FabioFiorita
27 verified skills
shadcn
Manages shadcn components and projects — adding, searching, fixing, debugging, styling, and composing UI. Provides project context, component docs, and usage examples. Applies when working with shadcn/ui, component registries, presets, --preset codes, or any project with a components.json file. Also triggers for "shadcn init", "create an app with --preset", or "switch to --preset".
development
convex-guidelines
Comprehensive Convex framework guidelines covering function syntax, validators, queries, mutations, actions, schema design, TypeScript patterns, pagination, and file storage. Use when writing or modifying Convex functions, defining schemas, or working with the Convex backend.
development
email-and-password-best-practices
This skill provides guidance and enforcement rules for implementing secure email and password authentication using Better Auth.
data-ai
frontend-design
Create distinctive, production-grade frontend interfaces with high design quality. Use this skill when the user asks to build web components, pages, artifacts, posters, or applications (examples include websites, landing pages, dashboards, React components, HTML/CSS layouts, or when styling/beautifying any web UI). Generates creative, polished code and UI design that avoids generic AI aesthetics.
development
react-memoization-guide
Guidelines for proper React memoization (useMemo, useCallback, React.memo) usage. Use when writing React components, reviewing code with useMemo/useCallback, refactoring performance optimizations, or when asked about React performance patterns. Helps identify common misuse patterns and apply the "clarity first, optimize when justified" principle.
development
resend-inbound
Use when receiving emails with Resend - setting up inbound domains, processing email.received webhooks, retrieving email content/attachments, or forwarding received emails.
development
web-perf
Analyzes web performance using Chrome DevTools MCP. Measures Core Web Vitals (FCP, LCP, TBT, CLS, Speed Index), identifies render-blocking resources, network dependency chains, layout shifts, caching issues, and accessibility gaps. Use when asked to audit, profile, debug, or optimize page load performance, Lighthouse scores, or site speed.
tools
wrangler
Cloudflare Workers CLI for deploying, developing, and managing Workers, KV, R2, D1, Vectorize, Hyperdrive, Workers AI, Containers, Queues, Workflows, Pipelines, and Secrets Store. Load before running wrangler commands to ensure correct syntax and best practices.
tools
better-auth-best-practices
Skill for integrating Better Auth - the comprehensive TypeScript authentication framework.
development
create-auth-skill
Skill for creating auth layers in TypeScript/JavaScript apps using Better Auth.
development
skill-creator
Guide for creating effective skills. This skill should be used when users want to create a new skill (or update an existing skill) that extends Claude's capabilities with specialized knowledge, workflows, or tool integrations.
tools
send-email
Use when sending transactional emails (welcome messages, order confirmations, password resets, receipts), notifications, or bulk emails via Resend API.
development
workers-best-practices
Reviews and authors Cloudflare Workers code against production best practices. Load when writing new Workers, reviewing Worker code, configuring wrangler.jsonc, or checking for common Workers anti-patterns (streaming, floating promises, global state, secrets, bindings, observability). Biases towards retrieval from Cloudflare docs over pre-trained knowledge.
development
vercel-composition-patterns
React composition patterns that scale. Use when refactoring components with boolean prop proliferation, building flexible component libraries, or designing reusable APIs. Triggers on tasks involving compound components, render props, context providers, or component architecture. Includes React 19 API changes.
development
testing-setup
Guide for writing tests using the project's testing infrastructure. Use when writing tests, creating test files, or when the user asks about testing setup, test utilities, fixtures, or mocks.
testing
.agents/skills/tastik-knowledge
--- name: tastik-knowledge description: Tastik app domain knowledge — a "lists without deadlines" companion app with 5 list types (simple, stepper, calculator, kanban, multi), list sharing with privacy-first nicknames, and tags. Stack: TanStack Start + Convex + Better Auth. Free app. Use when working on the Tastik codebase: implementing features, fixing bugs, understanding the data model, or planning new functionality. --- # Tastik Knowledge ## Scope Use this skill for product/domain decisions
development
.agents/skills/stripe-subscription
--- name: stripe-subscription description: Add Stripe subscriptions to a Convex + TanStack Start + Better Auth app. Use when implementing paywall, checkout, billing portal, or subscription gating. Documents the full flow: @convex-dev/stripe, webhooks, plan config, permissions, and UI. --- # Stripe Subscription (Tastik-style) Use this skill when adding paid subscriptions to a Convex app with TanStack Start and Better Auth. It documents the complete implementation: component setup, checkout, bil
development
resend
Use when working with Resend email platform - routes to specific sub-skills for sending, receiving, audiences, or broadcasts.
testing
.agents/skills/git-commit
# Git Commit Conventions — Tastik Use this skill whenever you need to write a git commit message for the Tastik repo. ## Format ``` <type>(<scope>): <subject> [optional body] [optional footer(s)] ``` All commits are validated by commitlint against `@commitlint/config-conventional` plus these extra rules: - Subject: sentence-case, max 72 characters, no trailing period, imperative mood - Body lines: max 100 characters --- ## Allowed Types | Type | When to use | |------|-------------| | `f
development
email-best-practices
Use when building email features, emails going to spam, high bounce rates, setting up SPF/DKIM/DMARC authentication, implementing email capture, ensuring compliance (CAN-SPAM, GDPR, CASL), handling webhooks, retry logic, or deciding transactional vs marketing.
development
.agents/skills/e2e-testing
# E2E Testing — Tastik Guides writing and maintaining Playwright E2E tests for Tastik. ## Philosophy - **Real dev environment**: Tests run against the actual dev deployment—no mocking Convex (WebSocket-based, can't intercept with `page.route()`). - **Dedicated test account**: A single account (`E2E_TEST_EMAIL` / `E2E_TEST_PASSWORD`) authenticates once in setup, reused across all authenticated tests. - **`e2e-` prefix**: Every test-created entity uses `uniqueName("e2e-...")` so stale artifacts
development
code-quality-review
Tech-lead-level code quality review for the Tastik codebase. Performs systematic audits targeting SOLID principles, DRY, clean code, testability, and framework best practices (TanStack Query, TanStack Start SSR, Convex, React memoization). Use when asked to: - "Review this component/hook/file for quality" - "Refactor this to be more maintainable" - "Do a code quality pass on [folder/feature]" - "Find code smells in [area]" - "Audit the codebase for best practices" - Running automated quality sweeps on the full codebase
development
cloudflare
Comprehensive Cloudflare platform skill covering Workers, Pages, storage (KV, D1, R2), AI (Workers AI, Vectorize, Agents SDK), networking (Tunnel, Spectrum), security (WAF, DDoS), and infrastructure-as-code (Terraform, Pulumi). Use for any Cloudflare development task.
development
agent-email-inbox
Use when setting up an email inbox for an AI agent (Moltbot, Clawdbot, or similar) - configuring inbound email, webhooks, tunneling for local development, and implementing security measures to prevent prompt injection attacks.
development
react-email
Use when creating HTML email templates with React components - welcome emails, password resets, notifications, order confirmations, newsletters, or transactional emails.
development
two-factor-authentication-best-practices
This skill provides guidance and enforcement rules for implementing secure two-factor authentication (2FA) using Better Auth's twoFactor plugin.
tools
better-auth-security-best-practices
This skill provides guidance for implementing security features that span across Better Auth, including rate limiting, CSRF protection, session security, trusted origins, secret management, OAuth security, IP tracking, and security auditing. These topics are not covered in individual plugin skills.
tools