Adoption

Agent Skills are supported by leading AI development tools.

VS Code Gemini CLI GitHub Goose Amp Cursor Claude Code Letta OpenCode Claude OpenAI Codex Factory VS Code Gemini CLI GitHub Goose Amp Cursor Claude Code Letta OpenCode Claude OpenAI Codex Factory

cofin/nuxt

Name: nuxt
Author: cofin

skills/nuxt/SKILL.md

npx skillsauth add cofin/flow nuxt

Clean

TrivyContainer and dependency vulnerability scanner

Clean

SemgrepStatic code analysis for vulnerabilities

Clean

mcp-scan (Snyk)Model Context Protocol security validation

Skipped

Snyk (dep)Open source security scanning

Skipped

Socket.devSupply chain security analysis

Skipped

VirusTotalMulti-engine malware detection

Skipped

CrowdStrikeAdvanced threat intelligence

Skipped

OSV-ScannerOpen Source Vulnerability database check

Skipped

OWASP Dep-Check

Nuxt 3 Framework Skill

Quick Reference

Page Component

<!-- pages/users/[id].vue -->
<script setup lang="ts">
const route = useRoute();
const { data: user, error } = await useFetch(`/api/users/${route.params.id}`);

definePageMeta({
  layout: 'admin',
  middleware: ['auth'],
});

useHead({
  title: () => user.value?.name ?? 'User',
});
</script>

<template>
  <div v-if="error">Error: {{ error.message }}</div>
  <div v-else-if="user">
    <h1>{{ user.name }}</h1>
    <p>{{ user.email }}</p>
  </div>
</template>

</example>

Server API Routes

// server/api/users/[id].get.ts
export default defineEventHandler(async (event) => {
  const id = getRouterParam(event, 'id');

  const user = await db.users.findUnique({ where: { id } });

  if (!user) {
    throw createError({
      statusCode: 404,
      message: 'User not found',
    });
  }

  return user;
});

// server/api/users.post.ts
export default defineEventHandler(async (event) => {
  const body = await readBody(event);

  const user = await db.users.create({ data: body });

  return user;
});

</example>

Composables

// composables/useAuth.ts
export function useAuth() {
  const user = useState<User | null>('auth-user', () => null);
  const isAuthenticated = computed(() => !!user.value);

  async function login(credentials: Credentials) {
    const { data } = await useFetch('/api/auth/login', {
      method: 'POST',
      body: credentials,
    });
    user.value = data.value;
  }

  async function logout() {
    await useFetch('/api/auth/logout', { method: 'POST' });
    user.value = null;
    navigateTo('/login');
  }

  return { user, isAuthenticated, login, logout };
}

</example>

Data Fetching

<script setup lang="ts">
// Simple fetch
const { data, pending, error, refresh } = await useFetch('/api/items');

// With options
const { data: items } = await useFetch('/api/items', {
  query: { page: 1, limit: 10 },
  pick: ['id', 'name'],  // Only include these fields
  transform: (data) => data.items,
  watch: [page],  // Re-fetch when page changes
});

// Lazy fetch (doesn't block navigation)
const { data, pending } = useLazyFetch('/api/slow-data');

// useAsyncData for custom async operations
const { data } = await useAsyncData('key', () => {
  return $fetch('/api/items');
});
</script>

</example>

Middleware

// middleware/auth.ts
export default defineNuxtRouteMiddleware((to, from) => {
  const { isAuthenticated } = useAuth();

  if (!isAuthenticated.value && to.path !== '/login') {
    return navigateTo('/login');
  }
});

// middleware/admin.ts (named middleware)
export default defineNuxtRouteMiddleware(() => {
  const { user } = useAuth();

  if (user.value?.role !== 'admin') {
    throw createError({
      statusCode: 403,
      message: 'Forbidden',
    });
  }
});

</example>

Plugins

// plugins/api.ts
export default defineNuxtPlugin(() => {
  const api = $fetch.create({
    baseURL: '/api',
    onRequest({ options }) {
      const token = useCookie('token');
      if (token.value) {
        options.headers = {
          ...options.headers,
          Authorization: `Bearer ${token.value}`,
        };
      }
    },
  });

  return {
    provide: { api },
  };
});

// Usage: const { $api } = useNuxtApp();

</example>

Hybrid Rendering

// nuxt.config.ts
export default defineNuxtConfig({
  routeRules: {
    '/': { prerender: true },
    '/blog/**': { isr: 3600 },  // ISR: revalidate every hour
    '/admin/**': { ssr: false },  // SPA mode
    '/api/**': { cors: true },
  },
});

</example>

State Management

// With useState (SSR-safe)
const count = useState('counter', () => 0);

// With Pinia
// stores/user.ts
export const useUserStore = defineStore('user', () => {
  const user = ref<User | null>(null);

  async function fetch() {
    user.value = await $fetch('/api/user');
  }

  return { user, fetch };
});

</example>

Best Practices

Use useFetch for data fetching (handles SSR)
Use useState for SSR-safe reactive state
Use route rules for hybrid rendering strategies
Use server routes for backend logic
Use middleware for route guards
Use definePageMeta for page-level config

</workflow>

References Index

Litestar-Vite Integration — Backend integration with Litestar-Vite plugin.

Official References

https://nuxt.com/docs/4.x/getting-started/introduction
https://nuxt.com/docs/4.x/getting-started/upgrade
https://nuxt.com/docs/4.x/api/composables/use-fetch
https://nuxt.com/docs/4.x/api/utils/define-nuxt-route-middleware
https://nitro.build/config/
https://github.com/nuxt/nuxt/releases

Shared Styleguide Baseline

Use shared styleguides for generic language/framework rules to reduce duplication in this skill.
General Principles
TypeScript
Keep this skill focused on tool-specific workflows, edge cases, and integration details.

<guardrails> ## Guardrails

Use useFetch or useAsyncData for data fetching -- These composables are SSR-aware and prevent duplicate requests on the client. Never use plain $fetch in a component's top-level setup.
Never access browser-only globals during SSR -- Always check import.meta.client or use onMounted before accessing window, document, or localStorage.
Use server/ directory for sensitive operations -- Keep database queries, API keys, and complex logic in Nitro server routes to ensure they never leak to the client.
Always provide a unique key to useAsyncData -- This is critical for proper hydration and preventing data mismatch between server and client.
Prefer useState over local refs for global state -- useState is SSR-safe and preserves state during hydration. </guardrails>

<validation> ## Validation Checkpoint

[ ] useFetch or useAsyncData is used for all top-level data fetching
[ ] No browser-only globals are accessed in the setup script without checks
[ ] Sensitive logic and API calls are moved to the server/api/ directory
[ ] useAsyncData calls have unique and stable keys
[ ] definePageMeta is used for route-level guards and layouts
[ ] Components that require browser APIs are wrapped in <ClientOnly> or used within onMounted </validation>

cofin/nuxt

skills/nuxt/SKILL.md

Use when editing Nuxt apps, nuxt.config.ts, nuxt.config.js, .nuxt directories, useFetch, useAsyncData, Nitro server routes, SSR, SSG, or Vue server rendering with Nuxt.

11 stars

data-ai

Updated Apr 27, 2026

$ install --global

skillsauth

npx skillsauth add cofin/flow nuxt

Install this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.

Security Scan Results

3 of 9 scanners reported clean

Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.

Scanners Passed

Scanners in report

Clean

TrivyContainer and dependency vulnerability scanner

95%

Clean

SemgrepStatic code analysis for vulnerabilities

95%

Clean

mcp-scan (Snyk)Model Context Protocol security validation

95%

Skipped

Snyk (dep)Open source security scanning

50%

Skipped

Socket.devSupply chain security analysis

50%

Skipped

VirusTotalMulti-engine malware detection

50%

Skipped

CrowdStrikeAdvanced threat intelligence

50%

Skipped

OSV-ScannerOpen Source Vulnerability database check

50%

Skipped

OWASP Dep-Check

50%

Last scanned: Apr 27, 2026, 5:40 AM241.3s3 files scanned

SKILL.md

name:: nuxt
description:: Use when editing Nuxt apps, nuxt.config.ts, nuxt.config.js, .nuxt directories, useFetch, useAsyncData, Nitro server routes, SSR, SSG, or Vue server rendering with Nuxt.

Nuxt 3 Framework Skill

Quick Reference

Page Component

<!-- pages/users/[id].vue -->
<script setup lang="ts">
const route = useRoute();
const { data: user, error } = await useFetch(`/api/users/${route.params.id}`);

definePageMeta({
  layout: 'admin',
  middleware: ['auth'],
});

useHead({
  title: () => user.value?.name ?? 'User',
});
</script>

<template>
  <div v-if="error">Error: {{ error.message }}</div>
  <div v-else-if="user">
    <h1>{{ user.name }}</h1>
    <p>{{ user.email }}</p>
  </div>
</template>

</example>

Server API Routes

// server/api/users/[id].get.ts
export default defineEventHandler(async (event) => {
  const id = getRouterParam(event, 'id');

  const user = await db.users.findUnique({ where: { id } });

  if (!user) {
    throw createError({
      statusCode: 404,
      message: 'User not found',
    });
  }

  return user;
});

// server/api/users.post.ts
export default defineEventHandler(async (event) => {
  const body = await readBody(event);

  const user = await db.users.create({ data: body });

  return user;
});

</example>

Composables

// composables/useAuth.ts
export function useAuth() {
  const user = useState<User | null>('auth-user', () => null);
  const isAuthenticated = computed(() => !!user.value);

  async function login(credentials: Credentials) {
    const { data } = await useFetch('/api/auth/login', {
      method: 'POST',
      body: credentials,
    });
    user.value = data.value;
  }

  async function logout() {
    await useFetch('/api/auth/logout', { method: 'POST' });
    user.value = null;
    navigateTo('/login');
  }

  return { user, isAuthenticated, login, logout };
}

</example>

Data Fetching

<script setup lang="ts">
// Simple fetch
const { data, pending, error, refresh } = await useFetch('/api/items');

// With options
const { data: items } = await useFetch('/api/items', {
  query: { page: 1, limit: 10 },
  pick: ['id', 'name'],  // Only include these fields
  transform: (data) => data.items,
  watch: [page],  // Re-fetch when page changes
});

// Lazy fetch (doesn't block navigation)
const { data, pending } = useLazyFetch('/api/slow-data');

// useAsyncData for custom async operations
const { data } = await useAsyncData('key', () => {
  return $fetch('/api/items');
});
</script>

</example>

Middleware

// middleware/auth.ts
export default defineNuxtRouteMiddleware((to, from) => {
  const { isAuthenticated } = useAuth();

  if (!isAuthenticated.value && to.path !== '/login') {
    return navigateTo('/login');
  }
});

// middleware/admin.ts (named middleware)
export default defineNuxtRouteMiddleware(() => {
  const { user } = useAuth();

  if (user.value?.role !== 'admin') {
    throw createError({
      statusCode: 403,
      message: 'Forbidden',
    });
  }
});

</example>

Plugins

// plugins/api.ts
export default defineNuxtPlugin(() => {
  const api = $fetch.create({
    baseURL: '/api',
    onRequest({ options }) {
      const token = useCookie('token');
      if (token.value) {
        options.headers = {
          ...options.headers,
          Authorization: `Bearer ${token.value}`,
        };
      }
    },
  });

  return {
    provide: { api },
  };
});

// Usage: const { $api } = useNuxtApp();

</example>

Hybrid Rendering

// nuxt.config.ts
export default defineNuxtConfig({
  routeRules: {
    '/': { prerender: true },
    '/blog/**': { isr: 3600 },  // ISR: revalidate every hour
    '/admin/**': { ssr: false },  // SPA mode
    '/api/**': { cors: true },
  },
});

</example>

State Management

// With useState (SSR-safe)
const count = useState('counter', () => 0);

// With Pinia
// stores/user.ts
export const useUserStore = defineStore('user', () => {
  const user = ref<User | null>(null);

  async function fetch() {
    user.value = await $fetch('/api/user');
  }

  return { user, fetch };
});

</example>

Best Practices

Use useFetch for data fetching (handles SSR)
Use useState for SSR-safe reactive state
Use route rules for hybrid rendering strategies
Use server routes for backend logic
Use middleware for route guards
Use definePageMeta for page-level config

</workflow>

References Index

Litestar-Vite Integration — Backend integration with Litestar-Vite plugin.

Official References

https://nuxt.com/docs/4.x/getting-started/introduction
https://nuxt.com/docs/4.x/getting-started/upgrade
https://nuxt.com/docs/4.x/api/composables/use-fetch
https://nuxt.com/docs/4.x/api/utils/define-nuxt-route-middleware
https://nitro.build/config/
https://github.com/nuxt/nuxt/releases

Shared Styleguide Baseline

Use shared styleguides for generic language/framework rules to reduce duplication in this skill.
General Principles
TypeScript
Keep this skill focused on tool-specific workflows, edge cases, and integration details.

<guardrails> ## Guardrails

Use useFetch or useAsyncData for data fetching -- These composables are SSR-aware and prevent duplicate requests on the client. Never use plain $fetch in a component's top-level setup.
Never access browser-only globals during SSR -- Always check import.meta.client or use onMounted before accessing window, document, or localStorage.
Use server/ directory for sensitive operations -- Keep database queries, API keys, and complex logic in Nitro server routes to ensure they never leak to the client.
Always provide a unique key to useAsyncData -- This is critical for proper hydration and preventing data mismatch between server and client.
Prefer useState over local refs for global state -- useState is SSR-safe and preserves state during hydration. </guardrails>

<validation> ## Validation Checkpoint

[ ] useFetch or useAsyncData is used for all top-level data fetching
[ ] No browser-only globals are accessed in the setup script without checks
[ ] Sensitive logic and API calls are moved to the server/api/ directory
[ ] useAsyncData calls have unique and stable keys
[ ] definePageMeta is used for route-level guards and layouts
[ ] Components that require browser APIs are wrapped in <ClientOnly> or used within onMounted </validation>

Related Skills

cofin/flow-sync-status

testing

VerifiedTrustedCommunity

Use when syncing Beads state to markdown, checking Flow status, refreshing context docs, validating task markers, or reporting ready/blocked Flow work.

11SKILL.mdUpdated Apr 27, 2026

cofin/flow-sync-status

cofin/flow-setup

testing

VerifiedTrustedCommunity

Use when initializing Flow in a repo, configuring .agents, installing or checking Beads bd, setting local-only sync policy, or creating first project context files.

11SKILL.mdUpdated Apr 27, 2026

cofin/flow-planning

data-ai

VerifiedTrustedCommunity

Use when drafting PRDs, researching, planning, refining, revising, or creating .agents/specs/<flow_id>/spec.md worksheets for Flow.

11SKILL.mdUpdated Apr 27, 2026

cofin/flow-execution

testing

VerifiedTrustedCommunity

Use when implementing Flow tasks from Beads or spec.md, claiming ready work, applying TDD, recording task notes, committing, and syncing after task state changes.

11SKILL.mdUpdated Apr 27, 2026

Download

For Claude Desktop. Download once, then upload the file in the app — no terminal needed.

Need help? View full Cowork setup guide →

Install manually

Choose your platform

# Clone the repo
git clone https://github.com/cofin/flow.git

# Copy into Claude Code skills folder (global)
cp -r flow/skills/nuxt ~/.claude/skills/

Claude Code Skills — official skills path docs.

Repository

cofin/flow

11 stars

Compatible with

Claude Code

OpenAI Codex CLI

ChatGPT