Security review plugin: pattern warnings on edits, LLM diff review on Stop, and an agentic commit reviewer for injection/XSS/SSRF/secrets.
SAST analysis, dependency vulnerability scanning, OWASP Top 10 compliance, and container security hardening.
Security scanner covering OWASP Top 10 (2025), Mobile Top 10, and LLM Top 10 for secrets, injection, and AI flaws.
React/Next.js/TypeScript development patterns with bundle analysis, component generation, and accessibility.
Sentry error monitoring: access error reports, analyze stack traces, search issues, and debug prod errors.
Semantic code analysis MCP server for intelligent code understanding, refactoring, and navigation via LSP.
Generate an explorable HTML report of Claude Code session usage from local transcripts.
Official shadcn/ui MCP server giving Cursor live tools to search, preview, and install shadcn components and blocks.
Complete PR workflow from commit to production: lint, test, review, and deploy.
AI teammate that turns a story file into a shipped, reviewed, tested feature via an orchestrated agent pipeline.
Cookbook skill for signed audit trails on every tool call: Cedar policy, Ed25519 receipts, offline verification.
Wire context, conditions, and other skills into any skill invocation declaratively, without modification.
Create, improve, and benchmark Claude skills, including evals and variance analysis.
Slack workspace integration to search messages, read threads, and access channels from Claude Code.
Software-engineering plugin with code review, debugging, license compliance, and payment-integration agents plus context7 MCP.
Code review, debugging, docs, license compliance, payments, frontend, and architecture-diagram agents.
Solo-developer workflow plugin bundling planning, implementation, and review commands for one-person teams.
Enforces SonarQube quality and security in the agent loop with PostToolUse analysis and pre-tool secrets scanning.
Sonatype MCP server for supply-chain intelligence and dependency security with secure version recommendations.
Cross-repo code search and understanding, refactor-impact analysis, and targeted security sweeps.
GitHub's spec-driven-development toolkit adding /specify, /plan, /tasks, /implement slash commands to Claude Code and 30+ agents.
Schema-first development with dual-spec (OpenAPI + DB schema) workflows and deterministic code generation.
Configuration framework packaged as a Claude Code plugin adding 29 /sc: commands, 23 specialized agents, 7 behavioral modes, and MCP integration.
The underlying configuration framework of specialized commands, cognitive personas, and dev methodologies for Claude Code.