Categories
Indexed Skills (10)
dexie-migration
Safely bump the Dexie IndexedDB schema version in apps/web/src/db/dbService.ts. Guides through adding tables/columns, upgrade callbacks, TypeScript interfaces, and table exports.
generate-vitest
Generate a Vitest test file for an existing component or hook in apps/web/src/. Pass the file path or component name as the argument. Reads the source file first to produce meaningful mocks and assertions.
owasp-security-audit
Provides comprehensive security standards and checklists based on OWASP Top 10:2025. Includes language-specific secure coding patterns for 20+ languages, guidance on Agentic AI security, and ASVS 5.0 requirements to ensure robust defense-in-depth across the development lifecycle.
release-notes
Generate or update a release notes file for Gryffin Calorai following the established format. Pass the version number as the argument (e.g. "0.9.0"). Reads git history and ROADMAP.md to populate content.
scaffold-new-react-component
Scaffold a new React component + paired test file following Gryffin Calorai conventions. Pass the PascalCase component name as the argument.
scaffold-new-react-hook
Scaffold a new custom React hook in apps/web/src/hooks/ with a paired test file. Pass the hook name as the argument (e.g. "useActivitySummary"). Supports two patterns - form hooks and data hooks.
scaffold-zustand-slice
Scaffold a new Zustand store slice in apps/web/src/state/slices/ and wire it into AppState.ts. Pass the slice domain name as the argument (e.g. "notifications"). Follows the existing 8-slice composition pattern exactly.
session-wiki-update
Run the session-end wiki update checklist from project-knowledge/AGENTS.md. Updates wiki pages, appends to log.md, creates a weekly summary if needed, and refreshes index.md.
web-security-audit
Expert guidance on identifying and mitigating common web vulnerabilities from a bug hunter's perspective. Covers access control, XSS, CSRF, SSRF, insecure file uploads, and JWT security with detailed protection strategies, implementation patterns, and verification checklists.
update-dependencies
Orchestrates dependency management using pnpm. Checks for outdated packages, facilitates user-guided updates, prunes unused dependencies, and deduplicates the dependency tree. Ensures project integrity through automated linting, formatting, testing, and build verification.
Bio shown is the top-scored skill's repo description as a fallback — real GitHub bios land in a future update.