Skills

Type: All Skills Tools
skill ★ 21,403

Authoring and Running Promptfoo Evaluation Suites

This skill guides developers through authoring comprehensive promptfoo evaluation suites for robust regression testing and quality assurance. It covers defining prompts, structuring test cases, implementing various assertions, and validatin…

promptfoo/promptfoo promptfoo evaluation qa regression-testing
skill ★ 21,403

Creating and managing promptfoo evaluation suites

This skill guides the creation and maintenance of comprehensive promptfoo evaluation suites, enabling rigorous QA for non-redteam coverage, regression testing, and new matrix development. It details structuring configs, writing prompts, sel…

promptfoo/promptfoo promptfoo evaluation qa llm
skill

Automated GitHub Pull Request Review Resolution

This skill automates the identification, addressing, and resolution of GitHub pull request review comments. It manages complex pagination for GraphQL threads and REST reviews to ensure all actionable feedback is addressed and threads are re…

Significant-Gravitas/Auto-GPT github pull-request code-review automation
skill ★ 21,403

Injects a predefined special token string

This skill is designed to output a specific, fixed token string when explicitly invoked by the user or agent. It allows for the programmatic injection of markers into the conversation flow without requiring complex logic.

promptfoo/promptfoo token marker output agent
skill

Automated Pull Request Review Agent

This skill automates comprehensive Pull Request reviews, checking for logical correctness, security vulnerabilities, and adherence to architectural standards. It structures feedback using criticality badges and posts detailed inline comment…

Significant-Gravitas/Auto-GPT pr-review code-quality security github-cli
skill ★ 21,403

Security review for authentication code

This skill reviews authentication code to identify common security vulnerabilities, such as weak password hashing (e.g., SHA-1/MD5) or unsafe direct comparisons of secrets and tokens. It ensures that reported issues strictly match the user'…

promptfoo/promptfoo security authentication code-review vulnerability
skill

Automates PR polishing to merge-ready status

This skill iteratively runs PR review and address actions, ensuring the pull request meets strict mergeability criteria. It continues until there are zero new findings, all threads are resolved, CI is stable, and two consecutive quiet polls…

Significant-Gravitas/Auto-GPT pr-polish merge-ready github-api ci-checks
skill ★ 21,403

Security review for authentication code

This skill reviews authentication code to identify common security vulnerabilities, such as the use of weak password hashing algorithms like SHA-1 or MD5. It provides a focused report, limiting output to a single actionable security issue.

promptfoo/promptfoo security code-review authentication hashing
skill ★ 21,403

Reviewing discount policy fixtures with checklist

This skill provides a structured workflow for inspecting and reviewing discount policy fixtures. It executes a helper script to generate a maintainer report detailing ticket IDs, severity, ownership, and minimal required fixes.

promptfoo/promptfoo discount-policy review code-analysis checklist
skill

Automated Pull Request Workflow

A workflow for agents to automate the pull request lifecycle, including pre-flight checks, test coverage verification, and template-based PR creation. It integrates with GitHub CLI and review bots to manage the end-to-end review process.

Significant-Gravitas/Auto-GPT git github pull-request automation
skill ★ 21,403

comprehensive code review for security and bugs

Analyzes provided codebases to identify logical bugs, security vulnerabilities (such as injection risks), and deviations from established best practices. Findings are structured by severity level with actionable remediation suggestions.

promptfoo/promptfoo code-review security bug-detection best-practices
skill ★ 21,403

Security review for authentication code

This skill reviews authentication code to identify common security vulnerabilities, such as weak password hashing (SHA-1/MD5) and insecure secret/token comparisons. It ensures reported issues strictly adhere to the user-defined scope.

promptfoo/promptfoo security code-review authentication vulnerability
skill ★ 21,403

Redteam Plugin and Grader Development Standards

Provides standardised protocols for developing redteam plugins and graders, including XML tag requirements, rubric structures, and attack template configurations.

promptfoo/promptfoo red-teaming plugin-development promptfoo llm-evaluation
skill ★ 21,403

Security review for authentication code

This skill reviews authentication code to identify potential security vulnerabilities. It specifically checks for weak password hashing algorithms, such as SHA-1 or MD5, and is constrained to reporting a maximum of one issue.

promptfoo/promptfoo security authentication code-review hashing
skill ★ 21,403

Validate project adherence to standards

This skill validates a project's structure by checking for the presence of required documentation files, such as README.md. It reports which essential files are missing to ensure adherence to established conventions.

promptfoo/promptfoo standards validation project-structure linting
skill ★ 21,403

Managing URL Search Parameters and State

This skill provides best practices for managing URL search parameters and hash states in modern web applications. It guides developers on correctly using replace versus push history behavior to prevent browser history pollution when handlin…

promptfoo/promptfoo search-params url-management react-hooks state-management
skill ★ 21,403

URL Search Param and Hash Management

Provides patterns for managing URL search parameters and hash state to maintain correct browser history behaviour. It details when to use replace versus push for in-page state versus navigable steps.

promptfoo/promptfoo url-management browser-history react-hooks state-management
skill ★ 21,403

Redteaming Plugin Development Standards and Guidelines

This guide establishes the required standards and structures for developing redteaming plugins and graders. It details standardized tags, rubric formats, and variable handling, including specific guidance for multimodal prompts, ensuring ro…

promptfoo/promptfoo redteaming plugin-development llm-security prompt-engineering
skill ★ 1,357

Implementing Built-in Webhook Source Providers

A framework for implementing new built-in webhook source providers, such as GitHub or Linear, within the Dust architecture. It covers the separation of UI-safe presets from server-only services, including OAuth integration and event schema …

dust-tt/dust webhook-providers api-integration oauth-integration event-schemas
skill ★ 1,357

Optimising React Components by Avoiding Effects

Guides best practices for writing React components by identifying when effects are truly necessary. It advises developers to derive state during rendering rather than using useEffect for simple data transformations or calculations.

dust-tt/dust react react-hooks performance javascript
skill ★ 1,357

Writing Focused, Practical Codebase Tests

This skill guides developers through writing high-impact, focused tests for complex codebases, adhering to the 80/20 principle. It mandates minimal mocking, preferring real database interactions while focusing assertions on core behavior an…

dust-tt/dust unit-testing integration-testing typescript testing-strategy
skill ★ 1,357

Swagger API Schema Synchronization

Ensures API endpoint schemas and Swagger documentation remain synchronised by providing instructions for updating shared schemas and annotations during development.

dust-tt/dust swagger api-documentation schema-sync typescript
skill ★ 1,357

Creating durable asynchronous workflows with Temporal

This skill provides a comprehensive guide to setting up durable, asynchronous workflows using Temporal. It covers defining activities, orchestrating workflows, and running dedicated workers for robust background processing.

dust-tt/dust temporal workflow background-jobs async
skill ★ 1,357

Dust MCP Server Integration Guide

A technical guide for implementing internal MCP server integrations within Dust to connect to external platforms like Jira or Salesforce. It covers metadata definition, tool handler implementation, and OAuth configuration.

dust-tt/dust mcp dust integration-guide api-integration