What are you trying to do?
Describe your workflow in plain English. The AI picks the skills that will help most — with a one-line reason each.
pr-reviewer✓
Reviews open pull requests for correctness, security, and test quality. Use this skill whenever the user asks to review a PR, check a diff, look at a branch before merging, or asks whether code is safe to ship. Triggers include "review PR #", "look at this diff", "is this safe to merge", pasting a GitHub/GitLab/Bitbucket PR URL, or pasting a raw `git diff`. Focuses on blocking bugs, not style. Always runs the test suite before reporting.
security-scanner✓
Scans a code diff for OWASP Top-10 issues — injection, auth bypass, crypto misuse, secrets — and reports only findings with a concrete exploit path. Use when the user asks for a security review, says "look for OWASP issues", pastes auth/session/crypto/input-handling code, or asks "is this safe?". No false positives: every finding must name a reachable exploit.