By sickn33
Build secure applications by applying end-to-end security practices: secure API patterns, authentication/authorization, code review, SAST scanning, secrets management, and PCI DSS compliance.
Implement secure API design patterns including authentication, authorization, input validation, rate limiting, and protection against common API vulnerabilities
Build secure, scalable authentication and authorization systems using industry-standard patterns and modern best practices.
Expert in secure backend coding practices specializing in input validation, authentication, and API security. Use PROACTIVELY for backend security implementations or security code reviews.
This skill ensures all code follows security best practices and identifies potential vulnerabilities. Use when implementing authentication or authorization, handling user input or file uploads, or creating new API endpoints.
django-access-review
Own this plugin?
Verify ownership to unlock analytics, metadata editing, and a verified badge. GitHub access is read-only (username + org membership).
Sign in to claimOwn this plugin?
Verify ownership to unlock analytics, metadata editing, and a verified badge. GitHub access is read-only (username + org membership).
Sign in to claimBased on adoption, maintenance, documentation, and repository signals. Not a security audit or endorsement.
Local, deterministic skill-stack composition for coding agents—from an explicit project profile to a reviewable plan before any target change.
Current release: V15.0.0. This release includes AAS Core under the Agent-First Preview claim for local search, inspection, recommendation, manifest validation, planning, and diagnosis. Apply and recovery remain experimental and outside the supported preview path.
Codex or Claude inspects your project using its own capabilities; AAS does not scan it. The agent sends the local, read-only AAS MCP an explicit project profile. AAS Core evaluates that profile and your policy against a verified local catalog, returns an explainable recommendation, and lets the agent propose aas-stack.json. The aas CLI validates that desired state and creates an immutable per-target plan before any skill changes are made.
Read the AAS Core preview guide →
Project
-> inspected by Codex or Claude (not by AAS)
-> explicit, allowlisted project profile
-> AAS MCP (local stdio, read-only)
-> deterministic AAS Core + verified local catalog
-> recommendation with evidence, exclusions, coverage, and unknowns
-> agent proposes aas-stack.json
-> AAS CLI validate + immutable plan preview
-> human review (optionally in Workbench)
The 1,967+ reusable SKILL.md playbooks, specialized plugins, bundles, workflows, and direct installers remain important. They are the content, curation, distribution, and compatibility layers around AAS Core—not competing primary products.
This is an independent community project. It is not affiliated with, sponsored by, endorsed by, or authorized by Google. Google, Antigravity, Gemini, and related product names are referenced only to describe compatibility and install targets. The GitHub repository is canonical; the hosted catalog and browser-local Workbench are companion discovery and review surfaces, not a hosted control plane.
The agent composes. You control. AAS keeps the stack reproducible.
AAS Core gives the repository one product model:
search_skills, get_skill, recommend_stack, inspect_stack, and diff_stack; it does not install skills, scan source files, call a remote model, or write to the project.aas-stack.json. The manifest pins catalog identity, targets, goals, policy, and exact skill IDs without storing repository source or model reasoning.aas stack validate checks the proposal, while aas stack plan produces an immutable, per-target plan without applying it.npx claudepluginhub sickn33/agentic-awesome-skills --plugin agentic-bundle-aas-secure-app-builderEditorial "AAS Agent & MCP Builder" bundle for Claude Code from Agentic Awesome Skills.
Editorial "AAS API Platform Builder" bundle for Claude Code from Agentic Awesome Skills.
Editorial "Security Developer" bundle for Claude Code from Agentic Awesome Skills.
Editorial "DDD & Evented Architecture" bundle for Claude Code from Agentic Awesome Skills.
Editorial "Mobile Developer" bundle for Claude Code from Agentic Awesome Skills.
Editorial "Essentials" bundle for Claude Code from Agentic Awesome Skills.
Battle-tested Claude Code plugin for engineering teams — 38 agents, 156 skills, 72 legacy command shims, production-ready hooks, and selective install workflows evolved through continuous real-world use
🛡️ Security Engineer — Security Engineer + Adversarial Security Specialist
A team of AI security specialists embedded in your coding workflow. 8 agents covering every phase of the Secure SDLC: requirements, threat modelling, code review, IaC security, compliance, and release gating. Works with Claude Code, Cursor, Windsurf, and any MCP-compatible tool.
Harness-native ECC plugin for engineering teams - 67 agents, 277 skills, 93 legacy command shims, reusable hooks, rules, MCP conventions, and operator workflows for Claude Code plus adjacent agent harnesses
Comprehensive skill pack with 66 specialized skills for full-stack developers: 12 language experts (Python, TypeScript, Go, Rust, C++, Swift, Kotlin, C#, PHP, Java, SQL, JavaScript), 10 backend frameworks, 6 frontend/mobile, plus infrastructure, DevOps, security, and testing. Features progressive disclosure architecture for 50% faster loading.