Stats
Actions
Available In
Tags
'%20stop-opacity%3D'0.16'%2F%3E%3Cstop%20offset%3D'1'%20stop-color%3D'rgb(200%2C90%2C60)'%20stop-opacity%3D'0.03'%2F%3E%3C%2FlinearGradient%3E%3C%2Fdefs%3E%3Crect%20width%3D'320'%20height%3D'200'%20fill%3D'url(%23g)'%2F%3E%3Ccircle%20cx%3D'250'%20cy%3D'56'%20r%3D'92'%20fill%3D'rgb(200%2C90%2C60)'%20fill-opacity%3D'0.06'%2F%3E%3Ccircle%20cx%3D'64'%20cy%3D'172'%20r%3D'58'%20fill%3D'rgb(200%2C90%2C60)'%20fill-opacity%3D'0.05'%2F%3E%3C%2Fsvg%3E)
By mithro
Blocks SSH hostname hashing (-H flag and HashKnownHosts=yes) — keeps known_hosts readable
Personal Claude Code plugin marketplace.
claude plugin marketplace add mithro/dot-claude
Then enable plugins per-machine:
claude plugin enable agent-debugger@mithro-personal
claude plugin enable hook-block-tmp-creation@mithro-personal
claude plugin enable my-conventions@mithro-personal
# etc.
Specialized agents for various development tasks:
| Plugin | Description |
|---|---|
agent-accessibility-tester | WCAG 2.1 compliance, semantic HTML, ARIA, keyboard nav |
agent-api-designer | REST API design, DRF, OpenAPI, versioning |
agent-backend-architect | Scalable API design, microservices, distributed systems |
agent-celery-expert | Async task debugging, retry strategies, queue management |
agent-code-reviewer | Code quality, security vulnerabilities, best practices |
agent-data-scientist | SQL optimization, Django ORM, data visualization, Pandas |
agent-debugger | Root cause analysis, systematic debugging, profiling |
agent-deployment-engineer | Production deployment, zero-downtime, WSGI/ASGI |
agent-devops-engineer | CI/CD, Docker, GitHub Actions, infrastructure as code |
agent-django-developer | Django 5.2+, REST APIs, async views, Celery |
agent-documentation-writer | API docs, docstrings, architecture docs |
agent-error-detective | Error patterns, stack traces, Sentry integration |
agent-performance-engineer | Profiling, caching, async performance, optimization |
agent-postgres-pro | PostgreSQL 17, JSONB, full-text search, query tuning |
agent-python-pro | Modern Python 3.11+, type safety, async programming |
agent-security-auditor | OWASP Top 10, dependency scanning, security review |
agent-solution-researcher | Multi-approach evaluation, trade-off analysis |
agent-sre-engineer | Monitoring, observability, incident response, SLOs |
agent-test-specialist | Django/pytest, browser testing, test coverage |
Enforcement hooks for SSH, git, and command safety:
| Plugin | Description |
|---|---|
hook-allow-ssh | Auto-allows SSH/scp/rsync to configured hosts (eliminates permission prompts) |
hook-block-tmp-creation | Blocks file creation in /tmp/ (use project-local tmp/) |
hook-block-stderr-to-null | Blocks 2>/dev/null (keep diagnostic output visible) |
hook-block-ssh-hash-hostnames | Blocks SSH -H flag and HashKnownHosts (keep known_hosts readable) |
hook-block-ssh-unsafe-options | Blocks StrictHostKeyChecking=no and UserKnownHostsFile=/dev/null |
hook-block-inline-scripts | Blocks python -c and heredocs (write to a file first) |
hook-safe-force-push | Blocks bare git push --force (use git safe-force-push <branch>) |
| Plugin | Description |
|---|---|
my-conventions | Personal coding conventions: Python/uv, ISO dates, small commits, Apache 2.0, etc. |
github-repo-setup | GitHub repository configuration skill and tag ruleset script |
dot-claude/
├── .claude-plugin/
│ └── marketplace.json # Marketplace catalog (28 plugins)
├── marketplace/
│ ├── agent-*/ # 19 agent plugins
│ ├── hook-*/ # 7 hook plugins
│ ├── my-conventions/ # Coding conventions (SessionStart hook)
│ └── github-repo-setup/ # GitHub config skill + scripts
├── settings.json # Repo-level permissions
├── CLAUDE.md # Repo description
├── GitHub.md # Reference: GitHub setup commands
└── LICENSE # Apache 2.0
Licensed under the Apache License, Version 2.0. See LICENSE for the full license text.
Tim 'mithro' Ansell
Executes bash commands
Hook triggers when Bash tool is used
Modifies files
Hook triggers on file write and edit operations
Own this plugin?
Verify ownership to unlock analytics, metadata editing, and a verified badge. GitHub access is read-only (username + org membership).
Sign in to claimOwn this plugin?
Verify ownership to unlock analytics, metadata editing, and a verified badge. GitHub access is read-only (username + org membership).
Sign in to claimBased on adoption, maintenance, documentation, and repository signals. Not a security audit or endorsement.
Blocks file creation in /tmp/ — forces use of project-local tmp/ directories instead
Backend architect for scalable API design, microservices, distributed systems, and architectural patterns. Expert in system design, service boundaries, data architecture, event-driven systems, and architectural decision making. Use PROACTIVELY for architecture decisions.
API architecture expert for REST API design, documentation, consistency, versioning, and best practices. Specializes in Django REST Framework, OpenAPI/Swagger, API security, performance optimization, and developer experience. Use PROACTIVELY for API design and implementation.
Celery task specialist for async task debugging, monitoring, retry strategies, performance optimization, and distributed task orchestration. Expert in task design patterns, error handling, queue management, and production debugging. Use PROACTIVELY for Celery-related work.
Site Reliability Engineering specialist focusing on system monitoring, observability, logging strategies, incident response, SLO/SLI/SLA management, error budgets, capacity planning, performance monitoring, and on-call best practices. Expert in production system reliability and operational excellence. Use PROACTIVELY for reliability and monitoring tasks.
npx claudepluginhub mithro/dot-claude --plugin hook-block-ssh-hash-hostnamesProtect secrets and credentials from Claude Code. Blocks writes to .env files, detects API keys in shell commands, prevents hardcoded tokens, and guards service account JSON files.
yurukusaBlock destructive git and filesystem commands before execution
kenryu42Security hook that blocks Claude from reading, writing, or accessing secret and sensitive files
agentic-dev3oPre-execution safety layer that blocks dangerous shell commands and credential file reads using pattern matching + LLM analysis. Fail-closed design.
frmorettoProduction safety hooks for autonomous Claude Code operation. Context monitoring, syntax checking, branch protection, activity logging, and more.
yurukusaSmart command safety filter for Claude Code — parses shell pipelines and evaluates per-command safety rules to auto-approve safe commands and block dangerous ones
banyudu