By AsyrafHussin
Delivers a suite of best-practice skills for building full-stack Laravel and React applications, covering backend architecture, frontend optimization, testing, code quality, security audits, and documentation.
RESTful API design, error handling, versioning, and best practices. Use when designing APIs, reviewing endpoints, implementing error responses, or setting up API structure. Triggers on "design API", "review API", "REST best practices", or "API patterns".
SOLID principles, design patterns, DRY, KISS, and clean code fundamentals. Use when reviewing architecture, checking code quality, refactoring, or discussing design decisions. Triggers on "review architecture", "check code quality", "SOLID principles", "design patterns", or "clean code".
Detect AI-generated code patterns ("slop") in PHP/Laravel and TypeScript/React source — comment narration, generic naming, premature interfaces, defensive overdose, mock-everything tests, and the absence of human "scars". Use when reviewing AI-assisted PRs, auditing code for taste/quality (not metrics — that's technical-debt), or hardening a code-review checklist. Triggers on "review for AI slop", "find AI patterns", "check code feels human", "audit code-quality taste".
End-to-end testing with Playwright for web applications. Use when writing E2E tests, browser automation, form submission testing, or user flow testing. Triggers on "playwright", "e2e test", "browser test", "end-to-end", "form flow testing", or test files in tests/e2e/.
Git best practices, branching strategies, commit conventions, and PR workflows. Use when reviewing git history, writing commits, setting up branching strategy, or improving git practices. Triggers on "git best practices", "commit message", "branching strategy", or "PR workflow".
Own this plugin?
Verify ownership to unlock analytics, metadata editing, and a verified badge. GitHub access is read-only (username + org membership).
Sign in to claimOwn this plugin?
Verify ownership to unlock analytics, metadata editing, and a verified badge. GitHub access is read-only (username + org membership).
Sign in to claimBased on adoption, maintenance, documentation, and repository signals. Not a security audit or endorsement.
A collection of skills for AI coding agents. Works with Claude Code, Cursor, Codex, Windsurf, and 40+ agents.
Skills follow the Agent Skills specification. Discover more at skills.sh.
# Install all skills
npx skills add AsyrafHussin/agent-skills
# Install a specific skill
npx skills add AsyrafHussin/agent-skills --skill laravel-best-practices
# Install multiple skills
npx skills add AsyrafHussin/agent-skills --skill laravel-best-practices --skill seo-best-practices
# Install globally (available across all projects)
npx skills add AsyrafHussin/agent-skills -g
# Install to a specific agent
npx skills add AsyrafHussin/agent-skills -a claude-code
# List available skills without installing
npx skills add AsyrafHussin/agent-skills --list
| Scope | Flag | Location | Use Case |
|---|---|---|---|
| Project | (default) | .claude/skills/ | Shared with team via git |
| Global | -g | ~/.claude/skills/ | Available across all projects |
git clone https://github.com/AsyrafHussin/agent-skills.git
# Copy all skills
cp -r agent-skills/skills/* .claude/skills/
# Or copy a single skill
cp -r agent-skills/skills/laravel-best-practices .claude/skills/
Each skill contains SKILL.md, AGENTS.md, rules/, and metadata.json.
npx skills list # List installed skills
npx skills find laravel # Search for skills
npx skills remove # Remove installed skills
npx skills update # Update all skills to latest
Laravel 13 conventions and architecture. Contains 31 rules across 7 categories.
Example: Review this Laravel controller for best practices
npx skills add AsyrafHussin/agent-skills --skill laravel-best-practices
Technical debt audit and prioritization for PHP/Laravel (MySQL) and Node/TypeScript/React. Contains 42 rules across 10 categories. Produces a ranked debt ledger (effort × impact, P0–P3) and supports audit mode with PASS/FAIL/N/A output.
Example: Audit technical debt in this project or What should we refactor first?
npx skills add AsyrafHussin/agent-skills --skill technical-debt
Code-quality enforcement for PHP/Laravel and TypeScript/React — catches the sloppy patterns that pass every metric but degrade the codebase: narration comments, generic names, premature interfaces, defensive overdose, mock-everything tests. Most devs use AI now, so these patterns are common; this skill is how you keep code clean regardless of who (or what) wrote it. 24 rules across 6 categories. Verdicts: CLEAN / SUSPICIOUS / INFLATED / CRITICAL.
code-slop vs technical-debt — which to pick?
Use code-slop when… | Use technical-debt when… |
|---|---|
| Reviewing a PR — keeping the bar for clean code | Auditing the codebase for ranked debt to pay down |
| Concern is taste: comments, naming, over-engineering, defensive overdose, test quality | Concern is metrics: complexity, duplication, CVEs, missing indexes, N+1 queries |
| Question: "Is this clean code or sloppy patterns to reject?" | Question: "What should we refactor first?" |
| Output: classified diff verdicts (CLEAN / SUSPICIOUS / INFLATED / CRITICAL) | Output: ranked debt ledger (P0–P3) |
Run both for a full audit — taste check (code-slop) catches what metrics miss; metric audit (technical-debt) catches what taste-review misses.
Example: Review this PR for code quality or Find sloppy patterns in app/Services/
npx skills add AsyrafHussin/agent-skills --skill code-slop
Documentation lifecycle for PHP/Laravel and Node/TypeScript/React. Contains 25 rules across 6 categories (structure, naming, essential files, quality, cleanup, lifecycle). Supports bootstrap, audit, and reference modes — including AI-slop detection in both file names (PLAN.md, IMPLEMENTATION-SUMMARY.md) and content (filler phrases, generic praise, closing sign-offs).
Example: Set up docs for this project or Audit the markdown files in this repo
npx skills add AsyrafHussin/agent-skills --skill project-docs
Lightweight persistent memory plugin for Claude Code. Zero dependencies, just markdown.
npx claudepluginhub asyrafhussin/agent-skillsReact and Next.js performance optimization guidelines from Vercel Engineering. Use when writing/reviewing/refactoring React code for optimal performance. Covers async patterns, bundle optimization, server/client components, re-render optimization.
React development standards and best practices for agent-driven code generation. Guides AI agents in writing performant, maintainable React code.
Advanced React skills for hooks, context, and performance optimization.
Use this agent for expert assistance with web development tasks using React, Next.js, NestJS, and other modern web frameworks with TypeScript and Tailwind CSS. This includes code analysis, component creation, debugging, performance optimization, and architectural decisions. Examples: <example>Context: User is building a Next.js app and encounters a routing issue. user: 'My dynamic routes in Next.js are not rendering correctly' assistant: 'Let me use the web-dev agent to analyze your Next.js routing setup and provide a solution' <commentary>This is a Next.js-specific routing issue, so the web-dev agent will provide targeted guidance.</commentary></example> <example>Context: User needs a reusable React component with Tailwind CSS. user: 'I need a card component that matches my app's Tailwind-based design system' assistant: 'I'll use the web-dev agent to create a TypeScript-based React card component styled with Tailwind CSS, following your app's design patterns' <commentary>The user requires a component that aligns with their Tailwind CSS design system, so the web-dev agent ensures compatibility.</commentary></example>
Modern React and UI development expertise. Master React 19, Next.js 15, component architecture, state management, performance optimization, and design systems.
React/TypeScript frontend + Go backend enforcement harness. 92 wired hooks across 101 scripts enforce patterns on every edit. Green != done: `test-warning-check` surfaces warnings on passing test/lint/type runs (DeprecationWarning, React `act()`, unhandled rejection, `@ts-ignore`); `ci-warning-audit` Stop-hook scans `gh run view --log` on green CI for deprecations / console warnings / skipped tests. 71 skills from TDD through CI-green PR, including /steelman anti-sycophancy guard + /snyk-ux-security per-path vuln sweep (JS + Go ecosystems; exploitability-triage first gate via `bun why`/`go mod why`/`govulncheck`; top-level direct dep bump first, parent dep bump second, resolutions/overrides/replace as last resort only with follow-up TODO to remove; React 18 pin + changelog-walked major bumps + no-deferral escalation; Go `snyk test --file=go.mod` + `go get -u` + `go mod tidy` + `govulncheck` verify). Session exit blocked while PR review threads remain unresolved. TypeScript escape hatches blocked at Edit. tsconfig strictness weakening blocked. Worktree isolation + branch safety hook-enforced. bun.lock + yarn.lock parity enforced (Snyk IO doesn't parse bun.lock). 21 LLM failure modes enforced: 7 Karpathy single-agent + 14 MAST multi-agent (Cemri et al. NeurIPS 2025). OWASP + STRIDE subset + snyk/bun audit. Core Web Vitals perf gate. MCP ban with CLI redirect (~20x token savings). Agent-browser wrap (~91% token reduction for AI browsing). 3-hat plan review (product/engineering/design). 9 agents (adds plan hats + karpathy reference), 5 routines. Opus 4.7 tuned, POSIX-friendly.