tests", "test code review", or "playwright best practices check".
Repository SourceNeeds Review
testrail
Sync tests with TestRail. Use when user mentions "testrail", "test management", "test cases", "test run", "sync test cases", "push results to testrail", or "import from testrail".
Repository SourceNeeds Review
receiving-code-review
Use when receiving code review feedback, before implementing suggestions, especially if feedback seems unclear or technically questionable - requires technical rigor and verification, not performative agreement or blind implementation
Repository SourceNeeds Review
requesting-code-review
Use when completing tasks, implementing major features, or before merging to verify work meets requirements
Repository SourceNeeds Review
subagent-driven-development
Use when executing implementation plans with independent tasks in the current session
Repository SourceNeeds Review
systematic-debugging
Use when encountering any bug, test failure, or unexpected behavior, before proposing fixes
Repository SourceNeeds Review
test-driven-development
Use when implementing any feature or bugfix, before writing implementation code
Repository SourceNeeds Review
vercel-react-best-practices
React and Next.js performance optimization guidelines from Vercel Engineering. This skill should be used when writing, reviewing, or refactoring React/Next.js code to ensure optimal performance patterns. Triggers on tasks involving React components, Next.js pages, data fetching, bundle optimization, or performance improvements.
Repository SourceNeeds Review
verification-before-completion
Use when about to claim work is complete, fixed, or passing, before committing or creating PRs - requires running verification commands and confirming output before making any success claims; evidence before assertions always
Repository SourceNeeds Review
accelerator-application
Accelerator Application Specialist. Use to shortlist startup programs, draft applications, prepare founder videos, and rehearse accelerator interviews with a disciplined founder narrative.
Repository SourceNeeds Review
board-update
Investor And Board Communication Specialist. Use to draft monthly investor updates, quarterly board decks, and high-signal stakeholder communications that surface wins, misses, risks, and asks clearly.
Repository SourceNeeds Review
brainstorming
You MUST use this before any creative work - creating features, building components, adding functionality, or modifying behavior. Explores user intent, requirements and design before implementation.
Repository SourceNeeds Review
data-room
Due Diligence Data Room Specialist. Use to prepare, audit, and organize fundraising materials for investor diligence before or after a term sheet.
Repository SourceNeeds Review
founder-context
Founder Operating Context. Use to create or update the canonical founder/startup context document so every fundraising, growth, product, and recruiting workflow runs on concrete company facts instead of generic assumptions.
Repository SourceNeeds Review
founder-thought-leadership
Founder Brand And Thought Leadership Specialist. Use to define founder IP territory, create content systems for X and LinkedIn, and turn founder experience into audience, distribution, and credibility.
Repository SourceNeeds Review
fundraising-email
Investor Email Specialist. Use to write fundraising outreach, warm intro blurbs, follow-ups, investor updates, and close-the-loop emails with founder-grade brevity and specificity.
Repository SourceNeeds Review
investor-research
Investor Targeting Specialist. Use to identify, qualify, and tier investors for a round based on stage, sector, geography, check size, and portfolio fit.
Repository SourceNeeds Review
lead-scoring
Lead Qualification And Scoring Specialist. Use to define ICP filters, score inbound and outbound leads, and improve pipeline focus for a founder-led sales motion.
Repository SourceNeeds Review
market-research
Market Research Specialist. Use to analyze target markets, ICP segments, demand patterns, competitive terrain, and strategic whitespace for founder decisions.
Repository SourceNeeds Review
pitch-deck
Fundraising Pitch Deck Specialist. Use to build, review, or restructure a founder deck for pre-seed through Series A, with a clear narrative arc, investor-grade slide logic, and explicit asks.
Repository SourceNeeds Review
using-galyarder-framework
Use when starting any conversation - establishes how to find and use skills, requiring Skill tool invocation before ANY response including clarifying questions
Repository SourceNeeds Review
writing-skills
Use when creating new skills, editing existing skills, or verifying skills work before deployment
Repository SourceNeeds Review
ab-test-setup
Structured guide for setting up A/B tests with mandatory gates for hypothesis, metrics, and execution readiness.
Repository SourceNeeds Review
analytics-tracking
Design, audit, and improve analytics tracking systems that produce reliable, decision-ready data.
Repository SourceNeeds Review
campaign-analytics
Analyzes campaign performance with multi-touch attribution, funnel conversion analysis, and ROI calculation for marketing optimization. Use when analyzing marketing campaigns, ad performance, attribution models, conversion rates, or calculating marketing ROI, ROAS, CPA, and campaign metrics across channels.
Repository SourceNeeds Review
competitor-alternatives
You are an expert in creating competitor comparison and alternative pages. Your goal is to build pages that rank for competitive search terms, provide genuine value to evaluators, and position your product effectively.
Repository SourceNeeds Review
content-creator
Deprecated redirect skill that routes legacy 'content creator' requests to the correct specialist. Use when a user invokes 'content creator', asks to write a blog post, article, guide, or brand voice analysis (routes to content-production), or asks to plan content, build a topic cluster, or create a content calendar (routes to content-strategy). Does not handle requests directly identifies user intent and redirects to content-production for writing/SEO/brand-voice tasks or content-strategy for planning tasks.
Repository SourceNeeds Review
content-strategy
Plan a content strategy, topic clusters, editorial roadmap, and content mix for traffic, authority, and lead generation. Use when deciding what to publish, what topics to prioritize, or how to structure a content program.
Repository SourceNeeds Review
copywriting
Write rigorous, conversion-focused marketing copy for landing pages and emails. Enforces brief confirmation and strict no-fabrication rules.
Repository SourceNeeds Review
email-marketing-bible
Comprehensive, data-backed email marketing knowledge base. 908 sources, 4,798 insights. Use when reviewing email setups, building automation flows, diagnosing deliverability, writing email copy, selecting platforms, or pulling Standards. Covers strategy, flows, deliverability, copywriting, segmentation, compliance, cold email, and 19 industry playbooks.
Repository SourceNeeds Review
marketing-demand-acquisition
Creates demand generation campaigns, optimizes paid ad spend across LinkedIn, Google, and Meta, develops SEO strategies, and structures partnership programs for Series A+ startups scaling internationally. Use when planning marketing strategy, growth marketing, advertising campaigns, PPC optimization, lead generation, pipeline generation, or startup marketing budgets. Covers multi-channel acquisition (Google Ads, LinkedIn Ads, Meta Ads), CAC analysis, MQL/SQL workflows, attribution modeling, technical SEO, and co-marketing partnerships for hybrid PLG/Sales-Led motions in EU/US/Canada markets.
Repository SourceNeeds Review
marketing-ideas
Provide proven marketing strategies and growth ideas for SaaS and software products, prioritized using a marketing feasibility scoring system.
Repository SourceNeeds Review
marketing-psychology
Apply behavioral science and mental models to revenue (cuan) decisions, prioritized using a psychological leverage and feasibility scoring system.
Repository SourceNeeds Review
onboarding-cro
You are an expert in user onboarding and activation. Your goal is to help users reach their "aha moment" as quickly as possible and establish habits that lead to long-term retention.
Repository SourceNeeds Review
page-cro
Analyze and optimize individual pages for conversion performance.
Repository SourceNeeds Review
paywall-upgrade-cro
You are an expert in in-app paywalls and upgrade flows. Your goal is to convert free users to paid, or upgrade users to higher tiers, at moments when they've experienced enough value to justify the commitment.
Repository SourceNeeds Review
programmatic-seo
Design and evaluate programmatic SEO strategies for creating SEO-driven pages at scale using templates and structured data.
Repository SourceNeeds Review
referral-program
You are an expert in viral growth and referral marketing with access to referral program data and third-party tools. Your goal is to help design and optimize programs that turn customers into Revenue (Cuan) engines.
Repository SourceNeeds Review
revenue-architect
Monetization and pricing strategy specialist. Use this agent to design revenue models, set price points based on value perception, and create viral referral loops. It focuses on the "Cuan" (Revenue) aspect of the 1-Man Army pipeline.
Repository SourceNeeds Review
schema-markup
Design, validate, and optimize schema.org structured data for eligibility, correctness, and measurable SEO impact.
Repository SourceNeeds Review
seo-audit
Diagnose and audit SEO issues affecting crawlability, indexation, rankings, and organic performance.
Repository SourceNeeds Review
social-content
You are an expert social media strategist with direct access to a scheduling platform that publishes to all major social networks. Your goal is to help create engaging content that builds audience, drives engagement, and supports business goals.
Repository SourceNeeds Review
accounting
Use this skill when the user needs to set up bookkeeping, track revenue and expenses, prepare for taxes, choose accounting software, understand SaaS revenue recognition, or manage the financial operations of their bootstrapped business. Covers bookkeeping setup, tax preparation, accounting tools, and financial hygiene for the 1-Man Army.
Repository SourceNeeds Review
architect
Software architecture specialist for system design, scalability, and technical decision-making. Use PROACTIVELY when planning new features, refactoring large systems, or making architectural decisions.
Repository SourceNeeds Review
build-error-resolver
Build and TypeScript error resolution specialist. Use PROACTIVELY when build fails or type errors occur. Fixes build/type errors only with minimal diffs, no architectural edits. Focuses on getting the build green quickly.
Repository SourceNeeds Review
build-fix
Systematically investigate and fix build errors, TypeScript errors, or test failures with minimal diffs.
Repository SourceNeeds Review
chief-of-staff
Master coordinator for the founder. Filters noise, owns cross-functional processes, enforces consistency, routes decisions, and positions outputs for impact so the founder can think clearly. Doesn't own any function owns the space between all of them.
Repository SourceNeeds Review
clean
Dead code cleanup and consolidation specialist. Removes unused code, duplicates, and refactors for maintainability.
Repository SourceNeeds Review
cloud-security
Use when assessing cloud infrastructure for security misconfigurations, IAM privilege escalation paths, S3 public exposure, open security group rules, or IaC security gaps. Covers AWS, Azure, and GCP posture assessment with MITRE ATT&CK mapping.
Repository SourceNeeds Review
code-reviewer
Expert code review specialist. Proactively reviews code for quality, security, and maintainability. Use immediately after writing or modifying code. MUST BE USED for all code changes.
Repository SourceNeeds Review
contract-and-proposal-writer
Generate production-ready business documents including freelance contracts, project proposals, SOWs, NDAs, and MSAs with jurisdiction-aware clauses. Covers US (Delaware), EU (GDPR), UK, and DACH (German law) legal frameworks. Includes contract templates, clause libraries, and DOCX conversion. Use when starting client engagements, writing proposals, drafting partnership agreements, or needing GDPR-compliant data processing addenda.
Repository SourceNeeds Review
contract-review
Analyze and red-flag contracts systematically, identifying risks, unfavorable terms, and negotiation opportunities
Repository SourceNeeds Review
conversion-engineer
CRO (Conversion Rate Optimization) and Funnel specialist. Use this agent to design onboarding flows, optimize signup forms, and maximize paywall conversion. It focuses on the bridge between Engineering and Revenue.
Repository SourceNeeds Review
cro
Conversion Rate Optimization specialist. Optimizes onboarding, paywalls, and signup flows.
Repository SourceNeeds Review
cyber-intel
External Threat & Intel Specialist. Use this agent for OSINT, monitoring for data leaks, and mapping the external attack surface. It provides strategic intelligence on who might be targeting the platform and where brand vulnerabilities exist.
Repository SourceNeeds Review
cybersecurity
Perform an advanced offensive security audit and attack simulation on the current features.
Repository SourceNeeds Review
defuddle
Extract clean markdown content from web pages using Defuddle CLI, removing clutter and navigation to save tokens. Use instead of WebFetch when the user provides a URL to read or analyze, for online documentation, articles, blog posts, or any standard web page. Do NOT use for URLs ending in .md those are already markdown, use WebFetch directly.
Repository SourceNeeds Review
deploy
Infrastructure and CI/CD specialist. Automates deployments to Vercel, Docker, or AWS.
Repository SourceNeeds Review
design-system-airbnb
Documentation and rules for Design System: Airbnb
Repository SourceNeeds Review
design-system-airtable
Documentation and rules for Design System: Airtable
Repository SourceNeeds Review
design-system-apple
Documentation and rules for Design System: Apple
Repository SourceNeeds Review
design-system-bmw
Documentation and rules for Design System: BMW
Repository SourceNeeds Review
design-system-cal-com
Documentation and rules for Design System: Cal.com
Repository SourceNeeds Review
design-system-claude-anthropic
Documentation and rules for Design System: Claude (Anthropic)
Repository SourceNeeds Review
design-system-clay
Documentation and rules for Design System: Clay
Repository SourceNeeds Review
design-system-clickhouse
Documentation and rules for Design System: ClickHouse
Repository SourceNeeds Review
design-system-cohere
Documentation and rules for Design System: Cohere
Repository SourceNeeds Review
design-system-coinbase
Documentation and rules for Design System: Coinbase
Repository SourceNeeds Review
design-system-composio
Documentation and rules for Design System: Composio
Repository SourceNeeds Review
design-system-cursor
Documentation and rules for Design System: Cursor
Repository SourceNeeds Review
design-system-elevenlabs
Documentation and rules for Design System: ElevenLabs
Repository SourceNeeds Review
design-system-expo
Documentation and rules for Design System: Expo
Repository SourceNeeds Review
design-system-figma
Documentation and rules for Design System: Figma
Repository SourceNeeds Review
design-system-framer
Documentation and rules for Design System: Framer
Repository SourceNeeds Review
design-system-hashicorp
Documentation and rules for Design System: HashiCorp
Repository SourceNeeds Review
design-system-ibm
Documentation and rules for Design System: IBM
Repository SourceNeeds Review
design-system-intercom
Documentation and rules for Design System: Intercom
Repository SourceNeeds Review
design-system-kraken
Documentation and rules for Design System: Kraken
Repository SourceNeeds Review
design-system-linear
Documentation and rules for Design System: Linear
Repository SourceNeeds Review
design-system-lovable
Documentation and rules for Design System: Lovable
Repository SourceNeeds Review
design-system-minimax
Documentation and rules for Design System: MiniMax
Repository SourceNeeds Review
design-system-mintlify
Documentation and rules for Design System: Mintlify
Repository SourceNeeds Review
design-system-miro
Documentation and rules for Design System: Miro
Repository SourceNeeds Review
design-system-mistral-ai
Documentation and rules for Design System: Mistral AI
Repository SourceNeeds Review
design-system-mongodb
Documentation and rules for Design System: MongoDB
Repository SourceNeeds Review
design-system-notion
Documentation and rules for Design System: Notion
Repository SourceNeeds Review
design-system-nvidia
Documentation and rules for Design System: NVIDIA
Repository SourceNeeds Review
design-system-ollama
Documentation and rules for Design System: Ollama
Repository SourceNeeds Review
design-system-opencode
Documentation and rules for Design System: OpenCode
Repository SourceNeeds Review
design-system-pinterest
Documentation and rules for Design System: Pinterest
Repository SourceNeeds Review
design-system-posthog
Documentation and rules for Design System: PostHog
Repository SourceNeeds Review
design-system-raycast
Documentation and rules for Design System: Raycast
Repository SourceNeeds Review
design-system-replicate
Documentation and rules for Design System: Replicate
Repository SourceNeeds Review
design-system-resend
Documentation and rules for Design System: Resend
Repository SourceNeeds Review
design-system-revolut
Documentation and rules for Design System: Revolut
Repository SourceNeeds Review
design-system-runway
Documentation and rules for Design System: Runway
Repository SourceNeeds Review
design-system-sanity
Documentation and rules for Design System: Sanity
Repository SourceNeeds Review
design-system-sentry
Documentation and rules for Design System: Sentry
Repository SourceNeeds Review
design-system-spacex
Documentation and rules for Design System: SpaceX
Repository SourceNeeds Review
design-system-spotify
Documentation and rules for Design System: Spotify
Repository SourceNeeds Review
design-system-stripe
Documentation and rules for Design System: Stripe
Repository SourceNeeds Review
design-system-supabase
Documentation and rules for Design System: Supabase
Repository SourceNeeds Review
design-system-superhuman
Documentation and rules for Design System: Superhuman
Repository SourceNeeds Review
design-system-together-ai
Documentation and rules for Design System: Together AI
Repository SourceNeeds Review
design-system-uber
Documentation and rules for Design System: Uber
Repository SourceNeeds Review
design-system-vercel
Documentation and rules for Design System: Vercel
Repository SourceNeeds Review
design-system-voltagent
Documentation and rules for Design System: VoltAgent
Repository SourceNeeds Review
design-system-warp
Documentation and rules for Design System: Warp
Repository SourceNeeds Review
design-system-webflow
Documentation and rules for Design System: Webflow
Repository SourceNeeds Review
design-system-wise
Documentation and rules for Design System: Wise
Repository SourceNeeds Review
design-system-xai
Documentation and rules for Design System: xAI
Repository SourceNeeds Review
design-system-zapier
Documentation and rules for Design System: Zapier
Repository SourceNeeds Review
devops-engineer
Infrastructure, Deployment, and CI/CD specialist. Use PROACTIVELY when a feature is ready to merge to handle deployments (Vercel, AWS, Docker), infrastructure-as-code (Terraform), and pipeline automation (GitHub Actions).
Repository SourceNeeds Review
docs
Documentation and codemap specialist. Generates codemaps, updates READMEs, and syncs documentation with the source code.
Repository SourceNeeds Review
e2e-runner
End-to-end testing specialist using Playwright. Use PROACTIVELY for generating, maintaining, and running E2E tests. Manages test journeys, quarantines flaky tests, uploads artifacts (screenshots, videos, traces), and ensures critical user flows work.
Repository SourceNeeds Review
e2e
End-to-end testing specialist using Playwright. Generates and runs user journey tests.
Repository SourceNeeds Review
elite-developer
Principal Full-Stack Engineer. Deterministic implementation engine. Master of TDD, formal verification, and architectural minimalism.
Repository SourceNeeds Review
eradicating-malware-from-infected-systems
Systematically remove malware, backdoors, and attacker persistence mechanisms from infected systems while ensuring complete eradication and preventing re-infection.
Repository SourceNeeds Review
executing-active-directory-attack-simulation
Executes authorized attack simulations against Active Directory environments to identify misconfigurations, weak credentials, dangerous privilege paths, and exploitable trust relationships that could lead to domain compromise. The tester uses BloodHound for attack path analysis, Mimikatz for credential extraction, and Impacket for protocol-level attacks including Kerberoasting, AS-REP Roasting, and delegation abuse. Activates for requests involving Active Directory pentest, AD attack simulation, domain compromise testing, or Kerberos attack assessment.
Repository SourceNeeds Review
executing-phishing-simulation-campaign
Executes authorized phishing simulation campaigns to assess an organization's susceptibility to email-based social engineering attacks. The tester designs realistic phishing scenarios, builds credential harvesting infrastructure, sends targeted phishing emails, and tracks open rates, click-through rates, and credential submission rates to measure human security awareness. Activates for requests involving phishing simulation, social engineering assessment, email security testing, or security awareness measurement.
Repository SourceNeeds Review
executing-plans
Use when you have a written implementation plan to execute in a separate session with review checkpoints
Repository SourceNeeds Review
executing-red-team-engagement-planning
Red team engagement planning is the foundational phase that defines scope, objectives, rules of engagement (ROE), threat model selection, and operational timelines before any offensive testing begins.
Repository SourceNeeds Review
executing-red-team-exercise
Executes comprehensive red team exercises that simulate real-world adversary operations against an organization's people, processes, and technology. The red team operates with stealth as a primary objective, employing the full attack lifecycle from initial reconnaissance through objective completion while testing the organization's detection and response capabilities. This differs from penetration testing by focusing on adversary emulation rather than vulnerability identification. Activates for requests involving red team exercise, adversary simulation, adversary emulation, or full-scope offensive security assessment.
Repository SourceNeeds Review
experiment
EXPERIMENT MODE: Timeboxed, throwaway code for rapid validation. Bypasses TDD requirements. Code must be quarantined and cannot be merged to main.
Repository SourceNeeds Review
finance-based-pricing-advisor
Evaluate pricing changes using ARPU, conversion, churn risk, NRR, and payback. Use when deciding whether a pricing move should ship.
Repository SourceNeeds Review
financial-analyst
Performs financial ratio analysis, DCF valuation, budget variance analysis, and rolling forecast construction for strategic decision-making. Use when analyzing financial statements, building valuation models, assessing budget variances, or constructing financial projections and forecasts. Also applicable when users mention financial modeling, cash flow analysis, company valuation, financial projections, or spreadsheet analysis.
Repository SourceNeeds Review
finops-manager
Finance & Cloud Cost Specialist. Use this agent to optimize cloud spend (Vercel/AWS), design value-based pricing models, and manage the burn rate. It ensures the 1-Man Army remains profitable and financially sustainable.
Repository SourceNeeds Review
finops
Audit cloud costs, optimize API token usage, and evaluate pricing models.
Repository SourceNeeds Review
fundraising-operator
Fundraising and investor operations specialist. Owns founder context, pitch narrative, investor targeting, investor communication, diligence readiness, and board-update hygiene for the 1-Man Army founder.
Repository SourceNeeds Review
galyarder-ceo
Chief Executive Officer. Strategic Hegemon and Apex Instance of the Humans 3.0 protocol. Distilled genius of history's greatest conquerors and modern monopolists.
Repository SourceNeeds Review
galyarder-cfo-coo
Chief Financial and Operating Officer. Stability guardian. FinOps optimization, legal compliance, risk parity, and operational physics. Apex instance of the Humans 3.0 protocol.
Repository SourceNeeds Review
galyarder-cmo
Chief Marketing Officer. Professional behavioral engineering, autonomous acquisition swarms, and exponential distribution mechanics. Apex instance of the Humans 3.0 protocol.
Repository SourceNeeds Review
galyarder-cto
Chief Technology Officer. Technical guardian. AGI-Adjacent Architectural determinism, self-healing formal verification, and planetary computational leverage. Apex instance of the Humans 3.0 protocol.
Repository SourceNeeds Review
gdpr-ccpa-privacy-auditor
Audits web applications to ensure declared privacy policies match actual technical data collection practices. Use to identify discrepancies in cookie usage, tracking scripts, and user data handling.
Repository SourceNeeds Review
gdpr-compliance
Implement GDPR data protection requirements. Configure consent management, data subject rights, and privacy by design. Use when processing EU personal data.
Repository SourceNeeds Review
generating-threat-intelligence-reports
Generates structured cyber threat intelligence reports at strategic, operational, and tactical levels tailored to specific audiences including executives, security operations teams, and technical analysts. Use when producing finished intelligence products from raw collection data, creating sector threat briefings, or delivering post-incident intelligence assessments. Activates for requests involving CTI report writing, threat briefings, intelligence products, finished intelligence, or executive security reporting.
Repository SourceNeeds Review
growth-engineer
Engineering-as-Marketing Specialist. Use this agent to build viral referral loops, free utility tools for lead generation, and programmatic SEO pages at scale. It focuses on the "Inbound" part of the 1-Man Army pipeline.
Repository SourceNeeds Review
growth-strategist
Chief Marketing Officer (CMO) specialist for SEO, CRO, Marketing Psychology, and Copywriting. Applies PLFS scoring to maximize revenue leverage and ensure every feature launch achieves market fit. Contains full knowledge of SEO Audit, Onboarding CRO, and Psychology.
Repository SourceNeeds Review
incident
INCIDENT MODE: Bypass standard PRD/Planning phase for emergency hotfixes. Requires immediate execution, a post-mortem ticket, and a patch release note.
Repository SourceNeeds Review
intercepting-mobile-traffic-with-burpsuite
Intercepts and analyzes HTTP/HTTPS traffic from mobile applications using Burp Suite proxy to identify insecure API communications, authentication flaws, data leakage, and server-side vulnerabilities. Use when performing mobile application penetration testing, assessing API security, or evaluating client-server communication patterns. Activates for requests involving mobile traffic interception, Burp Suite mobile proxy, API security testing, or mobile HTTPS analysis.
Repository SourceNeeds Review
investigating-phishing-email-incident
Investigates phishing email incidents from initial user report through header analysis, URL/attachment detonation, impacted user identification, and containment actions using SOC tools like Splunk, Microsoft Defender, and sandbox analysis platforms. Use when a reported phishing email requires full incident investigation to determine scope and impact.
Repository SourceNeeds Review
iso-42001-ai-governance
AI governance audit using ISO 42001 standard. Ensures AI systems are developed and deployed responsibly with risk management, ethics, security, transparency, and compliance best practices.
Repository SourceNeeds Review
json-canvas
Create and edit JSON Canvas files (.canvas) with nodes, edges, groups, and connections. Use when working with .canvas files, creating visual canvases, mind maps, flowcharts, or when the user mentions Canvas files in Obsidian.
Repository SourceNeeds Review
legal-advisor
Draft privacy policies, terms of service, disclaimers, and legal notices. Creates GDPR-compliant texts, cookie policies, and data processing agreements.
Repository SourceNeeds Review
legal-counsel
Legal & Compliance Specialist. Use this agent to generate TOS/Privacy policies, audit GDPR/CCPA compliance, review open-source licenses, and ensure AI governance (ISO 42001). It protects the 1-Man Army from legal liabilities.
Repository SourceNeeds Review
legal
Generate TOS/Privacy policies, audit GDPR compliance, and review licenses.
Repository SourceNeeds Review
legal-tos-privacy
Create bulletproof Terms of Service and Privacy Policy documents for SaaS applications. Infers company information from codebase/marketing site, conducts comprehensive audits, drafts documents, then asks user ONLY for missing details at the end. Minimizes user interaction. Use when the user needs to draft, review, or update legal documents (ToS, Terms of Service, Privacy Policy, legal pages). Triggers on requests for legal documents, terms drafting, privacy policy creation, "cover our bases legally", liability protection, or legal compliance for software products.
Repository SourceNeeds Review
linear
Project Management specialist. Converts PRDs into actionable Linear Epics and Issues.
Repository SourceNeeds Review
mapping-mitre-attack-techniques
Maps observed adversary behaviors, security alerts, and detection rules to MITRE ATT&CK techniques and sub-techniques to quantify detection coverage and guide control prioritization. Use when building an ATT&CK-based coverage heatmap, tagging SIEM alerts with technique IDs, aligning security controls to adversary playbooks, or reporting threat exposure to executives. Activates for requests involving ATT&CK Navigator, Sigma rules, MITRE D3FEND, or coverage gap analysis.
Repository SourceNeeds Review
marketing
Growth, SEO, and Copywriting specialist. Use this to optimize for Revenue (Cuan).
Repository SourceNeeds Review
monitoring-darkweb-sources
Monitors dark web forums, marketplaces, paste sites, and ransomware leak sites for mentions of organizational assets, leaked credentials, threatened attacks, and threat actor communications to provide early warning intelligence. Use when establishing dark web monitoring coverage, investigating specific data breach claims, or enriching incident investigations with dark web context. Activates for requests involving dark web OSINT, leak site monitoring, credential exposure, Recorded Future dark web, or Tor hidden service intelligence.
Repository SourceNeeds Review
obsidian-architect
Digital Garden & Visual Architect. Use this agent to manage the Obsidian Knowledge Base, create visual logic maps via JSON Canvas, and maintain the automated development journal. It bridges the gap between abstract ideas and structured documentation. When the host supports them, use the Obsidian-focused skills and integrations for CLI, Bases, Markdown, Canvas, and defuddling workflows. When the host supports them, use the Obsidian-focused skills and integrations for CLI, Bases, Markdown, Canvas, and defuddling workflows.
Repository SourceNeeds Review
obsidian-bases
Create and edit Obsidian Bases (.base files) with views, filters, formulas, and summaries. Use when working with .base files, creating database-like views of notes, or when the user mentions Bases, table views, card views, filters, or formulas in Obsidian.
Repository SourceNeeds Review
obsidian-cli
Interact with Obsidian vaults using the Obsidian CLI to read, create, search, and manage notes, tasks, properties, and more. Also supports plugin and theme development with commands to reload plugins, run JavaScript, capture errors, take screenshots, and inspect the DOM. Use when the user asks to interact with their Obsidian vault, manage notes, search vault content, perform vault operations from the command line, or develop and debug Obsidian plugins and themes.
Repository SourceNeeds Review
obsidian-markdown
Create and edit Obsidian Flavored Markdown with wikilinks, embeds, callouts, properties, and other Obsidian-specific syntax. Use when working with .md files in Obsidian, or when the user mentions wikilinks, callouts, frontmatter, tags, embeds, or Obsidian notes.
Repository SourceNeeds Review
open-source-license
Open Source License guidance, selection, compliance review, and drafting. Use this skill when users ask about choosing open source licenses, checking license compatibility, reviewing projects for OSS compliance, generating LICENSE/NOTICE files, or understanding specific license terms. Triggers include questions about MIT, Apache, GPL, BSD, LGPL, AGPL, copyleft, permissive licenses, license compatibility, SPDX identifiers, or any OSS licensing topic.
Repository SourceNeeds Review
perseus
Advanced Offensive Security & Pentesting Specialist. Use this agent for red teaming, penetration testing, and identifying complex security flaws. It leverages specialized security tools for XSS, SQLi, JWT, OAuth2, and network-level vulnerability testing.
Repository SourceNeeds Review
plan
Restate requirements, assess risks, and create a step-by-step implementation plan with Vertical Slices (Tracer Bullets).
Repository SourceNeeds Review
planner
Expert planning specialist for complex features and refactoring. Use PROACTIVELY when users request feature implementation, architectural changes, or complex refactoring. Automatically activated for planning tasks.
Repository SourceNeeds Review
prd-to-issues
Break a PRD into independently-grabbable GitHub issues using tracer-bullet vertical slices. Use when user wants to convert a PRD to issues, create implementation tickets, or break down a PRD into work items.
Repository SourceNeeds Review
prd-to-plan
Turn a PRD into a multi-phase implementation plan using tracer-bullet vertical slices, saved as a local Markdown file in ./plans/. Use when user wants to break down a PRD, create an implementation plan, plan phases from a PRD, or mentions "tracer bullets".
Repository SourceNeeds Review
product-manager
Product Management specialist. Focuses on ROI, feature prioritization, Linear ticket management, and ensuring engineering efforts directly impact user acquisition or revenue. Use PROACTIVELY before any code is written to convert PRDs into actionable Linear Epics and Issues.
Repository SourceNeeds Review
profiling-threat-actor-groups
Develops comprehensive threat actor profiles for APT groups, criminal organizations, and hacktivist collectives by aggregating TTP documentation, historical campaign data, tooling fingerprints, and attribution indicators from multiple intelligence sources. Use when briefing executives on sector-specific threats, updating threat model assumptions, or prioritizing defensive controls against specific adversaries. Activates for requests involving MITRE ATT&CK Groups, Mandiant APT profiles, CrowdStrike adversary naming, or sector-specific threat briefings.
Repository SourceNeeds Review
qa-automation-engineer
E2E Testing and Browser Automation specialist. Use this agent to verify user flows, catch regressions, and audit UI alignment using the BrowserOS MCP. It ensures that the product is bug-free and mathematically aligned in a live environment.
Repository SourceNeeds Review
rapid-prototyper
Ultra-fast proof-of-concept and MVP specialist. Use this agent when you need to validate an idea quickly working prototype before the meeting's over. Pragmatic, speed-focused, validation-oriented. Ships in days, not weeks.
Repository SourceNeeds Review
recovering-deleted-files-with-photorec
Recover deleted files from disk images and storage media using PhotoRec's file signature-based carving engine regardless of file system damage.
Repository SourceNeeds Review
recovering-from-ransomware-attack
Executes structured recovery from a ransomware incident following NIST and CISA frameworks, including environment isolation, forensic evidence preservation, clean infrastructure rebuild, prioritized system restoration from verified backups, credential reset, and validation against re-infection. Covers Active Directory recovery, database restoration, and application stack rebuild in dependency order. Activates for requests involving ransomware recovery, post-encryption restoration, or disaster recovery from ransomware.
Repository SourceNeeds Review
refactor-cleaner
Dead code cleanup and consolidation specialist. Use PROACTIVELY for removing unused code, duplicates, and refactoring. Runs analysis tools (knip, depcheck, ts-prune) to identify dead code and safely removes it.
Repository SourceNeeds Review
release-manager
Release Orchestration & Versioning Specialist. Use this agent to manage SemVer, generate changelogs, coordinate with the remotion-engineer for release videos, and prepare the "hype" for social distribution. It ensures every deployment is a "moment".
Repository SourceNeeds Review
release
Orchestrate the launch process, bump versions, and generate changelogs.
Repository SourceNeeds Review
remotion-engineer
Remotion specialist for programmatic video generation using React. Use PROACTIVELY when the user wants to create, debug, or optimize Remotion video projects. Specializes in frame-perfect animations, physics-based motion, and FFmpeg rendering optimization.
Repository SourceNeeds Review
retention-specialist
LTV & Engagement Specialist. Use this agent to design email sequences, improve the first 5 minutes of the product (onboarding), and apply behavioral psychology to increase retention. It focuses on the "Active Users" part of the 1-Man Army pipeline.
Repository SourceNeeds Review
reverse-engineering-malware-with-ghidra
Reverse engineers malware binaries using NSA's Ghidra disassembler and decompiler to understand internal logic, cryptographic routines, C2 protocols, and evasion techniques at the assembly and pseudo-C level. Activates for requests involving malware reverse engineering, disassembly analysis, decompilation, binary analysis, or understanding malware internals.
Repository SourceNeeds Review
saas-finops-optimization
Optimize cloud and AI costs for modern SaaS stacks (Vercel, Supabase, Neon, Stripe, and AI APIs). Covers token efficiency, serverless database scaling, edge function optimization, and burn rate monitoring. Use when planning infrastructure, investigating high bills, or auditing API usage.
Repository SourceNeeds Review
sales-engineer
Pre-sales technical specialist. Use this agent to win the technical decision in B2B deals technical discovery, demo engineering, POC scoping, competitive battlecards, and bridging product capabilities to business outcomes. You can't close the deal without winning the technical evaluation first.
Repository SourceNeeds Review
security-guardian
Security vulnerability detection and remediation specialist. Audits code for OWASP Top 10, IDOR, SSRF, and injection. Enforces zero trust and secure data handling for financial and AI platforms. Contains full knowledge of security reviewer and audit checklists.
Repository SourceNeeds Review
security-reviewer
Security vulnerability detection and remediation specialist. Use PROACTIVELY after writing code that handles user input, authentication, API endpoints, or sensitive data. Flags secrets, SSRF, injection, unsafe crypto, and OWASP Top 10 vulnerabilities.
Repository SourceNeeds Review
seo
Diagnose and audit SEO issues. Injects Schema.org markup and optimizes for Answer Engines (AEO).
Repository SourceNeeds Review
social-strategist
Social media and distribution specialist. Use this agent to create hype, draft Twitter/LinkedIn threads, and manage the social media distribution of new features. It focuses on the "Distribution" aspect of the 1-Man Army pipeline.
Repository SourceNeeds Review
sre
Site Reliability Engineer. Use this agent to define SLOs, build observability, design error budgets, reduce toil, and build the on-call culture that keeps systems reliable. Reliability is a feature error budgets fund velocity, spend them wisely.
Repository SourceNeeds Review
super-architect
Software architecture specialist for system design, scalability, and technical decision-making. Produces ADRs, Vertical Slice plans, and enforces deep module design for the 1-Man Army pipeline. Contains the full knowledge of Architecture Patterns, Systems Design, and Planning.
Repository SourceNeeds Review
tdd-guide
Test-Driven Development specialist enforcing write-tests-first methodology. Use PROACTIVELY when writing new features, fixing bugs, or refactoring code. Ensures 80%+ test coverage.
Repository SourceNeeds Review
tdd
Enforce test-driven development workflow. Scaffold interfaces, generate tests FIRST, then implement minimal code to pass. Ensure 80%+ coverage.
Repository SourceNeeds Review
testing-for-xss-vulnerabilities-with-burpsuite
Identifying and validating cross-site scripting vulnerabilities using Burp Suite's scanner, intruder, and repeater tools during authorized security assessments.
Repository SourceNeeds Review
tracking-threat-actor-infrastructure
Threat actor infrastructure tracking involves monitoring and mapping adversary-controlled assets including command-and-control (C2) servers, phishing domains, exploit kit hosts, bulletproof hosting, a
Repository SourceNeeds Review
triage
Triage a bug or issue. Explore the codebase to find root cause, then create a fix plan.
Repository SourceNeeds Review
ubiquitous-language
Extract a DDD-style ubiquitous language glossary from the current conversation, flagging ambiguities and proposing canonical terms. Saves to UBIQUITOUS_LANGUAGE.md. Use when user wants to define domain terms, build a glossary, harden terminology, create a ubiquitous language, or mentions "domain model" or "DDD".
Repository SourceNeeds Review
vercel-react-expert
React and Next.js performance optimization specialist. Use this agent to review, refactor, and optimize React components and Next.js pages for maximum speed and Vercel-specific deployment standards. It enforces the 'vercel-react-best-practices' skill.
Repository SourceNeeds Review
video
Programmatic video generation specialist using React and Remotion.
Repository SourceNeeds Review
write-a-prd
Create a PRD through user interview, codebase exploration, and module design, then submit as a GitHub issue. Use when user wants to write a PRD, create a product requirements document, or plan a new feature.
Repository SourceNeeds Review
writing-plans
Use when you have a spec or requirements for a multi-step task, before touching code
Repository SourceNeeds Review