dneprokos/windows-secretmanagement-setup
.github/skills/windows-secretmanagement-setup/SKILL.md
Install and configure Windows Credential Manager style secret storage for PowerShell using SecretManagement and SecretStore. Use when users ask to install secret manager support, set up Credential Manager for GitHub token storage, or bootstrap GitHubToken for PR skills.
$ install --global
skillsauthnpx skillsauth add dneprokos/skills-examples windows-secretmanagement-setupInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Apr 16, 2026, 2:40 AM4.3s3 files scanned
SKILL.md
- name:
- windows-secretmanagement-setup
- description:
- >-
- argument-hint:
- optional setup context
Windows SecretManagement Setup
Install and initialize PowerShell SecretManagement for secure local token storage.
When this skill fits
Use it for requests like:
- "install credential manager support for PR token"
- "set up SecretManagement on Windows"
- "configure GitHubToken secret"
Do not use it for:
- creating pull requests
- rotating GitHub org secrets
- CI/CD secret injection
Workflow
1. Verify PowerShell environment
Ensure the environment can run PowerShell module install commands and has network access to PSGallery.
2. Install required modules
Install these modules for the current user if missing:
Microsoft.PowerShell.SecretManagementMicrosoft.PowerShell.SecretStore
Run helper script:
pwsh -NoProfile -File ./.github/skills/windows-secretmanagement-setup/scripts/install-secretmanagement.ps1
3. Register SecretStore vault
If SecretStore vault is not registered, register it and set it as default.
4. Optionally save GitHub token
Prompt user for token input (masked) and store it as secret name GitHubToken.
pwsh -NoProfile -File ./.github/skills/windows-secretmanagement-setup/scripts/install-secretmanagement.ps1 -SetGitHubToken
5. Validate setup
Confirm secret commands and retrieval work:
Get-SecretVault
Get-Secret -Name GitHubToken -AsPlainText
Hard rules
- Never print token values to logs.
- Never commit token files when secure storage is available.
- Keep
GitHubTokenas the default secret name for PR workflows. - Use
-ApproveInstallfor headless/non-interactive runs.
Related Skills
dneprokos/ut-coder
development
VerifiedTrustedCommunity
Generate a complete, compilable unit test file from an Analyst test plan and Architect strategy. Uses AAA pattern, language-specific frameworks (NUnit, JUnit 5, pytest, Vitest), correct mock/real dependency instantiation, constructor null-guard tests, parameterized tests, and setup/teardown hooks. Input is the Analyst JSON plan plus Architect strategy summary. Use when asked to generate test code, write test implementation, create test file, or implement tests from a plan. Also invoked as Phase 3 by the unit-test-generator agent.
2SKILL.mdUpdated Apr 16, 2026
dneprokos/ut-architect
development
VerifiedTrustedCommunity
Define the mocking strategy and assertion style for a unit test plan. Classifies each dependency as mock or real, resolves assertion framework and test file location from project patterns, lists constructor null-guard tests with expected exception types, and specifies abstraction interfaces for non-deterministic calls. Input is a JSON test plan from ut-analyst. Use when asked to define mocking strategy, plan test architecture, classify dependencies as mock vs real, or design test structure. Also invoked as Phase 2 by the unit-test-generator agent.
2SKILL.mdUpdated Apr 16, 2026
dneprokos/ut-analyst
testing
VerifiedTrustedCommunity
Analyze a class or function and produce a structured JSON test plan. Classifies all dependencies (interface, abstract, valueObject, dto, primitive), detects non-deterministic calls, enumerates test cases using black-box techniques (Equivalence Partitioning, Boundary Value Analysis, Decision Table, State Transition), and lists constructor null-guard requirements. Use when asked to analyze a class for testing, create a test plan, classify dependencies, or produce test case inventory. Also invoked as Phase 1 by the unit-test-generator agent.
2SKILL.mdUpdated Apr 16, 2026
dneprokos/token-usage-reporting
development
VerifiedTrustedCommunity
Generate token usage reports in table format for different time periods. Use for tracking API token consumption, analyzing usage patterns, monitoring token costs by day/week/month periods.
2SKILL.mdUpdated Apr 16, 2026