patrykkopycinski
15 verified skills90 total stars
plugin-self-improve
Audit and improve the Elastic Cursor Plugin itself — analyze coverage gaps, identify missing tools/skills/rules, assess quality, and implement improvements. Use when asked to improve, extend, audit, or enhance the plugin.
tools6
security-detection-engineering
Guide for authoring custom detection rules — from threat hypothesis through rule creation, testing, and tuning with KQL, EQL, ES|QL, and threshold rules.
testing6
cluster-onboarding
Guide users from zero to a working Elastic cluster — Cloud or on-prem, connection config, first queries, and next steps.
devops6
security-threat-hunting
Interactive threat hunting workflow using ES|QL and Elasticsearch queries — from hypothesis formulation through data exploration, IOC search, and finding documentation.
testing6
security-alert-triage
Interactive workflow for investigating and triaging security alerts — from alert review through enrichment, investigation, and resolution.
testing6
apm-log-shipping-setup
Set up APM instrumentation and log shipping — framework-specific agents, Filebeat, Elastic Agent, and correlation.
development6
o11y-full-setup
Interactive guide for complete Observability setup — discovers data, presents summary, creates dashboards and SLOs based on user approval.
documentation6
agent-builder-skill-builder
Guide for building, testing, and deploying custom Agent Builder skills — from tool creation through agent configuration and MCP handoff.
tools6
llm-eval-observatory
Debug and analyze LLM eval runs — view traces, compare runs, investigate failures, track costs. Use when debugging @kbn/evals failures, comparing eval runs, or analyzing LLM performance.
development6
o11y-service-dashboard
Interactive guide for creating an APM service overview dashboard — discovers service data, presents metrics, and creates a tailored dashboard.
documentation6
o11y-slo-setup
Interactive guide for creating SLOs from discovered APM and metric data — identifies candidates, lets user configure targets, and creates SLOs.
documentation6
search-index-management
Create, configure, and manage Elasticsearch indices — mappings, settings, templates, data streams, and lifecycle policies.
testing6
security-full-setup
Interactive guide for complete Elastic Security setup — discovers data sources, assesses detection coverage, configures rules, and creates security dashboards.
testing6
security-case-management
Guide for creating and managing security investigation cases — from case creation through alert attachment, investigation tracking, and resolution.
testing6
security-inbox
Start your security session with a personalized briefing — attacks, alerts, cases, rules, threat intel. Use as the first thing when starting security work.
testing6