API Test Loop plugin — Automated REST API validation loop. Executes HTTP requests via CURL, logs findings for REST best practices (method, input/output format, security, performance, docs), and implements backend fixes.
Use this agent to implement minimal, surgical fixes for REST API routes, validation gates, security middlewares, and output formats based on findings logged in findings.md. Supports multiple backend stacks (Node, Python, Go, Rust, Java, C#). Examples: <example> Context: A saved finding shows that updating a profile accepts negative age values and returns a 500. user: "fix the input validation finding on the profile route" assistant: "api-fix-implementer locates the schema validation, updates the range checks, and verifies that the endpoint now properly returns a 400." <commentary> Triggers when REST API findings need resolution in the routing, middleware, controller, or schema validation layers. </commentary> </example>
Use this agent to validate backend REST APIs. It executes HTTP requests via CURL to verify REST practices (paths, methods), checks input validators and output formatting, audits security/performance, and logs findings to findings.md. Examples: <example> Context: Validating a set of recently added microservice endpoints. user: "validate the auth and transaction endpoints for rest best practices and security gaps" assistant: "api-validator discovers the routes, designs boundary CURL calls, executes them, and logs findings in docs/test-plans/api-test-loop/findings.md." <commentary> Triggers when REST API routes, schemas, methods, security policies, or output formats require verification. </commentary> </example>
Uses power tools
Uses Bash, Write, or Edit tools
Own this plugin?
Verify ownership to unlock analytics, metadata editing, and a verified badge. GitHub access is read-only (username + org membership).
Sign in to claimOwn this plugin?
Verify ownership to unlock analytics, metadata editing, and a verified badge. GitHub access is read-only (username + org membership).
Sign in to claimBased on adoption, maintenance, documentation, and repository signals. Not a security audit or endorsement.
Build, Launch, and Scale with AI-Native Architecture.
Lemon AI Hub is a centralized and optimized repository to manage AI Skills and Plugins across different local agents (Claude Code, Codex, OpenCode, Agy). It is the technical foundation of the Lemon.dev ecosystem, designed by Anderson Lima to help founders and developers bridge the gap between AI-generated code and production-ready products.
This project is based on and inspired by Peter Steinberger's pattern (steipete/agent-scripts), but structured with a focus on .claude and shared with other providers via transparent symbolic links.
The best code is invisible—it works, scales, and converts. Lemon AI Hub embodies this by providing:
This repository ships a marketplace manifest (.claude-plugin/marketplace.json) so you can install its plugins directly inside Claude Code.
Inside a Claude Code session, run the slash command:
/plugin marketplace add Andersonlimahw/lemon-ai-hub
Open the interactive installer, or install a plugin by name using the plugin@marketplace syntax:
/plugin # browse the catalog UI
/plugin install spotify-squad@lemon-ai-hub
/plugin install agentic-value-loops@lemon-ai-hub
| Plugin | Description |
|---|---|
a11y-audit | WCAG 2.1 AA/AAA accessibility audit for web components, pages, and apps. Detects contrast failures, missing ARIA labels, keyboard trap issues, focus order problems, and screen-reader gotchas. Use when user wants to audit accessibility, fix a11y warnings, prepare for compliance review, or validate UI against WCAG standards. |
agent-sdk-dev | A comprehensive plugin for creating and verifying Agent SDK applications in Python and TypeScript. |
agentic-value-loops | Agentic Value Loops plugin — Continuous improvement engine that ships verified increments with constant quality. Includes loops for Feature Development, Maintenance & Security, Documentation Sync, and AI Tuning. |
ai-workspace-orchestrator | Project and workspace AI setup orchestrator. Builds AGENTS.md/CLAUDE.md contracts, optional global or project skills, Spotify Squad-style agent/subagent topology, and adversarial setup review for single apps, monorepos, and multi-domain workspaces. |
api-test-loop | API Test Loop plugin — Automated REST API validation loop. Executes HTTP requests via CURL, logs findings for REST best practices (method, input/output format, security, performance, docs), and implements backend fixes. |
app-store-connect-api | Apple Store Connect API Expert Agent and Skills. Provides comprehensive tools and knowledge for interacting with the App Store Connect API, covering domains like TestFlight, In-app purchases, Subscriptions, App management, and Provisioning. |
apple-store-release-agent | AI release agent for the Apple App Store. Audits Expo/React Native iOS builds, App Store metadata, App Privacy readiness, TestFlight, RevenueCat/IAP, Firebase, i18n parity, screenshots, and review notes, then emits a GO/GO_WITH_WARNINGS/NO_GO decision with full risk + privacy + IAP reports. Never submits to App Review or alters the store without explicit human approval. Generic core with presets for Expo/RN/Firebase/RevenueCat apps. |
async-patterns | Async and concurrency pattern advisor for JavaScript/TypeScript, Python, Go, and Rust. Identifies race conditions, missing error handling in promise chains, N+1 async anti-patterns, unbounded parallelism, and missing cancellation. Recommends correct patterns: Promise.all, p-limit, AbortController, AsyncLocalStorage, worker threads. Use when async code has bugs, timeouts, or memory leaks. |
bundle-analyzer | JavaScript/TypeScript bundle size analysis, tree-shaking audit, and code splitting recommendations. Identifies heavy dependencies, duplicate packages, unused imports, and suggests dynamic imports and lazy loading. Use when bundle is too large, Lighthouse score is low, or user wants to optimize web app loading performance. |
chaos-test | Chaos engineering scenarios for resilience testing. Designs fault injection experiments (network partitions, latency injection, dependency failures, disk pressure, memory leaks) and verifies circuit breakers, retries, and fallbacks work correctly. Use when building resilience features, verifying SLO under failure conditions, or preparing for production chaos days. |
Incident response runbooks, on-call workflows, and postmortem templates. Generates severity-tiered runbooks, communication templates, timeline reconstruction, and blameless postmortem docs. Use when user is in an incident, doing on-call prep, writing a postmortem, or building incident response playbooks.
Load testing setup, execution, and analysis with k6, Artillery, or Locust. Generates test scripts, defines VU ramp-up scenarios, interprets p99 latency and error rate results, and suggests infrastructure fixes. Use when user wants to load test an API, check throughput limits, validate SLO headroom, or diagnose performance under traffic.
Database index optimization advisor for PostgreSQL, MySQL, and SQLite. Analyzes slow queries, missing indexes, unused indexes, and over-indexed tables. Generates CREATE INDEX statements with EXPLAIN ANALYZE estimates. Use when queries are slow, p99 DB latency spikes, or when reviewing a new schema.
AI release agent for Google Play Store: audits Android/Expo/React Native/Firebase/RevenueCat before submission. Validates build readiness (app.json, eas.json, AAB, versionCode), Play Console metadata, Data Safety Form, Android permissions, RevenueCat/IAP, i18n parity (PT/EN/ES), policy-risk copy, internal/closed testing and staged rollout. Generates reports + GO/NO-GO checklist. Never publishes or rolls out without explicit human approval. Use when preparing an Android app for Google Play, auditing a submission, generating release notes, validating Data Safety or permissions, or running a release go/no-go.
>
npx claudepluginhub andersonlimahw/lemon-ai-hub --plugin api-test-loopUse this agent for comprehensive API testing including performance testing, load testing, and contract testing. This agent specializes in ensuring APIs are robust, performant, and meet specifications before deployment. Examples:\n\n<example>\nContext: Testing API performance under load
API integration and testing - REST endpoints, client generation, contract testing
Debug REST API failures using OpenAPI specs and HTTP logs. Analyzes errors, suggests fixes, and generates test commands.
Create Postman collections and environments from OpenAPI/Swagger or code context. Generates rich JS tests for status codes, headers, and schemas, and handles Newman installation and test execution.
AI 測試大師 — v1.1 QA testing skill backed by an MCP server. 22 tools (21 v1.0-frozen + analyze_stream): run / generate / debug / harden software tests via mk-qa-master. Includes the AI Visual Challenge Solver (reCAPTCHA / hCaptcha), OWASP API Security Top 10 scanner, universal qa_plan + verify bookend across 5 core tools, and the v1.1 Edge AI Runner (RTSP + YOLO via the [edge] extras). Same skill folder loads in Claude Code, Codex, OpenClaw, and Hermes.
Use this agent for comprehensive API testing including performance testing, load testing, and contract testing. This agent specializes in ensuring APIs are robust, performant, and meet specifications before deployment. Examples:\n\n<example>\nContext: Testing API performance under load