Adoption

Agent Skills are supported by leading AI development tools.

VS Code Gemini CLI GitHub Goose Amp Cursor Claude Code Letta OpenCode Claude OpenAI Codex Factory VS Code Gemini CLI GitHub Goose Amp Cursor Claude Code Letta OpenCode Claude OpenAI Codex Factory

cubenlp/cert-manager

Name: cert-manager
Author: cubenlp

skills/cert-manager/SKILL.md

npx skillsauth add cubenlp/chattool cert-manager

Clean

TrivyContainer and dependency vulnerability scanner

Clean

SemgrepStatic code analysis for vulnerabilities

Clean

mcp-scan (Snyk)Model Context Protocol security validation

Skipped

Snyk (dep)Open source security scanning

Skipped

Socket.devSupply chain security analysis

Skipped

VirusTotalMulti-engine malware detection

Skipped

CrowdStrikeAdvanced threat intelligence

Skipped

OSV-ScannerOpen Source Vulnerability database check

Skipped

OWASP Dep-Check

Cert Manager Skill

Description

This skill provides automated SSL certificate generation and management capabilities using DNS validation (Let's Encrypt). It offers flexibility through multiple usage routes, allowing you to choose the best method for your specific development or deployment scenario.

Usage Routes

Choose the most appropriate route based on your scenario:

Detailed Instructions

Route 1: Code Import

Import and use the SSLCertUpdater class directly in Python code.

Configuration:

Configure DNS Provider AccessKey/SecretKey (via env vars or args).

Example:

import asyncio
from chattool.tools.cert.cert_updater import SSLCertUpdater
from chattool.utils import setup_logger

async def main():
    updater = SSLCertUpdater(
        domains=["example.com", "*.example.com"],
        email="[email protected]",
        dns_type="aliyun",
        cert_dir="./certs",
        access_key_id="...",      # Optional, defaults to env var
        access_key_secret="..."   # Optional, defaults to env var
    )
    success = await updater.run_once()
    if success:
        print("Certificate generated successfully!")

if __name__ == "__main__":
    asyncio.run(main())

Route 2: CLI

Use the chattool command-line interface to request certificates directly.

Configuration:

Set env vars ALIBABA_CLOUD_ACCESS_KEY_ID and ALIBABA_CLOUD_ACCESS_KEY_SECRET (for Aliyun).

Example:

# Generate certificate
chattool dns cert-update \
    -d example.com -d "*.example.com" \
    -e [email protected] \
    --provider aliyun \
    --cert-dir ./my-certs

Route 3: Server-Client

Start an HTTP server to handle certificate requests and call it remotely via the client tool. Supports multi-tenant isolation (Token-based).

Step 1: Start Server

# Start on server, set auth token
chattool serve cert --token "my-secret-token" --provider aliyun

Step 2: Client Call

# Apply for certificate (Client side)
chattool client cert apply \
    -d example.com -d "*.example.com" \
    --token "my-secret-token" \
    --server http://<server-ip>:8000

# List certificates
chattool client cert list --token "my-secret-token" --server http://<server-ip>:8000

# Download certificate
chattool client cert download example.com --token "my-secret-token" --server http://<server-ip>:8000

Route 4: MCP Protocol

Call tools via MCP protocol if the ChatTool MCP Server is running.

Tool Name: dns_cert_update

Arguments:

domains: List[str] (e.g., ["example.com"])
email: str
provider: str ("aliyun" or "tencent")

Example (JSON-RPC):

{
  "jsonrpc": "2.0",
  "method": "tools/call",
  "params": {
    "name": "dns_cert_update",
    "arguments": {
      "domains": ["example.com"],
      "email": "[email protected]",
      "provider": "aliyun"
    }
  },
  "id": 1
}

cubenlp/cert-manager

skills/cert-manager/SKILL.md

A comprehensive toolset for automated SSL certificate generation and management using DNS validation (Let's Encrypt). This skill supports multiple usage routes including direct code import, command-line interface (CLI), client-server architecture, and MCP protocol integration.

39 stars

tools

Updated Apr 4, 2026

$ install --global

skillsauth

npx skillsauth add cubenlp/chattool cert-manager

Install this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.

Security Scan Results

3 of 9 scanners reported clean

Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.

Scanners Passed

Scanners in report

Clean

TrivyContainer and dependency vulnerability scanner

95%

Clean

SemgrepStatic code analysis for vulnerabilities

95%

Clean

mcp-scan (Snyk)Model Context Protocol security validation

95%

Skipped

Snyk (dep)Open source security scanning

50%

Skipped

Socket.devSupply chain security analysis

50%

Skipped

VirusTotalMulti-engine malware detection

50%

Skipped

CrowdStrikeAdvanced threat intelligence

50%

Skipped

OSV-ScannerOpen Source Vulnerability database check

50%

Skipped

OWASP Dep-Check

50%

Last scanned: Apr 20, 2026, 8:35 AM14.0s1 file scanned

SKILL.md

name:: cert-manager
description:: A comprehensive toolset for automated SSL certificate generation and management using DNS validation (Let's Encrypt). This skill supports multiple usage routes including direct code import, command-line interface (CLI), client-server architecture, and MCP protocol integration.
version:: 0.1.0

Cert Manager Skill

Description

Usage Routes

Choose the most appropriate route based on your scenario:

Detailed Instructions

Route 1: Code Import

Import and use the SSLCertUpdater class directly in Python code.

Configuration:

Configure DNS Provider AccessKey/SecretKey (via env vars or args).

Example:

import asyncio
from chattool.tools.cert.cert_updater import SSLCertUpdater
from chattool.utils import setup_logger

async def main():
    updater = SSLCertUpdater(
        domains=["example.com", "*.example.com"],
        email="[email protected]",
        dns_type="aliyun",
        cert_dir="./certs",
        access_key_id="...",      # Optional, defaults to env var
        access_key_secret="..."   # Optional, defaults to env var
    )
    success = await updater.run_once()
    if success:
        print("Certificate generated successfully!")

if __name__ == "__main__":
    asyncio.run(main())

Route 2: CLI

Use the chattool command-line interface to request certificates directly.

Configuration:

Set env vars ALIBABA_CLOUD_ACCESS_KEY_ID and ALIBABA_CLOUD_ACCESS_KEY_SECRET (for Aliyun).

Example:

# Generate certificate
chattool dns cert-update \
    -d example.com -d "*.example.com" \
    -e [email protected] \
    --provider aliyun \
    --cert-dir ./my-certs

Route 3: Server-Client

Start an HTTP server to handle certificate requests and call it remotely via the client tool. Supports multi-tenant isolation (Token-based).

Step 1: Start Server

# Start on server, set auth token
chattool serve cert --token "my-secret-token" --provider aliyun

Step 2: Client Call

# Apply for certificate (Client side)
chattool client cert apply \
    -d example.com -d "*.example.com" \
    --token "my-secret-token" \
    --server http://<server-ip>:8000

# List certificates
chattool client cert list --token "my-secret-token" --server http://<server-ip>:8000

# Download certificate
chattool client cert download example.com --token "my-secret-token" --server http://<server-ip>:8000

Route 4: MCP Protocol

Call tools via MCP protocol if the ChatTool MCP Server is running.

Tool Name: dns_cert_update

Arguments:

domains: List[str] (e.g., ["example.com"])
email: str
provider: str ("aliyun" or "tencent")

Example (JSON-RPC):

{
  "jsonrpc": "2.0",
  "method": "tools/call",
  "params": {
    "name": "dns_cert_update",
    "arguments": {
      "domains": ["example.com"],
      "email": "[email protected]",
      "provider": "aliyun"
    }
  },
  "id": 1
}

Related Skills

cubenlp/zulip-post-preview

tools

VerifiedTrustedCommunity

Create staged previews of Zulip topics using read-only CLI queries, including full-thread originals, a small zh-en translation slice, and a Chinese overview in an external work directory such as ~/tmp/chattool-zulip/<channel>/<topic>. Use when asked to preview, summarize, or translate Zulip thread content.

39SKILL.mdUpdated Apr 4, 2026

cubenlp/zulip-post-preview

cubenlp/zulip-news

tools

VerifiedTrustedCommunity

Aggregate and summarize Zulip community updates via ChatTool CLI. Use when user asks to fetch latest Zulip news, list streams/messages, or generate periodic summaries from configured streams/topics.

39SKILL.mdUpdated Apr 4, 2026

cubenlp/python-package-starter

tools

VerifiedTrustedCommunity

Use `chattool pypi init` to scaffold a minimal Python package, then validate it with doctor/build/check. Example package name `mychat`.

39SKILL.mdUpdated Apr 4, 2026

cubenlp/python-package-starter

cubenlp/practice-make-perfact

tools

VerifiedTrustedCommunity

Post-task normalization workflow for ChatTool development. Use after implementation to review the completed work, extract reusable pieces into the repo, check existing CLI surfaces before adding scripts, run $chattool-dev-review, and then drive docs/tests/changelog/PR updates through the project standards. If the task also includes merged-mainline release work, hand off to $chattool-release after PR/MR stage.

39SKILL.mdUpdated Apr 4, 2026

cubenlp/practice-make-perfact

Download

For Claude Desktop. Download once, then upload the file in the app — no terminal needed.

Need help? View full Cowork setup guide →

Install manually

Choose your platform

# Clone the repo
git clone https://github.com/cubenlp/chattool.git

# Copy into Claude Code skills folder (global)
cp -r chattool/skills/cert-manager ~/.claude/skills/

Claude Code Skills — official skills path docs.

Repository

cubenlp/chattool

39 stars

Compatible with

Claude Code

OpenAI Codex CLI

ChatGPT