Vibe Index
florianbuetow

florianbuetow/claude-code

74 resources in this repository

GitHub
🎯64πŸ”Œ9πŸͺ1
9

🎯Skills64

🎯ssrf🎯Skill

Part of a comprehensive collection of 21 plugins and 101 skills for Claude Code, covering application security, software architecture analysis, agent guardrails, session management, ISO 27001 compliance, and autonomous research pipelines.

ssrf
🎯sans25🎯Skill

A security mapping skill that checks code against the SANS/CWE Top 25 most dangerous software weaknesses. Part of a comprehensive application security toolbox with 62 skills, 8 frameworks, and red team simulation, providing CWE mapping, DREAD scoring, and concrete fix suggestions.

sans25
🎯spec-writer🎯Skill

Part of a Claude Code collection offering 21 plugins and 101 skills, including tools for specification writing, security auditing, architecture explanation, changelog management, and development workflow guardrails.

spec-writer
🎯solid-principles🎯Skill

Skill

solid-principles
🎯pasta-risk🎯Skill

Skill

pasta-risk
🎯file-upload🎯Skill

Skill

file-upload
🎯business-logic🎯Skill

Skill

business-logic
🎯info-disclosure🎯Skill

Skill

info-disclosure
🎯pasta-attack-sim🎯Skill

Skill

pasta-attack-sim
🎯dos🎯Skill

Skill

dos
🎯data-disclosure🎯Skill

Skill

data-disclosure
🎯attack-surface🎯Skill

Skill

attack-surface
🎯report🎯Skill

Skill

report
🎯api🎯Skill

Skill

api
🎯non-compliance🎯Skill

Skill

non-compliance
🎯pasta-vulns🎯Skill

Skill

pasta-vulns
🎯spoofing🎯Skill

Skill

spoofing
🎯pasta🎯Skill

Skill

pasta
🎯access-control🎯Skill

Skill

access-control
🎯beyond-solid-principles🎯Skill

Skill

beyond-solid-principles
🎯verify🎯Skill

Skill

verify
🎯auth🎯Skill

Skill

auth
🎯mitre🎯Skill

Skill

mitre
🎯crypto🎯Skill

Skill

crypto
🎯pasta-objectives🎯Skill

Skill

pasta-objectives
🎯insecure-design🎯Skill

Skill

insecure-design
🎯config🎯Skill

Skill

config
🎯stride🎯Skill

Skill

stride
🎯pasta-decompose🎯Skill

Skill

pasta-decompose
🎯non-repudiation-privacy🎯Skill

Skill

non-repudiation-privacy
🎯model🎯Skill

Skill

model
🎯injection🎯Skill

Skill

injection
🎯linking🎯Skill

Skill

linking
🎯fuzz🎯Skill

Skill

fuzz
🎯logging🎯Skill

Skill

logging
🎯learn🎯Skill

Skill

learn
🎯fix🎯Skill

Skill

fix
🎯integrity🎯Skill

Skill

integrity
🎯secrets🎯Skill

Skill

secrets
🎯repudiation🎯Skill

Skill

repudiation
🎯graphql🎯Skill

Skill

graphql
🎯race-conditions🎯Skill

Skill

race-conditions
🎯explain🎯Skill

Skill

explain
🎯identifying🎯Skill

Skill

identifying
🎯tampering🎯Skill

Skill

tampering
🎯privilege-escalation🎯Skill

Skill

privilege-escalation
🎯detecting🎯Skill

Skill

detecting
🎯owasp🎯Skill

Skill

owasp
🎯pasta-scope🎯Skill

Skill

pasta-scope
🎯unawareness🎯Skill

Skill

unawareness
🎯outdated-deps🎯Skill

Skill

outdated-deps
🎯linddun🎯Skill

Skill

linddun
🎯explain-system-tradeoffs🎯Skill

Skill

explain-system-tradeoffs
🎯start🎯Skill

Skill

start
🎯review-plan🎯Skill

Skill

review-plan
🎯status🎯Skill

Skill

status
🎯glossary🎯Skill

Skill

glossary
🎯misconfig🎯Skill

Skill

misconfig
🎯full-audit🎯Skill

Skill

full-audit
🎯serverless🎯Skill

Skill

serverless
🎯pasta-threats🎯Skill

Skill

pasta-threats
🎯harden🎯Skill

Skill

harden
🎯data-flows🎯Skill

Skill

data-flows
🎯regression🎯Skill

Skill

regression

πŸ”ŒPlugins9

πŸ”Œspec-writerπŸ”ŒPlugin

An expert-guided skill for creating layered software specification documents for greenfield projects. Produces Vision, Business Requirements, Software Requirements, Architecture & Design, and Behavioral Spec & Test Verification documents.

development
πŸ”ŒkissπŸ”ŒPlugin

Analyze code and architecture for unnecessary complexity, over-abstraction, and redundancy. Reports findings with severity ratings and concrete simplification suggestions.

development
πŸ”Œbeyond-solid-principlesπŸ”ŒPlugin

Analyze code and architecture for violations of ten system-level software design principles: Separation of Concerns, Single Responsibility (system-level), DRY, Law of Demeter, Loose Coupling / High Cohesion, Evolvability, Resilience, KISS, Principle of Least Surprise, and YAGNI

development
πŸ”Œspec-ddπŸ”ŒPlugin

Specification-driven development workflow skill. Orchestrates a spec-first discipline with advisory quality gates: behavioral specification, test specification, implementation specification, and alignment review.

development
πŸ”ŒappsecπŸ”ŒPlugin

Comprehensive application security toolbox for Claude Code. 62 skills across 8 frameworks (OWASP Top 10, OWASP API Top 10, STRIDE, PASTA, LINDDUN, MITRE ATT&CK, SANS/CWE Top 25, DREAD), red team simulation with 6 attacker personas plus consolidator, and interactive security education.

security
πŸ”ŒarchibaldπŸ”ŒPlugin

Software architecture quality assessment through structural smell detection, quantitative metrics analysis, antipattern identification, dependency structure evaluation, risk/trade-off analysis, and technical debt measurement.

development
πŸ”Œexplain-system-tradeoffsπŸ”ŒPlugin

Reverse-engineer distributed system tradeoffs from code, configuration, and architecture artifacts. Analyzes six axes: Consistency & Availability, Latency & Throughput, Data Distribution, Transaction Boundaries, Resilience & Failure Isolation, and Observability, Security & Cost.

development
πŸ”Œsolid-principlesπŸ”ŒPlugin

Analyze code for violations of the SOLID principles of object-oriented design (Single Responsibility, Open/Closed, Liskov Substitution, Interface Segregation, Dependency Inversion)

development
πŸ”ŒretrospectiveπŸ”ŒPlugin

Analyze Claude Code session logs to identify what went well, what didn't, and how to improve developer-AI collaboration. Suggests new skills, subagents, slash commands, hooks, and workflow optimizations based on actual usage patterns.

development

πŸͺMarketplaces1

πŸͺflorianbuetow-claude-codeπŸͺMarketplace

Marketplace

plugins:5developmentsecurity
Back to Home