clownnvd/skills/auth
skills/auth/SKILL.md
--- name: auth description: Auth quality system. 7 modes: score (10-category audit), fix (auto-fix from scorecard), loop (score->fix until target). Better Auth + Next.js patterns. license: Complete terms in LICENSE.txt --- # Auth Quality System One skill, 7 modes. Score authentication & authorization quality, fix issues, or run the full loop. ## Modes | Mode | Use When | Workflow | |------|----------|---------| | **score** | Audit auth quality | Read auth config -> Score 10 categories -> Sco
development
Updated Apr 4, 2026
$ install --global
skillsauthnpx skillsauth add clownnvd/claude-code-skills skills/authInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Apr 7, 2026, 3:22 AM10.7s1 file scanned
SKILL.md
- name:
- auth
- description:
- Auth quality system. 7 modes: score (10-category audit), fix (auto-fix from scorecard), loop (score->fix until target). Better Auth + Next.js patterns.
- license:
- Complete terms in LICENSE.txt
Auth Quality System
One skill, 7 modes. Score authentication & authorization quality, fix issues, or run the full loop.
Modes
| Mode | Use When | Workflow | |------|----------|---------| | score | Audit auth quality | Read auth config -> Score 10 categories -> Scorecard | | fix | Fix issues from scorecard | Parse -> Prioritize -> Fix -> Verify -> Re-score | | loop | End-to-end cycle | Score -> Fix -> Re-score until target | | generate | Create new code | Load criteria -> Generate meeting all 10 -> Self-check | | review | Quick 1-2 file check | Read files -> Score applicable categories -> Annotate + fix | | migrate | Framework upgrade | Detect versions -> Map breaking changes -> Migrate -> Verify | | test | Generate test cases | Map categories to assertions -> Generate test files |
Mode: Score
Audit authentication & authorization implementation across 10 weighted categories (0-100).
When: Before deploying auth flows, auditing existing quality, reviewing auth PR changes, checking OWASP A07 compliance.
Steps: Load references/scoring/scoring-workflow.md
- Gather (auth config, middleware, sessions, OAuth, passwords, headers) -> 2. Score each category 0-10 (baseline 5) -> 3. Weighted sum -> grade -> 4. Scorecard + issues + quick wins
| # | Category | Weight | Criteria Reference |
|---|----------|--------|--------------------|
| 1 | Session Management | 15% | scoring/criteria/sessions-passwords.md |
| 2 | Password Security | 12% | scoring/criteria/sessions-passwords.md |
| 3 | OAuth & Social Login | 10% | scoring/criteria/oauth-email.md |
| 4 | Email Verification | 8% | scoring/criteria/oauth-email.md |
| 5 | CSRF & Origin Validation | 12% | scoring/criteria/csrf-headers.md |
| 6 | Security Headers | 10% | scoring/criteria/csrf-headers.md |
| 7 | Rate Limiting (auth routes) | 12% | scoring/criteria/ratelimit-audit.md |
| 8 | Audit Logging | 8% | scoring/criteria/ratelimit-audit.md |
| 9 | Authorization (RBAC/route protection) | 8% | scoring/criteria/authz-2fa.md |
| 10 | 2FA / MFA | 5% | scoring/criteria/authz-2fa.md |
Anti-Bias: Start at 5/10 baseline. Penalize missing checklist items. 9-10 requires evidence.
Grades: A+ (97-100), A (93-96), A- (90-92), B+ (87-89), B (83-86), B- (80-82), C+ (77-79), C (73-76), D (60-72), F (<60)
Mode: Fix
Take scorecard output and implement all fixes. Prioritize by severity x weight.
When: After scoring, when auth is below target.
Steps: Load references/fix/implementation-workflow.md
- Parse scorecard -> 2. Prioritize (Critical->High->Medium->Low) -> 3. Fix -> 4. Verify -> 5. Re-score
| Priority | Severity | Score Range | Action | |----------|----------|-------------|--------| | 1 | CRITICAL | 0-3 or auth bypass | Fix immediately -- blocks deploy | | 2 | HIGH + high weight (>=12%) | 4-5 | Fix next -- moves score most | | 3 | HIGH + low weight (<12%) | 4-5 | Fix after high-weight items | | 4 | MEDIUM | 6-7 | Fix next sprint | | 5 | LOW | 8 | Backlog or skip |
| Scorecard Category | Fix Pattern Reference |
|-------------------|----------------------|
| Session Management, Password Security | fix/fix-patterns/sessions-passwords.md |
| OAuth & Social Login, Email Verification | fix/fix-patterns/oauth-email.md |
| CSRF & Origin Validation, Security Headers | fix/fix-patterns/csrf-headers.md |
| Rate Limiting, Audit Logging | fix/fix-patterns/ratelimit-audit.md |
| Authorization (RBAC), 2FA/MFA | fix/fix-patterns/authz-2fa.md |
Mode: Loop
Auto-iterate score->fix until target. Max 5 iterations. Stop on plateau (delta=0 for 2 rounds).
Score Targets: B+ (87) production, A- (90) enterprise, A+ (97) gold standard.
Mode: Generate
Generate code meeting all 10 categories at 9-10/10. Load references/generate/workflow.md.
Parse request → Load criteria → Generate with all patterns → Self-check → Output (assets/templates/generated-code.md.template)
Mode: Review
Quick 1-2 file review. Load references/review/workflow.md.
Read files → Score applicable categories → Annotate line numbers → Suggest fixes (assets/templates/review-report.md.template)
Mode: Migrate
Upgrade code for framework changes. Load references/migrate/workflow.md.
Detect versions → Map breaking changes → Apply migrations → Verify (assets/templates/migration-report.md.template)
Mode: Test
Generate tests from scoring criteria. Load references/test/workflow.md.
Map categories to assertions → Generate tests → Output suite (assets/templates/test-suite.md.template)
OWASP Authentication Mapping
| OWASP Risk | Covered By | |---|---| | A01: Broken Access Control | Authorization, CSRF | | A02: Cryptographic Failures | Password Security, Session Management | | A04: Insecure Design | OAuth, Email Verification | | A05: Security Misconfiguration | Security Headers, Session Management | | A07: Authentication Failures | Sessions, Passwords, OAuth, 2FA |
Framework Adjustments
| Stack | Additional Reference |
|-------|---------------------|
| Better Auth + Next.js | references/better-auth-patterns.md -- plugin config, session cookies, two-layer auth, databaseHooks |
Quick Reference -- All Files
Scoring
references/scoring/overview.md-- Scoring system, grade scale, quality gatesreferences/scoring/best-practices.md-- Do/Don't for each auth categoryreferences/scoring/scoring-workflow.md-- 6-step audit process, file gathering, scoring rubricreferences/scoring/criteria/-- 5 files: sessions-passwords, oauth-email, csrf-headers, ratelimit-audit, authz-2fareferences/better-auth-patterns.md-- Better Auth scoring adjustments, plugin checks
Fix
references/fix/overview.md-- How fix works, priority order, score targetsreferences/fix/best-practices.md-- Fix discipline, safe vs dangerous changes, common mistakesreferences/fix/implementation-workflow.md-- 6-step process, priority matrix, which refs to loadreferences/fix/verification.md-- Post-fix checklist, re-scoring protocol, loop modereferences/fix/fix-patterns/-- 5 files: sessions-passwords, oauth-email, csrf-headers, ratelimit-audit, authz-2fa
Output Templates
- Score:
assets/templates/scorecard.md.template - Fix:
assets/templates/fix-report.md.template - Generate:
assets/templates/generated-code.md.template - Review:
assets/templates/review-report.md.template - Migrate:
assets/templates/migration-report.md.template - Test:
assets/templates/test-suite.md.templateFill{{VARIABLE}}placeholders with actual values.
Related Skills
clownnvd/zustand-pro
tools
VerifiedTrustedCommunity
Zustand v5 state management for Next.js 16. Store patterns, middleware (persist/immer/devtools), SSR hydration, CV editor multi-step wizard, 20 documented errors. Triggers: zustand, store, state management, useState replacement, global state, persist, immer.
SKILL.mdUpdated Apr 4, 2026
clownnvd/vercel-react-best-practices
development
VerifiedTrustedCommunity
React and Next.js performance optimization guidelines from Vercel Engineering. This skill should be used when writing, reviewing, or refactoring React/Next.js code to ensure optimal performance patterns. Triggers on tasks involving React components, Next.js pages, data fetching, bundle optimization, or performance improvements.
SKILL.mdUpdated Apr 4, 2026
clownnvd/ultimateuiux
development
VerifiedTrustedCommunity
Ultimate UI/UX design intelligence with real app flow knowledge. 93 styles, 121 palettes, 81 font pairings, 35 charts, 79 components, 62 animations, 65 WCAG criteria, 46 responsive patterns, 46 dark mode rules, 60 design tokens, 13 stacks. PLUS: Claude.ai full UI blueprint (19 flows, all screens), PageFlows app patterns. Actions: plan, build, create, design, implement, review, fix, improve, optimize, enhance, refactor, check, clone, recreate, rebuild. Styles: glassmorphism, brutalism, neumorphism, bento, dark mode, view transitions, scroll-driven, container queries, AI-native, liquid glass, neo-minimalism, mesh gradient, geometric abstraction. Topics: color, accessibility, animation, layout, typography, spacing, shadow, gradient, responsive, dark mode, WCAG 2.2, design tokens, components, spring physics, kinetic typography, container queries, popover API, semantic tokens. Apps: claude.ai, ChatGPT-style, AI chat UI, SaaS dashboard.
SKILL.mdUpdated Apr 4, 2026
clownnvd/ui
development
VerifiedTrustedCommunity
--- name: ui description: UI quality system. 4 modes: research (design brief), score (10-category audit), fix (auto-fix from scorecard), pipeline (end-to-end chain). license: Complete terms in LICENSE.txt --- # UI Quality System One skill, 4 modes. Research real products, score UI quality, fix issues, or run the full pipeline. ## Modes | Mode | Use When | Workflow | |------|----------|---------| | **research** | Before building any page | Extract tokens → Search → Fetch → Design Brief | | **
SKILL.mdUpdated Apr 4, 2026