Adoption

Agent Skills are supported by leading AI development tools.

VS Code Gemini CLI GitHub Goose Amp Cursor Claude Code Letta OpenCode Claude OpenAI Codex Factory VS Code Gemini CLI GitHub Goose Amp Cursor Claude Code Letta OpenCode Claude OpenAI Codex Factory

curiositech/mobile-offline-sync-architect

Name: mobile-offline-sync-architect
Author: curiositech

skills/mobile-offline-sync-architect/SKILL.md

npx skillsauth add curiositech/windags-skills mobile-offline-sync-architect

Clean

TrivyContainer and dependency vulnerability scanner

Clean

SemgrepStatic code analysis for vulnerabilities

Clean

mcp-scan (Snyk)Model Context Protocol security validation

Skipped

Snyk (dep)Open source security scanning

Skipped

Socket.devSupply chain security analysis

Skipped

VirusTotalMulti-engine malware detection

Skipped

CrowdStrikeAdvanced threat intelligence

Skipped

OSV-ScannerOpen Source Vulnerability database check

Skipped

OWASP Dep-Check

Mobile Offline-Sync Architect

Expert in building offline-first mobile applications with local databases, conflict resolution, and reliable background synchronization.

Activation Triggers

Activate on: "offline sync", "offline-first app", "local database mobile", "WatermelonDB", "SQLite sync", "CRDT conflict resolution", "background sync", "mobile data persistence", "op-sqlite"

NOT for: Server databases → data-pipeline-engineer | Web caching → pwa-architect | API design → api-architect

Quick Start

Choose local database — op-sqlite (performance), WatermelonDB (React Native lazy loading), or Realm (object-oriented)
Design sync schema — add updated_at, deleted_at, sync_status columns to all synced tables
Implement conflict resolution — last-write-wins for simple cases, CRDT for collaborative editing
Build sync engine — pull-push protocol with delta sync (only changed records)
Add background sync — React Native Background Fetch or WorkManager for periodic sync

Core Capabilities

| Domain | Technologies | |--------|-------------| | Local DB | op-sqlite, WatermelonDB, Realm, expo-sqlite | | Sync Protocols | Delta sync, CRDT (Yjs, Automerge), operational transform | | Conflict Resolution | Last-write-wins, merge functions, CRDT automatic merge | | Background Sync | react-native-background-fetch, expo-background-fetch | | Platforms | PowerSync, ElectricSQL, Replicache, custom sync engines |

Architecture Patterns

Offline-First Sync Architecture

┌─────────────────────────────────┐
│         Mobile App              │
│  ┌──────────┐  ┌─────────────┐ │
│  │  UI Layer │──│ Sync Engine │ │
│  └──────────┘  └──────┬──────┘ │
│                       │         │
│  ┌────────────────────┴───────┐ │
│  │     Local SQLite DB        │ │
│  │  (source of truth offline) │ │
│  └────────────────────────────┘ │
└────────────────┬────────────────┘
                 │  Background sync
                 │  (when online)
                 ▼
┌────────────────────────────────┐
│         Server                 │
│  ┌──────────┐  ┌────────────┐ │
│  │  Sync API │──│  Server DB │ │
│  │  /sync    │  │ (Postgres) │ │
│  └──────────┘  └────────────┘ │
└────────────────────────────────┘

Pull: GET /sync?since=<timestamp> → changed records
Push: POST /sync { changes: [...] } → conflicts

Delta Sync Protocol

interface SyncRequest {
  lastSyncTimestamp: string;
  changes: ChangeSet[];   // Local changes since last sync
}

interface ChangeSet {
  table: string;
  created: Record[];
  updated: Record[];
  deleted: { id: string; deleted_at: string }[];
}

interface SyncResponse {
  serverTimestamp: string;
  changes: ChangeSet[];   // Server changes since client's lastSync
  conflicts: Conflict[];  // Records changed on both sides
}

// Conflict resolution strategy
function resolveConflict(local: Record, server: Record): Record {
  // Strategy 1: Last-write-wins (simple, data loss possible)
  return local.updated_at > server.updated_at ? local : server;

  // Strategy 2: Field-level merge (no data loss for non-conflicting fields)
  // return mergeFields(local, server, base);

  // Strategy 3: CRDT (automatic, no conflicts by design)
  // return crdtMerge(local, server);
}

WatermelonDB Sync Implementation

import { synchronize } from '@nozbe/watermelondb/sync';

async function syncDatabase() {
  await synchronize({
    database,
    pullChanges: async ({ lastPulledAt }) => {
      const response = await api.get('/sync', {
        params: { since: lastPulledAt },
      });
      return {
        changes: response.data.changes,
        timestamp: response.data.serverTimestamp,
      };
    },
    pushChanges: async ({ changes, lastPulledAt }) => {
      await api.post('/sync', { changes, lastPulledAt });
    },
    migrationsEnabledAtVersion: 1,
  });
}

Anti-Patterns

Online-first with offline cache — treating offline as an afterthought. Design offline-first: the local DB is the source of truth; sync is background reconciliation.
Full table sync — downloading entire tables on every sync. Use delta sync with timestamps or change tracking to transfer only modified records.
Ignoring conflict resolution — assuming conflicts will not happen. Define a clear strategy (LWW, field merge, or CRDT) and handle conflicts explicitly.
Sync on main thread — blocking the UI during synchronization. Run sync in a background thread or process with progress callbacks.
No offline indicator — users do not know when they are offline. Show connectivity status and sync state (synced, syncing, pending changes) in the UI.

Quality Checklist

[ ] Local database chosen and configured (op-sqlite, WatermelonDB, Realm)
[ ] Sync schema includes updated_at, deleted_at, sync_status columns
[ ] Delta sync protocol implemented (not full-table)
[ ] Conflict resolution strategy defined and tested
[ ] Background sync configured (periodic + on-reconnect)
[ ] Offline indicator visible in UI
[ ] Pending local changes count displayed
[ ] Sync errors handled gracefully (retry with exponential backoff)
[ ] Data integrity: no data loss during conflict resolution
[ ] Large dataset performance tested (10K+ records)
[ ] Soft deletes used (deleted_at, not hard DELETE)
[ ] Sync works after app kill and restart

curiositech/mobile-offline-sync-architect

skills/mobile-offline-sync-architect/SKILL.md

Mobile offline-first architecture with local databases, CRDT conflict resolution, and background sync. Activate on: offline sync, offline-first, local database, WatermelonDB, SQLite, CRDT, conflict resolution, background sync, mobile persistence. NOT for: server-side databases (use data-pipeline-engineer), web caching strategies (use pwa-architect), API design (use api-architect).

development

Updated Apr 4, 2026

$ install --global

skillsauth

npx skillsauth add curiositech/windags-skills mobile-offline-sync-architect

Install this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.

Security Scan Results

3 of 9 scanners reported clean

Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.

Scanners Passed

Scanners in report

Clean

TrivyContainer and dependency vulnerability scanner

95%

Clean

SemgrepStatic code analysis for vulnerabilities

95%

Clean

mcp-scan (Snyk)Model Context Protocol security validation

95%

Skipped

Snyk (dep)Open source security scanning

50%

Skipped

Socket.devSupply chain security analysis

50%

Skipped

VirusTotalMulti-engine malware detection

50%

Skipped

CrowdStrikeAdvanced threat intelligence

50%

Skipped

OSV-ScannerOpen Source Vulnerability database check

50%

Skipped

OWASP Dep-Check

50%

Last scanned: Apr 4, 2026, 2:15 PM5.0s1 file scanned

SKILL.md

license:: Apache-2.0
name:: mobile-offline-sync-architect
description:: Mobile offline-first architecture with local databases, CRDT conflict resolution, and background sync. Activate on: offline sync, offline-first, local database, WatermelonDB, SQLite, CRDT, conflict resolution, background sync, mobile persistence. NOT for: server-side databases (use data-pipeline-engineer), web caching strategies (use pwa-architect), API design (use api-architect).
allowed-tools:: Read,Write,Edit,Bash(docker:*,kubectl:*,terraform:*,npm:*,npx:*)
category:: Mobile Development
- skill:: data-pipeline-engineer
reason:: Server-side data pipeline must support sync protocols

Mobile Offline-Sync Architect

Expert in building offline-first mobile applications with local databases, conflict resolution, and reliable background synchronization.

Activation Triggers

Activate on: "offline sync", "offline-first app", "local database mobile", "WatermelonDB", "SQLite sync", "CRDT conflict resolution", "background sync", "mobile data persistence", "op-sqlite"

NOT for: Server databases → data-pipeline-engineer | Web caching → pwa-architect | API design → api-architect

Quick Start

Choose local database — op-sqlite (performance), WatermelonDB (React Native lazy loading), or Realm (object-oriented)
Design sync schema — add updated_at, deleted_at, sync_status columns to all synced tables
Implement conflict resolution — last-write-wins for simple cases, CRDT for collaborative editing
Build sync engine — pull-push protocol with delta sync (only changed records)
Add background sync — React Native Background Fetch or WorkManager for periodic sync

Core Capabilities

Architecture Patterns

Offline-First Sync Architecture

┌─────────────────────────────────┐
│         Mobile App              │
│  ┌──────────┐  ┌─────────────┐ │
│  │  UI Layer │──│ Sync Engine │ │
│  └──────────┘  └──────┬──────┘ │
│                       │         │
│  ┌────────────────────┴───────┐ │
│  │     Local SQLite DB        │ │
│  │  (source of truth offline) │ │
│  └────────────────────────────┘ │
└────────────────┬────────────────┘
                 │  Background sync
                 │  (when online)
                 ▼
┌────────────────────────────────┐
│         Server                 │
│  ┌──────────┐  ┌────────────┐ │
│  │  Sync API │──│  Server DB │ │
│  │  /sync    │  │ (Postgres) │ │
│  └──────────┘  └────────────┘ │
└────────────────────────────────┘

Pull: GET /sync?since=<timestamp> → changed records
Push: POST /sync { changes: [...] } → conflicts

Delta Sync Protocol

interface SyncRequest {
  lastSyncTimestamp: string;
  changes: ChangeSet[];   // Local changes since last sync
}

interface ChangeSet {
  table: string;
  created: Record[];
  updated: Record[];
  deleted: { id: string; deleted_at: string }[];
}

interface SyncResponse {
  serverTimestamp: string;
  changes: ChangeSet[];   // Server changes since client's lastSync
  conflicts: Conflict[];  // Records changed on both sides
}

// Conflict resolution strategy
function resolveConflict(local: Record, server: Record): Record {
  // Strategy 1: Last-write-wins (simple, data loss possible)
  return local.updated_at > server.updated_at ? local : server;

  // Strategy 2: Field-level merge (no data loss for non-conflicting fields)
  // return mergeFields(local, server, base);

  // Strategy 3: CRDT (automatic, no conflicts by design)
  // return crdtMerge(local, server);
}

WatermelonDB Sync Implementation

import { synchronize } from '@nozbe/watermelondb/sync';

async function syncDatabase() {
  await synchronize({
    database,
    pullChanges: async ({ lastPulledAt }) => {
      const response = await api.get('/sync', {
        params: { since: lastPulledAt },
      });
      return {
        changes: response.data.changes,
        timestamp: response.data.serverTimestamp,
      };
    },
    pushChanges: async ({ changes, lastPulledAt }) => {
      await api.post('/sync', { changes, lastPulledAt });
    },
    migrationsEnabledAtVersion: 1,
  });
}

Anti-Patterns

Online-first with offline cache — treating offline as an afterthought. Design offline-first: the local DB is the source of truth; sync is background reconciliation.
Full table sync — downloading entire tables on every sync. Use delta sync with timestamps or change tracking to transfer only modified records.
Ignoring conflict resolution — assuming conflicts will not happen. Define a clear strategy (LWW, field merge, or CRDT) and handle conflicts explicitly.
Sync on main thread — blocking the UI during synchronization. Run sync in a background thread or process with progress callbacks.
No offline indicator — users do not know when they are offline. Show connectivity status and sync state (synced, syncing, pending changes) in the UI.

Quality Checklist

[ ] Local database chosen and configured (op-sqlite, WatermelonDB, Realm)
[ ] Sync schema includes updated_at, deleted_at, sync_status columns
[ ] Delta sync protocol implemented (not full-table)
[ ] Conflict resolution strategy defined and tested
[ ] Background sync configured (periodic + on-reconnect)
[ ] Offline indicator visible in UI
[ ] Pending local changes count displayed
[ ] Sync errors handled gracefully (retry with exponential backoff)
[ ] Data integrity: no data loss during conflict resolution
[ ] Large dataset performance tested (10K+ records)
[ ] Soft deletes used (deleted_at, not hard DELETE)
[ ] Sync works after app kill and restart

Related Skills

curiositech/circuit-breakers-and-retries

tools

VerifiedTrustedCommunity

Building resilient distributed systems with circuit breakers, retries with full-jitter exponential backoff, retry budgets (per-request 3-attempt + per-client 10% ratio per Google SRE), deadline propagation, and the cascading-failure math (4 layers × 3 retries = 64x amplification). Grounded in Resilience4j, Microsoft Cloud Patterns, AWS Architecture Blog (Marc Brooker), and Google SRE Book.

4SKILL.mdUpdated May 6, 2026

curiositech/circuit-breakers-and-retries

curiositech/cdn-cache-control-headers

testing

VerifiedTrustedCommunity

Designing HTTP cache headers that work correctly across browsers, CDNs, and shared proxies — `Cache-Control` directives per RFC 9111, `stale-while-revalidate` and `stale-if-error` per RFC 5861, the Vary header for varying responses, and surrogate keys for tag-based purging. Grounded in IETF RFCs and Cloudflare/Fastly docs.

4SKILL.mdUpdated May 5, 2026

curiositech/cdn-cache-control-headers

curiositech/content-security-policy-headers

development

VerifiedTrustedCommunity

Use when designing or fixing a Content Security Policy on a real site, choosing between nonce-based and hash-based CSP, adding strict-dynamic, debugging "Refused to execute inline script" errors, deploying CSP in report-only mode first, configuring report-to / report-uri, or auditing an existing policy for unsafe-inline / unsafe-eval / wildcards. Triggers: "CSP blocks legitimate inline script", strict-dynamic, nonce-{RANDOM}, sha256-{HASH}, object-src none, base-uri none, frame-ancestors, Trusted Types, X-Content-Security-Policy obsolete, report-only vs enforced. NOT for general HTTP security headers (HSTS, COOP/COEP), Trusted Types deep dive, CORS configuration, or building a WAF.

3SKILL.mdUpdated May 4, 2026

curiositech/content-security-policy-headers

curiositech/api-versioning-strategy

tools

VerifiedTrustedCommunity

Choosing and operating an HTTP API versioning strategy that doesn't break clients — Stripe's date-based pinned versions, the Deprecation/Sunset header pair (RFC 9745 + RFC 8594), URI vs header vs media-type approaches, and the version-transformer pattern. Grounded in Stripe's published architecture and IETF RFCs.

3SKILL.mdUpdated May 4, 2026

curiositech/api-versioning-strategy

Download

For Claude Desktop. Download once, then upload the file in the app — no terminal needed.

Need help? View full Cowork setup guide →

Install manually

Choose your platform

# Clone the repo
git clone https://github.com/curiositech/windags-skills.git

# Copy into Claude Code skills folder (global)
cp -r windags-skills/skills/mobile-offline-sync-architect ~/.claude/skills/

Claude Code Skills — official skills path docs.

Repository

curiositech/windags-skills

Compatible with

Claude Code

OpenAI Codex CLI

ChatGPT