Skip to main content
تشغيل أي مهارة في Manus
بنقرة واحدة
مستودع GitHub

theredbeard-pi-agent

يحتوي theredbeard-pi-agent على 28 من skills المجمعة من larsderidder، مع تغطية مهنية على مستوى المستودع وصفحات skill داخل الموقع.

skills مجمعة
28
Stars
2
محدث
2026-07-09
Forks
0
التغطية المهنية
6 فئات مهنية · 100% مصنفة
مستكشف المستودعات

Skills في هذا المستودع

impeccable
مصممو واجهات الويب والرقمية

Use when the user wants to design, redesign, shape, critique, audit, polish, clarify, distill, harden, optimize, adapt, animate, colorize, extract, or otherwise improve a frontend interface. Covers websites, landing pages, dashboards, product UI, app shells, components, forms, settings, onboarding, and empty states. Handles UX review, visual hierarchy, information architecture, cognitive load, accessibility, performance, responsive behavior, theming, anti-patterns, typography, fonts, spacing, layout, alignment, color, motion, micro-interactions, UX copy, error states, edge cases, i18n, and reusable design systems or tokens. Also use for bland designs that need to become bolder or more delightful, loud designs that should become quieter, live browser iteration on UI elements, or ambitious visual effects that should feel technically extraordinary. Not for backend-only or non-UI tasks.

2026-07-09
agent-security-audit
محللو أمن المعلومات

Audit AI agent configurations for security risks — excessive permissions, prompt injection surfaces, data exfiltration paths, and missing guardrails. Use when reviewing CLAUDE.md files, MCP configs, agent orchestration code, or any AI agent setup.

2026-05-19
agentic-ai-risk-assess
محللو أمن المعلومات

Assess agentic AI applications against the OWASP Top 10 for Agentic Applications 2026. Use when reviewing autonomous AI agents, multi-agent systems, or agentic workflows for security risks including goal hijacking, tool misuse, privilege abuse, and rogue agent behavior.

2026-05-19
api-security-review
محللو أمن المعلومات

Comprehensive API security review against OWASP API Security Top 10 (2023). Use when reviewing OpenAPI/Swagger specs, auditing REST/GraphQL/gRPC implementations, testing authentication mechanisms, or checking API gateway configurations. Covers BOLA/IDOR, broken auth, mass assignment, rate limiting, SSRF, and more with real-world attack scenarios.

2026-05-19
code-review-security
محللو أمن المعلومات

Security-focused code review mapped to OWASP Top 10 and ASVS. Use when reviewing pull requests, auditing files or modules for vulnerabilities, or performing pre-merge security gate checks. Covers injection, auth, authorization, cryptography, data exposure, misconfiguration, and deserialization.

2026-05-19
iac-security-review
محللو أمن المعلومات

Security review of Infrastructure-as-Code (Terraform, Kubernetes, CloudFormation). Use when reviewing IaC files for misconfigurations, overpermissioning, exposed resources, missing encryption, secrets in code, and supply chain risks. Covers CIS benchmarks and cloud security best practices.

2026-05-19
llm-risk-assess
محللو أمن المعلومات

Comprehensive LLM security assessment against OWASP Top 10 for LLM Applications 2025. Use when reviewing LLM-integrated applications, RAG pipelines, chatbots, AI agents, or GenAI features. Covers prompt injection, data poisoning, supply chain, excessive agency, and more with real-world attack scenarios and testing methodologies.

2026-05-19
mcp-server-review
محللو أمن المعلومات

Security review of MCP (Model Context Protocol) server implementations and configurations. Use when auditing MCP server source code, evaluating third-party MCP servers before installation, or reviewing Claude Code MCP integrations for overpermissioning, injection risks, and data exposure.

2026-05-19
multi-agentic-threat-model
محللو أمن المعلومات

Comprehensive threat modeling for multi-agent systems using CSA MAESTRO 7-layer framework and OWASP Multi-Agentic System Threat Modeling Guide v1.0. Systematically analyzes threats across all architectural layers from foundation models to agent ecosystems.

2026-05-19
prd-securability-enhancement
متخصصو إدارة المشاريع

Enhance PRDs, feature specs, user stories, or product briefs with explicit OWASP ASVS coverage and FIASSE v1.0.4 SSEM implementation guidance — before code is written. Trigger on "harden the PRD/spec", "choose ASVS level", "map features to ASVS", "find missing security requirements", "add NFRs for security", "make these requirements securable", "security-review my product brief". For code review use securability-engineering-review; for code generation use securability-engineering.

2026-05-19
prompt-injection-test
محللو أمن المعلومات

Test LLM-integrated applications against known prompt injection techniques, evasion methods, and attack intents using the Arcanum PI Taxonomy. Use when red-teaming AI apps, validating guardrails, or deepening LLM01 (Prompt Injection) assessments.

2026-05-19
sca-audit
محللو أمن المعلومات

Scan project dependencies for known vulnerabilities (CVEs). Use when reviewing dependency files (package.json, requirements.txt, go.mod, pom.xml, Gemfile, Cargo.toml, etc.), triaging Dependabot/Renovate alerts, or performing pre-deployment security checks.

2026-05-19
secrets-scan
محللو أمن المعلومات

Detect hardcoded credentials, API keys, tokens, and secrets in source code and configuration files. Use when reviewing code for leaked secrets before commit/merge, auditing a repository for credential exposure, or setting up secret detection.

2026-05-19
securability-engineering-review
محللو أمن المعلومات

Score a codebase, file, or merge request against the FIASSE v1.0.4 SSEM model — 0-10 per attribute, equal-weighted pillars, evidence-backed strengths and weaknesses, prioritized recommendations, 50-item checklist appendix. Trigger on "review/score/audit securability", "SSEM scorecard", "FIASSE/SSEM compliance", "where would I start hardening this?", "is this audit-ready?", "security posture baseline" — including phrasings that don't say SSEM explicitly. For requirements use prd-securability-enhancement; for new code use securability-engineering.

2026-05-19
securability-engineering
محللو أمن المعلومات

Generate, scaffold, or refactor code so it embodies FIASSE v1.0.4 SSEM qualities by default — 10 attributes, Transparency and Least-Astonishment principles, ASVS-aligned controls, defensive boundary handling. Trigger on "secure/securable/FIASSE-compliant code", "harden", "secure-by-default", "audit-ready", or security-sensitive components (auth, file upload, password reset, input validation, API endpoints, queries) — even when those words are not explicit. For requirements use prd-securability-enhancement; for review use securability-engineering-review. The full PRD→generate→review→enhance loop is opt-in via "--full-loop" or "end-to-end securable".

2026-05-19
security-guidance
محللو أمن المعلومات

Security-first development guidance based on OWASP ASVS (Application Security Verification Standard). Use this skill automatically when planning or implementing any code that touches user input, authentication, data persistence, network communication, file I/O, cryptography, or access control. This skill ensures all generated code adheres to industry-standard security practices with explicit references to applied guidance.

2026-05-19
security-scan
محللو أمن المعلومات

Security audit for application code, infrastructure, supply chain, and AI or agent systems. Use for unstaged changes, unpushed commits, specific paths, full repos, PR review, dependency risk, secrets, OWASP checks, Semgrep or Opengrep scans, SBOM, OpenSSF Scorecard, LLM apps, MCP servers, and agent tool safety. Report only.

2026-05-19
web-security-review
محللو أمن المعلومات

Review web applications against the OWASP Top 10 for Web Applications (2021). Use when auditing web apps, reviewing server-side code, or assessing web frameworks for the classic OWASP Top 10 risks including injection, broken auth, and XSS.

2026-05-19
github
مطوّرو البرمجيات

Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.

2026-02-26
gitlab
مطوّرو البرمجيات

Interact with GitLab using the `glab` CLI. Use `glab issue`, `glab mr`, `glab pipeline`, and `glab api` for issues, merge requests, CI pipelines, and advanced queries.

2026-02-26
website
مطوّرو الويب

Build fast, accessible, and SEO-friendly websites with modern best practices.

2026-02-26
frontend-design
مطوّرو البرمجيات

Design and implement distinctive, production-ready frontend interfaces with strong aesthetic direction. Use when asked to create or restyle web pages, components, or applications (HTML/CSS/JS, React, Vue, etc.).

2026-02-22
smart-stage
مطوّرو البرمجيات

Group unstaged changes into logical commits. Analyzes dirty working tree, clusters related files by purpose, and walks through each group as a separate commit. Use when you have many changed files and want clean, atomic commits.

2026-02-17
resolve-conflicts
مطوّرو البرمجيات

Resolve git merge, cherry-pick, and stash pop conflicts. Auto-resolves high-confidence conflicts and walks through ambiguous ones interactively with the user.

2026-02-13
peer-review
محللو ضمان جودة البرمجيات والمختبرون

Review someone else's code changes. Produces a report only, never edits files. Scope to a PR, branch, specific commits, or a local diff.

2026-02-13
code-quality
مطوّرو البرمجيات

Focused code quality audit: find duplication, dead code, god components, missing types, incomplete docstrings, and model/data inconsistencies. Scope to unstaged changes, unpushed commits, specific paths, or the full codebase. Report findings or apply fixes directly.

2026-02-13
yagni
مطوّرو البرمجيات

Find what can be removed, inlined, or collapsed without losing functionality. YAGNI enforcer. Answers the question: what can we pull out and still be alright? Report only, never edits files.

2026-02-13
frontend-mockup
مطوّرو الويب

Generate 1 to 4 self-contained HTML mockup variants for a frontend design, each with a distinct aesthetic direction. Use when the user wants to explore visual options, compare alternatives, or pick a direction before committing to implementation.

2026-02-12