Adoption

Agent Skills are supported by leading AI development tools.

VS Code Gemini CLI GitHub Goose Amp Cursor Claude Code Letta OpenCode Claude OpenAI Codex Factory VS Code Gemini CLI GitHub Goose Amp Cursor Claude Code Letta OpenCode Claude OpenAI Codex Factory

bereniketech/aios-connect

Name: aios-connect
Author: bereniketech

skills/core/aios-connect/SKILL.md

npx skillsauth add bereniketech/claude_kit aios-connect

Clean

TrivyContainer and dependency vulnerability scanner

Clean

SemgrepStatic code analysis for vulnerabilities

Clean

mcp-scan (Snyk)Model Context Protocol security validation

Skipped

Snyk (dep)Open source security scanning

Skipped

Socket.devSupply chain security analysis

Skipped

VirusTotalMulti-engine malware detection

Skipped

CrowdStrikeAdvanced threat intelligence

Skipped

OSV-ScannerOpen Source Vulnerability database check

Skipped

OWASP Dep-Check

AIOS Connect

1. Input

Triggered with: /aios-connect <tool> or "connect me to <tool>".

If no tool given, read context/connections.md and recommend the highest-priority unwired bucket: Tasks → Calendar → Comms → Revenue → Customer → Meetings → Knowledge.

2. Decide API vs. MCP

Load .kit/skills/ai-platform/api-vs-mcp-decision/SKILL.md and apply its decision tree.

Key rules:

1–2 known endpoints → direct API call
Need to discover available operations → MCP server
MCP exists but context budget is tight (>5 MCPs already loaded) → direct API

State the decision and reason in one sentence before proceeding.

3. Research the API

Use WebSearch to find: auth method, base URL, rate limits, and the 5 most useful endpoints for AIOS use cases (read tasks, read events, read messages, read metrics, read files). Prefer official docs over community posts.

4. Write Reference Doc

Create context/api-<tool>.md:

# <Tool> API Reference

## Auth
- Type: [OAuth2 / API key / service account / PAT]
- Env var: [VAR_NAME]
- Setup: [one-line steps to get the key]

## Rate Limits
- [requests/min or requests/day]

## Key Endpoints

### [Endpoint name]
GET https://api.example.com/v1/endpoint
Authorization: Bearer $VAR_NAME

Response: [what it returns in one line]

[repeat for up to 4 more endpoints]

## AIOS Use Cases
- Read today's tasks: [endpoint + key params]
- Check latest event: [endpoint + key params]

5. Scaffold Wrapper

If the project has a lib/ directory, create lib/aios/<tool>.ts (adjust extension for project language):

export async function get<Tool>Data(params: Record<string, string> = {}) {
  const url = new URL("https://api.example.com/v1/endpoint");
  Object.entries(params).forEach(([k, v]) => url.searchParams.set(k, v));
  const res = await fetch(url, {
    headers: { Authorization: `Bearer ${process.env.TOOL_API_KEY}` },
  });
  if (!res.ok) throw new Error(`<Tool> API ${res.status}: ${await res.text()}`);
  return res.json();
}

Rule: Wrappers are read-only by default. Write operations are added only when explicitly requested.

6. Test the Connection

Make one read-only call. Report:

Connection test — <tool>
Endpoint: [what was called]
Status: [200 OK / error code]
Sample: [first field or item from response]

If the test fails, diagnose (wrong key, missing scope, wrong endpoint version) and fix before updating connections.md.

7. Update connections.md

Update the relevant row in context/connections.md:

| Field | Value | |---|---| | Status | live if test passed · partial if test failed | | Access method | lib/aios/<tool>.ts · or direct API · or MCP: <server-name> |

8. Completion

<Tool> connected.
Reference: context/api-<tool>.md
Wrapper:   lib/aios/<tool>.ts
Status:    live (test passed)

connections.md — [Bucket] bucket marked live.
Next: /aios-cadence to use this connection in a scheduled task.

bereniketech/aios-connect

skills/core/aios-connect/SKILL.md

Wire a live connection to any tool. Applies api-vs-mcp-decision rules, researches the API, writes a reference doc, scaffolds a read-only wrapper, tests with a live call, and marks the bucket live in connections.md.

tools

Updated May 3, 2026

$ install --global

skillsauth

npx skillsauth add bereniketech/claude_kit aios-connect

Install this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.

Security Scan Results

3 of 9 scanners reported clean

Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.

Scanners Passed

Scanners in report

Clean

TrivyContainer and dependency vulnerability scanner

95%

Clean

SemgrepStatic code analysis for vulnerabilities

95%

Clean

mcp-scan (Snyk)Model Context Protocol security validation

95%

Skipped

Snyk (dep)Open source security scanning

50%

Skipped

Socket.devSupply chain security analysis

50%

Skipped

VirusTotalMulti-engine malware detection

50%

Skipped

CrowdStrikeAdvanced threat intelligence

50%

Skipped

OSV-ScannerOpen Source Vulnerability database check

50%

Skipped

OWASP Dep-Check

50%

Last scanned: May 3, 2026, 3:58 AM112.7s1 file scanned

SKILL.md

name:: aios-connect
description:: Wire a live connection to any tool. Applies api-vs-mcp-decision rules, researches the API, writes a reference doc, scaffolds a read-only wrapper, tests with a live call, and marks the bucket live in connections.md.

AIOS Connect

1. Input

Triggered with: /aios-connect <tool> or "connect me to <tool>".

If no tool given, read context/connections.md and recommend the highest-priority unwired bucket: Tasks → Calendar → Comms → Revenue → Customer → Meetings → Knowledge.

2. Decide API vs. MCP

Load .kit/skills/ai-platform/api-vs-mcp-decision/SKILL.md and apply its decision tree.

Key rules:

1–2 known endpoints → direct API call
Need to discover available operations → MCP server
MCP exists but context budget is tight (>5 MCPs already loaded) → direct API

State the decision and reason in one sentence before proceeding.

3. Research the API

4. Write Reference Doc

Create context/api-<tool>.md:

# <Tool> API Reference

## Auth
- Type: [OAuth2 / API key / service account / PAT]
- Env var: [VAR_NAME]
- Setup: [one-line steps to get the key]

## Rate Limits
- [requests/min or requests/day]

## Key Endpoints

### [Endpoint name]
GET https://api.example.com/v1/endpoint
Authorization: Bearer $VAR_NAME

Response: [what it returns in one line]

[repeat for up to 4 more endpoints]

## AIOS Use Cases
- Read today's tasks: [endpoint + key params]
- Check latest event: [endpoint + key params]

5. Scaffold Wrapper

If the project has a lib/ directory, create lib/aios/<tool>.ts (adjust extension for project language):

export async function get<Tool>Data(params: Record<string, string> = {}) {
  const url = new URL("https://api.example.com/v1/endpoint");
  Object.entries(params).forEach(([k, v]) => url.searchParams.set(k, v));
  const res = await fetch(url, {
    headers: { Authorization: `Bearer ${process.env.TOOL_API_KEY}` },
  });
  if (!res.ok) throw new Error(`<Tool> API ${res.status}: ${await res.text()}`);
  return res.json();
}

Rule: Wrappers are read-only by default. Write operations are added only when explicitly requested.

6. Test the Connection

Make one read-only call. Report:

Connection test — <tool>
Endpoint: [what was called]
Status: [200 OK / error code]
Sample: [first field or item from response]

If the test fails, diagnose (wrong key, missing scope, wrong endpoint version) and fix before updating connections.md.

7. Update connections.md

Update the relevant row in context/connections.md:

| Field | Value | |---|---| | Status | live if test passed · partial if test failed | | Access method | lib/aios/<tool>.ts · or direct API · or MCP: <server-name> |

8. Completion

<Tool> connected.
Reference: context/api-<tool>.md
Wrapper:   lib/aios/<tool>.ts
Status:    live (test passed)

connections.md — [Bucket] bucket marked live.
Next: /aios-cadence to use this connection in a scheduled task.

Related Skills

bereniketech/anti-reversing-techniques

testing

VerifiedTrustedCommunity

AUTHORIZED USE ONLY: This skill contains dual-use security techniques. Before proceeding with any bypass or analysis: > 1.

SKILL.mdUpdated May 3, 2026

bereniketech/anti-reversing-techniques

bereniketech/active-directory-attacks

testing

Community

Provide comprehensive techniques for attacking Microsoft Active Directory environments. Covers reconnaissance, credential harvesting, Kerberos attacks, lateral movement, privilege escalation, and domain dominance for red team operations and penetration testing.

SKILL.mdUpdated May 3, 2026

bereniketech/active-directory-attacks

Security Scans

mcp-scan — Pending Scan

Semgrep — Pending Scan

Trivy — Pending Scan

OWASP — Pending Scan

VirusTotal — Pending Scan

bereniketech/zeroize-audit

development

VerifiedTrustedCommunity

Detects missing zeroization of sensitive data in source code and identifies zeroization removed by compiler optimizations, with assembly-level analysis, and control-flow verification. Use for auditing C/C++/Rust code handling secrets, keys, passwords, or other sensitive data.

SKILL.mdUpdated May 3, 2026

bereniketech/zeroize-audit

bereniketech/wcag-audit-patterns

development

VerifiedTrustedCommunity

Comprehensive guide to auditing web content against WCAG 2.2 guidelines with actionable remediation strategies.

SKILL.mdUpdated May 3, 2026

bereniketech/wcag-audit-patterns

Download

For Claude Desktop. Download once, then upload the file in the app — no terminal needed.

Need help? View full Cowork setup guide →

Install manually

Choose your platform

# Clone the repo
git clone https://github.com/bereniketech/claude_kit.git

# Copy into Claude Code skills folder (global)
cp -r claude_kit/skills/core/aios-connect ~/.claude/skills/

Claude Code Skills — official skills path docs.

Repository

bereniketech/claude_kit

Compatible with

Claude Code

OpenAI Codex CLI

ChatGPT